1ChangeLog : 2=========== 3 42021/11/29 : 2.2.19 5 - BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data 6 - BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags 7 - BUG/MINOR: sample: fix backend direction flags consecutive to last fix 8 - BUG/MEDIUM: mux-h1: Fix H1C_F_ST_SILENT_SHUT value 9 - DOC: config: Fix typo in ssl_fc_unique_id description 10 - BUG/MINOR: http-ana: Apply stop to the current section for http-response rules 11 - Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back" 12 - DOC: lua: Be explicit with the Reply object limits 13 - BUG/MEDIUM: conn-stream: Don't reset CS flags on close 14 - BUG/MINOR: mworker: doesn't launch the program postparser 15 - BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value 16 - BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent 17 - BUG/MINOR: stick-table/cli: Check for invalid ipv6 key 18 - MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close 19 - MINOR: mux-h2: perform a full cycle shutdown+drain on close 20 - CLEANUP: ssl: Release cached SSL sessions on deinit 21 - BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3 22 - BUG/MEDIUM: mux-h2: always process a pending shut read 23 - BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found 24 - BUG/MINOR: shctx: do not look for available blocks when the first one is enough 25 - BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found 26 272021/11/05 : 2.2.18 28 - BUG/MINOR: systemd: ExecStartPre must use -Ws 29 - BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached 30 - Revert "REGTESTS: mark http_abortonclose as broken" 31 - BUG/MINOR: compat: make sure __WORDSIZE is always defined 32 - BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check 33 - DOC: management: certificate files must be sanitized before injection 34 - BUILD: ist: prevent gcc11 maybe-uninitialized warning on istalloc 35 - BUG/MINOR: cli/payload: do not search for args inside payload 36 - BUG/MINOR: server: allow 'enable health' only if check configured 37 - BUG/MINOR: h1-htx: Fix a typo when request parser is reset 38 - BUG/MINOR: http-ana: increment internal_errors counter on response error 39 - BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer 40 - BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data 41 - BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM 42 - BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers" 43 - DOC: peers: fix doc "enable" statement on "peers" sections 44 - BUG/MEDIUM: lua: fix wakeup condition from sleep() 45 - BUG/MAJOR: lua: use task_wakeup() to properly run a task once 46 - MINOR: arg: Be able to forbid unresolved args when building an argument list 47 - BUG/MINOR: tcpcheck: Don't use arg list for default proxies during parsing 48 - BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input 49 - BUG/MINOR: stream: Don't release a stream if FLT_END is still registered 50 - BUG/MEDIUM: http-ana: Reset channels analysers when returning an error 51 - BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set 52 - BUG/MINOR: filters: Set right FLT_END analyser depending on channel 53 - BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release 54 - BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule 55 - MINOR: htx: Add an HTX flag to know when a message is fragmented 56 - MINOR: htx: Add a function to know if the free space wraps 57 - BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary 58 - BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames 59 - MINOR: initcall: Rename __GLOBL and __GLOBL1. 60 - BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back 61 - BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error 62 - CLEANUP: sample: rename sample_conv_var2smp() to *_sint 63 - CLEANUP: sample: uninline sample_conv_var2smp_str() 64 - MINOR: sample: provide a generic var-to-sample conversion function 65 - BUG/MEDIUM: sample: properly verify that variables cast to sample 66 - BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors 67 - MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero 68 - BUG/MEDIUM: resolver: make sure to always use the correct hostname length 69 - BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records 70 - MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero 71 - BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix 72 - BUG/MEDIUM: resolvers: use correct storage for the target address 73 - MINOR: resolvers: merge address and target into a union "data" 74 - BUG/MAJOR: resolvers: add other missing references during resolution removal 75 - BUILD: resolvers: avoid a possible warning on null-deref 76 - BUG/MEDIUM: resolvers: always check a valid item in query_list 77 - BUG/MAJOR: buf: fix varint API post- vs pre- increment 78 - BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame 79 - BUILD: fix compilation on NetBSD 80 - BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed 81 - BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released 82 - CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records() 83 - CLEANUP: always initialize the answer_list 84 - CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters 85 - CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT 86 - MEDIUM: resolvers: use a kill list to preserve the list consistency 87 - MEDIUM: resolvers: remove the last occurrences of the "safe" argument 88 - BUG/MEDIUM: resolvers: Don't recursively perform requester unlink 89 - BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions 90 - BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration 91 - BUG/MINOR: http: Authorization value can have multiple spaces after the scheme 92 - DOC: config: Fix alphabetical order of fc_* samples 93 - MINOR: stream: Improve dump of bogus streams 94 952021/09/07 : 2.2.17 96 - BUG/MEDIUM: h2: match absolute-path not path-absolute for :path 97 - BUG/MEDIUM: sock: really fix detection of early connection failures in for 2.3- 98 - REGTESTS: abortonclose: after retries, 503 is expected, not close 99 - BUG/MINOR: stick-table: fix the sc-set-gpt* parser when using expressions 100 - BUG/MEDIUM: base64: check output boundaries within base64{dec,urldec} 101 - MINOR: compiler: implement an ONLY_ONCE() macro 102 - BUG/MINOR: lua: use strlcpy2() not strncpy() to copy sample keywords 103 - BUG/MINOR: ebtree: remove dependency on incorrect macro for bits per long 104 - BUG/MINOR threads: Use get_(local|gm)time instead of (local|gm)time 105 - BUG/MINOR: tools: Fix loop condition in dump_text() 106 - CLEANUP: Add missing include guard to signal.h 107 - DOC: configuration: remove wrong tcp-request examples in tcp-response 108 - BUG/MINOR: config: reject configs using HTTP with bufsize >= 256 MB 109 - CLEANUP: htx: remove comments about "must be < 256 MB" 110 - BUG/MAJOR: htx: fix missing header name length check in htx_add_header/trailer 111 - Revert "BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive" 112 - MINOR: action: Use a generic function to check validity of an action rule list 113 - REGTESTS: mark http_abortonclose as broken 114 1152021/08/17 : 2.2.16 116 - BUILD: add detection of missing important CFLAGS 117 - BUG/MEDIUM: mworker: do not register an exit handler if exit is expected 118 - BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs 119 - BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request 120 - BUG/MINOR: check: fix the condition to validate a port-less server 121 - BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree 122 - BUG/MINOR: systemd: must check the configuration using -Ws 123 - BUG/MINOR: mux-h2: Obey dontlognull option during the preface 124 - BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames 125 - BUG/MINOR: connection: Add missing error labels to conn_err_code_str 126 - BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before 127 - BUG/MINOR: select: fix excess number of dead/skip reported 128 - BUG/MINOR: poll: fix abnormally high skip_fd counter 129 - BUG/MINOR: pollers: always program an update for migrated FDs 130 - BUG/MINOR: server: update last_change on maint->ready transitions too 131 - MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure 132 - BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released 133 - BUG/MINOR: buffer: fix buffer_dump() formatting 134 - BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer 135 - DOC: Improve the lua documentation 136 - DOC: config: Fix 'http-response send-spoe-group' documentation 137 - BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued 138 - DOC/MINOR: fix typo in management document 139 - MINOR: http: add a new function http_validate_scheme() to validate a scheme 140 - BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax 141 - BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it 142 - BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header 143 - BUG/MEDIUM: h2: give :authority precedence over Host 144 - REGTESTS: add a test to prevent h2 desync attacks 145 1462021/07/16 : 2.2.15 147 - REGTESTS: add minimal CLI "add map" tests 148 - BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers 149 - BUG/MEDIUM: cli: prevent memory leak on write errors 150 - BUG/MINOR: ssl/cli: fix a lock leak when no memory available 151 - MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS 152 - BUG/MEDIUM: dns: reset file descriptor if send returns an error 153 - BUG/MINOR: stream: Decrement server current session counter on L7 retry 154 - BUG/MINOR: stream: properly clear the previous error mask on L7 retries 155 - BUG/MINOR: stream: Reset stream final state and si error type on L7 retry 156 - BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started 157 - BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set 158 - BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port 159 - MINOR: channel: Rely on HTX version if appropriate in channel_may_recv() 160 - BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive 161 - MINOR: conn-stream: Force mux to wait for read events if abortonclose is set 162 - MEDIUM: mux-h1: Don't block reads when waiting for the other side 163 - BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set 164 - REGTESTS: Add script to test abortonclose option 165 - BUG/MEDIUM: ebtree: Invalid read when looking for dup entry 166 - BUG/MAJOR: server: prevent deadlock when using 'set maxconn server' 167 - BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter 168 - BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response 169 - BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts 170 - BUG/MINOR: server: Missing calloc return value check in srv_parse_source 171 - BUG/MINOR: peers: Missing calloc return value check in peers_register_table 172 - BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine 173 - BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture 174 - BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare 175 - BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy 176 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response 177 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule 178 - BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo 179 - BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list 180 - BUG/MINOR: http: Missing calloc return value check while parsing redirect rule 181 - BUG/MINOR: http: Missing calloc return value check in make_arg_list 182 - BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree 183 - BUG/MINOR: lua/vars: prevent get_var() from allocating a new name 184 - DOC/MINOR: move uuid in the configuration to the right alphabetical order 185 - BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry 186 - DOC: use the req.ssl_sni in examples 187 - BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future 188 - BUG/MEDIUM: compression: Add a flag to know the filter is still processing data 189 - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode 190 - BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded 191 - BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default 192 - DOC: lua: Add a warning about buffers modification in HTTP 193 - BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id 194 - BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE 195 - BUG/MINOR: ssl: use atomic ops to update global shctx stats 196 - BUG/MINOR: mworker: fix typo in chroot error message 197 - BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue 198 - MINOR: mux-h2: obey http-ignore-probes during the preface 199 - BUG/MEDIUM: dns: send messages on closed/reused fd if fd was detected broken 200 - BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check 201 - REGTESTS: fix maxconn update with agent-check 202 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules 203 - DOC: config: Add missing actions in "tcp-request session" documentation 204 - BUG/MINOR: checks: return correct error code for srv_parse_agent_check 205 - BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules 206 - BUG/MINOR: resolvers: answser item list was randomly purged or errors 207 - MEDIUM: resolvers: add a ref on server to the used A/AAAA answer item 208 - MEDIUM: resolvers: add a ref between servers and srv request or used SRV record 209 - BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs 210 - BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI 211 - BUG/MINOR: server/cli: Fix locking in function processing "set server" command 212 - BUG/MEDIUM: sock: make sure to never miss early connection failures 213 - BUG/MINOR: cli: fix server name output in "show fd" 214 - BUG/MINOR: stick-table: fix several printf sign errors dumping tables 215 - DOC: stick-table: add missing documentation about gpt0 stored type 216 - DOC: peers: fix the protocol tag name in the doc 217 - DOC: config: use CREATE USER for mysql-check 218 - BUG/MINOR: resolvers: Always attach server on matching record on resolution 219 - BUG/MINOR: resolvers: Reset server IP when no ip is found in the response 220 - MINOR: resolvers: Reset server IP on error in resolv_get_ip_from_response() 221 - BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution 222 - BUG/MINOR: peers: fix data_type bit computation more than 32 data_types 223 - Revert "MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules" 224 - BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush() 225 - MINOR: pools: do not maintain the lock during pool_flush() 226 - MEDIUM: pools: use a single pool_gc() function for locked and lockless 227 - BUG/MAJOR: pools: fix possible race with free() in the lockless variant 228 - CLEANUP: pools: remove now unused seq and pool_free_list 229 - BUG/MAJOR: pools: fix incomplete backport of lockless pool fix 230 - BUG/MAJOR: pools: second fix for incomplete backport of lockless pool fix 231 - BUG/MINOR: server-state: load SRV resolution only if params match the config 232 - BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled 233 - MINOR: resolvers: Clean server in a dedicated function when removing a SRV item 234 - MINOR: resolvers: Remove server from named_servers tree when removing a SRV item 235 - BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status 236 - BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task() 237 2382021/04/29 : 2.2.14 239 - DOC: Explicitly state only IPv4 are supported by forwardfor/originalto options 240 - REGTESTS: ssl: mark set_ssl_cert_bundle.vtc as broken 241 - CONTRIB: halog: fix issue with array of type char 242 - BUG/MINOR: tools: fix parsing "us" unit for timers 243 - DOC: clarify that compression works for HTTP/2 244 - MINOR: No longer rely on deprecated sample fetches for predefined ACLs 245 - BUG/MEDIUM: sample: Fix adjusting size in field converter 246 - DOC: ssl: Certificate hot update only works on fronted certificates 247 - BUG/MEDIUM: threads: Ignore current thread to end its harmless period 248 - BUG/MINOR: checks: Set missing id to the dummy checks frontend 249 - MINOR: logs: Add support of checks as session origin to format lf strings 250 - BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections 251 - MINOR: connection: Make bc_http_major compatible with tcp-checks 252 - BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check 253 - BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded 254 - BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function 255 - BUG/MINOR: logs: Report the true number of retries if there was no connection 256 - BUG/MINOR: mux-h1: Release idle server H1 connection if data are received 257 - BUG/MINOR: server: free srv.lb_nodes in free_server 258 - BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers 259 - BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames 260 - BUG/MEDIUM: config: fix cpu-map notation with both process and threads 261 - BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases 262 - BUG/MINOR: mworker: don't use oldpids[] anymore for reload 263 - BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data 264 - BUG/MINOR: peers: remove useless table check if initial resync is finished 265 - BUG/MEDIUM: peers: re-work connection to new process during reload. 266 - BUG/MEDIUM: peers: re-work refcnt on table to protect against flush 267 - BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application 268 - BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message 269 - BUG/MINOR: applet: Notify the other side if data were consumed by an applet 270 - BUG/MEDIUM: peers: initialize resync timer to get an initial full resync 271 - BUG/MEDIUM: peers: register last acked value as origin receiving a resync req 272 - BUG/MEDIUM: peers: stop considering ack messages teaching a full resync 273 - BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected 274 - BUG/MEDIUM: peers: reset commitupdate value in new conns 275 - BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly 276 - BUG/MEDIUM: peers: reset tables stage flags stages on new conns 277 - MINOR: peers: add informative flags about resync process for debugging 278 2792021/04/02 : 2.2.13 280 - BUG/MEDIUM: ssl: ckch_inst->ctx not assigned with multi-bundle certificates 281 - REGTESTS: ssl: "set ssl cert" and multi-certificates bundle 282 2832021/03/31 : 2.2.12 284 - MINOR: time: also provide a global, monotonic global_now_ms timer 285 - BUG/MEDIUM: freq_ctr/threads: use the global_now_ms variable 286 - MINOR/BUG: mworker/cli: do not use the unix_bind prefix for the master CLI socket 287 - MEDIUM: lua: Use a per-thread counter to track some non-reentrant parts of lua 288 - BUG/MEDIUM: debug/lua: Don't dump the lua stack if not dumpable 289 - BUG/MINOR: ssl: Prevent disk access when using "add ssl crt-list" 290 - BUILD: ssl: guard ecdh functions with SSL_CTX_set_tmp_ecdh macro 291 - MINOR: lua: Slightly improve function dumping the lua traceback 292 - BUG/MEDIUM: debug/lua: Use internal hlua function to dump the lua traceback 293 - BUG/MEDIUM: lua: Always init the lua stack before referencing the context 294 - MINOR: fd: make fd_clr_running() return the remaining running mask 295 - MINOR: fd: remove the unneeded running bit from fd_insert() 296 - BUG/MEDIUM: fd: do not wait on FD removal in fd_delete() 297 - CLEANUP: fd: remove unused fd_set_running_excl() 298 - BUG/MEDIUM: fd: Take the fd_mig_lock when closing if no DWCAS is available. 299 - BUG/MEDIUM: thread: Fix a deadlock if an isolated thread is marked as harmless 300 - MINOR: tools: make url2ipv4 return the exact number of bytes parsed 301 - BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters 302 - BUG/MEDIUM: mux-h1: make h1_shutw_conn() idempotent 303 - BUG/MINOR: payload: Wait for more data if buffer is empty in payload/payload_lv 304 - BUG/MINOR: stats: Apply proper styles in HTML status page. 305 - BUG/MEDIUM: time: make sure to always initialize the global tick 306 - BUG/MINOR: tcp: fix silent-drop workaround for IPv6 307 - BUILD: tcp: use IPPROTO_IPV6 instead of SOL_IPV6 on FreeBSD/MacOS 308 - BUG/MINOR: ssl: Fix update of default certificate 309 - BUG/MINOR: ssl: Prevent removal of crt-list line if the instance is a default one 310 - BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields 311 - BUG/MINOR: ssl: Add missing free on SSL_CTX in ckch_inst_free 312 - REGTESTS: ssl: add missing file simple.crt-list from previous SSL fix 313 3142021/03/18 : 2.2.11 315 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ(). 316 - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring() 317 - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode 318 - BUG/MEDIUM: session: NULL dereference possible when accessing the listener 319 - BUG/MEDIUM: stick-tables: fix ref counter in table entry using multiple http tracksc. 320 - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached 321 - BUG/MINOR: tcpcheck: Update .health threshold of agent inside an agent-check 322 - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters 323 - BUG/MINOR: session: Add some forgotten tests on session's listener 324 - BUG/MINOR: tcpcheck: Fix double free on error path when parsing tcp/http-check 325 - CLEANUP: tcp-rules: add missing actions in the tcp-request error message 326 - Revert "BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record" 327 - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error 328 - BUG/MINOR: resolvers: Reset server address on DNS error only on status change 329 - BUG/MINOR: resolvers: Unlink DNS resolution to set RMAINT on SRV resolution 330 - BUG/MEDIUM: resolvers: Don't set an address-less server as UP 331 - BUG/MEDIUM: resolvers: Fix the loop looking for an existing ADD item 332 - MINOR: resolvers: new function find_srvrq_answer_record() 333 - BUG/MINOR; resolvers: Ignore DNS resolution for expired SRV item 334 - BUG/MEDIUM: resolvers: Trigger a DNS resolution if an ADD item is obsolete 335 - MINOR: resolvers: Use a function to remove answers attached to a resolution 336 - MINOR: resolvers: Purge answer items when a SRV resolution triggers an error 337 - MINOR: resolvers: Add function to change the srv status based on SRV resolution 338 - MINOR: resolvers: Directly call srvrq_update_srv_state() when possible 339 - BUG/MEDIUM: resolvers: Don't release resolution from a requester callbacks 340 - BUG/MEDIUM: resolvers: Skip DNS resolution at startup if SRV resolution is set 341 - MINOR: resolvers: Use milliseconds for cached items in resolver responses 342 - MINOR: resolvers: Don't try to match immediatly renewed ADD items 343 - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames 344 - MINOR: time: export the global_now variable 345 - BUG/MINOR: freq_ctr/threads: make use of the last updated global time 346 3472021/03/03 : 2.2.10 348 - MINOR: check: do not ignore a connection header for http-check send 349 - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro 350 - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro 351 - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro 352 - BUG/MINOR: intops: fix mul32hi()'s off-by-one 353 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors 354 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state 355 - BUG/MINOR: server: re-align state file fields number 356 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints() 357 - BUG/MINOR: backend: hold correctly lock when killing idle conn 358 - BUG/MINOR: server: Fix server-state-file-name directive 359 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit 360 - BUG/MEDIUM: config: don't pick unset values from last defaults section 361 - BUG/MINOR: stats: revert the change on ST_CONVDONE 362 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines 363 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL 364 - DOC: tune: explain the origin of block size for ssl.cachesize 365 - CLEANUP: channel: fix comment in ci_putblk. 366 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state 367 - BUG/MINOR: session: atomically increment the tracked sessions counter 368 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust() 369 - BUG/MINOR: sample: Always consider zero size string samples as unsafe 370 - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions 371 - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared 372 - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer 373 - BUG/MINOR: http-rules: Always replace the response status on a return action 374 - BUG/MINOR: server: Init params before parsing a new server-state line 375 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line 376 - BUG/MEDIUM: mux-h1: Fix handling of responses to CONNECT other than 200-ok 377 - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert" 378 - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes 379 - BUG/MINOR: sample: secure convs that accept base64 string and var name as args 380 - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe 381 - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop 382 - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe 383 - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal 384 - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl() 385 - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned 386 - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record 387 - BUG/MINOR: resolvers: new callback to properly handle SRV record errors 388 - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records 389 - BUG/MEDIUM: resolvers: Reset address for unresolved servers 390 - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup() 391 - CLEANUP: muxes: Remove useless if condition in show_fd function 392 - BUG/MINOR: mux-h1: Immediately report H1C errors from h1_snd_buf() 393 - BUG/MINOR: http-ana: Only consider dst address to process originalto option 394 - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule 395 - BUG/MINOR: connection: Use the client's dst family for adressless servers 396 - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1 397 - DOC: spoe: Add a note about fragmentation support in HAProxy 398 - BUG/MINOR: mux-h2: Fix typo in scheme adjustment 399 - BUG/MINOR: http-ana: Don't increment HTTP error counter on read error/timeout 400 - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust() 401 4022021/02/06 : 2.2.9 403 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable 404 - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities 405 - MINOR: server: Forbid server definitions in frontend sections 406 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac. 407 - MINOR: peers: Add traces for peer control messages. 408 - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2) 409 - BUILD: peers: fix build warning about unused variable 410 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition 411 - BUG/MINOR: peers: Possible appctx pointer dereference. 412 - MINOR: build: discard echoing in help target 413 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command. 414 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper 415 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal() 416 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames 417 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX 418 - DOC: Improve documentation of the various hdr() fetches 419 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown 420 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name 421 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file() 422 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs. 423 - CLEANUP: tools: make resolve_sym_name() take a const pointer 424 - CLEANUP: cli: make "show fd" use a const connection to access other fields 425 - MINOR: cli: make "show fd" also report the xprt and xprt_ctx 426 - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps. 427 - MINOR: ssl: provide a "show fd" helper to report important SSL information 428 - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them 429 - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known 430 - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known 431 - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known 432 - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry 433 - MINOR: cli/show_fd: report some easily detectable suspicious states 434 - MINOR: ssl/show_fd: report some FDs as suspicious when possible 435 - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls 436 - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls 437 - MINOR: h1: Raise the chunk size limit up to (2^52 - 1) 438 - DOC: management: fix "show resolvers" alphabetical ordering 439 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list 440 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store 441 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake 442 - BUG/MINOR: xxhash: make sure armv6 uses memcpy() 443 - BUILD: Makefile: move REGTESTST_TYPE default setting 444 - BUG/MEDIUM: mux-h2: handle remaining read0 cases 445 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED 446 - MINOR: cli/show_fd: report local and report ports when known 447 - MINOR: config: Deprecate and ignore tune.chksize global option 448 - BUG/MAJOR: connection: reset conn->owner when detaching from session list 449 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list. 450 - MINOR: task: remove __tasklet_remove_from_tasklet_list() 451 - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link 452 - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments 453 - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context 454 4552021/01/13 : 2.2.8 456 - MINOR: reg-tests: add a way to add service dependency 457 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat() 458 - BUG/MINOR: reg-tests: fix service dependency script 459 - MINOR: reg-tests: add base prometheus test 460 - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records" 461 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error 462 - BUG/MINOR: check: Don't perform any check on servers defined in a frontend 463 - BUG/MINOR: init: enforce strict-limits when using master-worker 464 - MINOR: contrib/prometheus-exporter: avoid connection close header 465 - MINOR: contrib/prometheus-exporter: use fill_info for process dump 466 4672021/01/08 : 2.2.7 468 - BUG/MINOR: lua: missing "\n" in error message 469 - BUG/MINOR: lua: lua-load doesn't check its parameters 470 - BUG/MINOR: lua: Post init register function are not executed beyond the first one 471 - BUG/MINOR: lua: Some lua init operation are processed unsafe 472 - MINOR: actions: Export actions lookup functions 473 - MINOR: actions: add a function returning a service pointer from its name 474 - MINOR: cli: add a function to look up a CLI service description 475 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times 476 - BUG/MAJOR: ring: tcp forward on ring can break the reader counter. 477 - BUILD/MINOR: haproxy DragonFlyBSD affinity build update. 478 - DOC/MINOR: Fix formatting in Management Guide 479 - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections 480 - BUG/MAJOR: spoa/python: Fixing return None 481 - DOC: spoa/python: Fixing typo in IP related error messages 482 - DOC: spoa/python: Rephrasing memory related error messages 483 - DOC: spoa/python: Fixing typos in comments 484 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations 485 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails 486 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments 487 - BUG/MEDIUM: spoa/python: Fixing references to None 488 - DOC: email change of the DeviceAtlas maintainer 489 - BUG/MINOR: http-check: Use right condition to consider HTX message as full 490 - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read 491 - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules 492 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity 493 - BUG/MINOR: tools: Reject size format not starting by a digit 494 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight 495 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric 496 - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert" 497 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default 498 - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call 499 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well 500 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests 501 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode 502 - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request 503 - CONTRIB: halog: fix build issue caused by %L printf format 504 - CONTRIB: halog: mark the has_zero* functions unused 505 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps 506 - CONTRIB: debug: address "poll" utility build on non-linux platforms 507 - BUILD: plock: remove dead code that causes a warning in gcc 11 508 - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call 509 - BUG/MINOR: dns: SRV records ignores duplicated AR records 510 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup 511 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h 512 - MINOR: atomic: don't use ; to separate instruction on aarch64. 513 - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails 514 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails 515 - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule 516 - SCRIPTS: improve announce-release to support different tag and versions 517 - SCRIPTS: make announce release support preparing announces before tag exists 518 - BUG/MINOR: srv: do not init address if backend is disabled 519 - BUG/MINOR: srv: do not cleanup idle conns if pool max is null 520 - MINOR: converter: adding support for url_enc 521 - BUILD: Makefile: exclude broken tests by default 522 - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error 523 - MINOR: contrib/prometheus-exporter: export build_info 524 - DOC: fix some spelling issues over multiple files 525 - SCRIPTS: announce-release: fix typo in help message 526 - DOC: Add maintainers for the Prometheus exporter 527 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables 528 5292020/11/30 : 2.2.6 530 - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher 531 - MINOR: http-htx: Add understandable errors for the errorfiles parsing 532 - BUG/MINOR: http-htx: Just warn if payload of an errorfile doesn't match the C-L 533 - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods 534 - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der() 535 - DOC: config: Fix a typo on ssl_c_chain_der 536 - BUG/MINOR: pattern: a sample marked as const could be written 537 - BUG/MINOR: lua: set buffer size during map lookups 538 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries. 539 - BUG/MINOR: peers: Missing TX cache entries reset. 540 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages 541 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name 542 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches 543 - BUG/MEDIUM: check: reuse srv proto only if using same mode 544 - MINOR: check: report error on incompatible proto 545 - MINOR: check: report error on incompatible connect proto 546 - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors 547 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet 548 - MINOR: spoe: Don't close connection in sync mode on processing timeout 549 - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after 550 - MINOR: init: Fix the prototype for per-thread free callbacks 551 - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status 552 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error. 553 - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2 554 - MINOR: peers: Add traces to peer_treat_updatemsg(). 555 - BUILD: http-htx: fix build warning regarding long type in printf 556 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering 557 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests 558 - BUG/MINOR: ssl: segv on startup when AKID but no keyid 559 - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages 560 - DOC: clarify how to create a fallback crt 561 - BUG/MINOR: http_htx: Fix searching headers by substring 562 - DOC: better describes how to configure a fallback crt 563 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering 564 - REGTESTS: Add sample_fetches/cook.vtc 565 - REGTESTS: converter: add url_dec test 566 - MINOR: http_act: Add -m flag for del-header name matching method 567 - BUILD: Make DEBUG part of .build_opts 568 - BUILD: Show the value of DEBUG= in haproxy -vv 569 - BUG/MEDIUM: http_act: Restore init of log-format list 570 - BUG/MAJOR: peers: fix partial message decoding 571 - DOC: better document the config file format and escaping/quoting rules 572 - DOC: Clarify %HP description in log-format 573 - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check 574 - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main 575 - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool 576 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section 577 - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check 578 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction 579 5802020/11/05 : 2.2.5 581 - BUILD: ssl_crtlist: work around another bogus gcc-9.3 warning 582 - BUILD: makefile: Fix building with closefrom() support enabled 583 - MINOR: ssl: Add error if a crt-list might be truncated 584 - BUG/MINOR: Fix several leaks of 'log_tag' in init(). 585 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules 586 - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call 587 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe 588 - MINOR: ssl: Add warning if a crt-list might be truncated 589 - MINOR: counters: fix a typo in comment 590 - BUG/MINOR: stats: fix validity of the json schema 591 - MINOR: hlua: Display debug messages on stderr only in debug mode 592 - BUG/MINOR: peers: Inconsistency when dumping peer status codes. 593 - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read 594 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream 595 - DOC: fix a confusing typo on a regsub example 596 - DOC: Add missing stats fields in the management doc 597 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams 598 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams 599 - DOC: Fix typos in configuration.txt 600 - BUG/MINOR: http: Fix content-length of the default 500 error 601 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses 602 - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions 603 - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup 604 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited 605 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping 606 - MINOR: fd: report an error message when failing initial allocations 607 - BUG/MINOR: connection: fix loop iter on connection takeover 608 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once 609 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided 610 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages 611 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn 612 - DOC: fix typo in MAX_SESS_STKCTR 613 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions. 614 - BUG/MINOR: disable dynamic OCSP load with BoringSSL 615 - BUILD: ssl: make BoringSSL use its own version numbers 616 - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension 617 - BUG/MINOR: queue: properly report redistributed connections 618 - BUG/MEDIUM: server: support changing the slowstart value from state-file 619 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests 620 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible 621 - Revert "MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension" 622 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL 623 - BUG/MINOR: extcheck: add missing checks on extchk_setenv() 624 - BUG/MINOR: log: fix memory leak on logsrv parse error 625 - BUG/MINOR: log: fix risk of null deref on error path 626 - BUG/MINOR: server: fix srv downtime calcul on starting 627 - BUG/MINOR: server: fix down_time report for stats 628 - BUG/MINOR: lua: initialize sample before using it 629 - MINOR: ist: Add a case insensitive istmatch function 630 - BUG/MINOR: cache: Manage multiple values in cache-control header value 631 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function 632 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies 633 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies 634 - BUG/MINOR: checks: Report a socket error before any connection attempt 635 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup 636 - MINOR: server: Copy configuration file and line for server templates 637 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade 638 - BUG/MINOR: filters: Skip disabled proxies during startup only 639 - BUG/MEDIUM: stick-table: limit the time spent purging old entries 640 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream 641 - BUG/MEDIUM: server: make it possible to kill last idle connections 642 6432020/09/30 : 2.2.4 644 - BUILD: threads: better workaround for late loading of libgcc_s 645 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned 646 - BUG/MINOR: Fix type passed of sizeof() for calloc() 647 - BUG/MINOR: ssl: verifyhost is case sensitive 648 - BUG/MINOR: server: report correct error message for invalid port on "socks4" 649 - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly. 650 - BUG/MINOR: ssl/crt-list: crt-list could end without a \n 651 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK 652 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch 653 - BUG/MINOR: config: Fix memory leak on config parse listen 654 - BUG/MEDIUM: h2: report frame bits only for handled types 655 - BUG/MINOR: Fix memory leaks cfg_parse_peers 656 - MINOR: h2/trace: also display the remaining frame length in traces 657 - MINOR: backend: make the "whole" option of balance uri take only one bit 658 - MINOR: backend: add a new "path-only" option to "balance uri" 659 - REGTESTS: add a few load balancing tests 660 - BUG/MEDIUM: listeners: do not pause foreign listeners 661 - BUILD: trace: include tools.h 662 - REGTESTS: use "command" instead of "which" for better POSIX compatibility 663 - DOC: agent-check: fix typo in "fail" word expected reply 664 - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line() 665 - REGTEST: fix host part in balance-uri-path-only.vtc 666 - REGTEST: make agent-check.vtc require 1.8 667 - REGTEST: make abns_socket.vtc require 1.8 668 - REGTEST: make map_regm_with_backref require 1.7 669 6702020/09/08 : 2.2.3 671 - SCRIPTS: git-show-backports: make -m most only show the left branch 672 - SCRIPTS: git-show-backports: emit the shell command to backport a commit 673 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send 674 - CLEANUP: dns: typo in reported error message 675 - BUG/MAJOR: dns: disabled servers through SRV records never recover 676 - BUG/MINOR: spoa-server: fix size_t format printing 677 - DOC: spoa-server: fix false friends `actually` 678 - BUG/MINOR: ssl: fix memory leak at OCSP loading 679 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free() 680 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime 681 - MINOR: arg: Add an argument type to keep a reference on opaque data 682 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter 683 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created 684 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters 685 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation 686 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation 687 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation 688 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array 689 - MEDIUM: lua: Don't filter exported fetches and converters 690 - BUG/MINOR: snapshots: leak of snapshots on deinit() 691 - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option 692 - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2 693 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states 694 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction 695 - BUG/MEDIUM: ssl: never generates the chain from the verify store 696 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards 697 - BUG/MINOR: reload: do not fail when no socket is sent 698 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers 699 - MINOR: http-htx: Add an option to eval query-string when the path is replaced 700 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action 701 - BUG/MEDIUM: ssl: crt-list negative filters don't work 702 - DOC: cache: Use '<name>' instead of '<id>' in error message 703 - MINOR: cache: Reject duplicate cache names 704 - BUILD: tools: include auxv a bit later 705 - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1 706 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak 707 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed 708 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL 709 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure 710 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address 711 - BUG/MINOR: startup: haproxy -s cause 100% cpu 712 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action" 713 - BUG/MEDIUM: doc: Fix replace-path action description 714 - MINOR: http-rules: Add set-pathq and replace-pathq actions 715 - MINOR: http-fetch: Add pathq sample fetch 716 - REGTEST: Add a test for request path manipulations, with and without the QS 717 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp() 718 - MINOR: arg: Use chunk_destroy() to release string arguments 719 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate 720 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting 721 - BUILD: thread: limit the libgcc_s workaround to glibc only 722 - MINOR: Commit .gitattributes 723 - CLEANUP: Update .gitignore 724 - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response() 725 - BUG/MEDIUM: dns: Don't store additional records in a linked-list 726 - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers 727 - MINOR: server: Improve log message sent when server address is updated 728 - DOC: ssl-load-extra-files only applies to certificates on bind lines 729 - BUG/MINOR: auth: report valid crypto(3) support depending on build options 730 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections 731 7322020/07/31 : 2.2.2 733 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore 734 - BUILD: tools: fix build with static only toolchains 735 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized 736 - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status 737 - BUG/MAJOR: dns: don't treat Authority records as an error 738 - MEDIUM: lua: Add support for the Lua 5.4 739 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation 740 - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation 741 - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort 742 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields 743 - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect 744 - MINOR: connection: Preinstall the mux for non-ssl connect 745 - MINOR: stream-int: Be sure to have a mux to do sends and receives 746 - SCRIPTS: announce-release: add the link to the wiki in the announce messages 747 - BUG/MEDIUM: backend: always attach the transport before installing the mux 748 - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux 749 7502020/07/23 : 2.2.1 751 - BUG/MINOR: sample: Free str.area in smp_check_const_bool 752 - BUG/MINOR: sample: Free str.area in smp_check_const_meth 753 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD() 754 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ 755 - CONTRIB: da: fix memory leak in dummy function da_atlas_open() 756 - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list 757 - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list 758 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode 759 - BUG/MINOR: mux-fcgi: Handle empty STDERR record 760 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding 761 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT 762 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers. 763 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers 764 - BUG/MEDIUM: server: resolve state file handle leak on reload 765 - BUG/MEDIUM: server: fix possibly uninitialized state file on close 766 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked 767 - BUILD: config: address build warning on raspbian+rpi4 768 - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed 769 - BUILD: config: fix again bugs gcc warnings on calloc 770 - DOC: ssl: req_ssl_sni needs implicit TLS 771 - BUG/MEDIUM: arg: empty args list must be dropped 772 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section. 773 - BUG/MAJOR: tasks: don't requeue global tasks into the local queue 774 - BUG/MAJOR: dns: Make the do-resolve action thread-safe 775 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed 776 - MEDIUM: htx: Add a flag on a HTX message when no more data are expected 777 - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one 778 - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected 779 - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering 780 7812020/07/07 : 2.2.0 782 - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK 783 - CLEANUP: makefile: update the outdated list of DEBUG_xxx options 784 - BUILD: tools: make resolve_sym_name() return a const 785 - CLEANUP: auth: fix useless self-include of auth-t.h 786 - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char 787 - CLEANUP: assorted typo fixes in the code and comments 788 - WIP/MINOR: ssl: add sample fetches for keylog in frontend 789 - DOC: fix tune.ssl.keylog sample fetches array 790 - BUG/MINOR: ssl: check conn in keylog sample fetch 791 - DOC: configuration: various typo fixes 792 - MINOR: log: Remove unused case statement during the log-format string parsing 793 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode 794 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive 795 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed 796 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received 797 - MINOR: mux-h1: Improve traces about the splicing 798 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server 799 - BUG/MEDIUM: connection: Don't consider new private connections as available 800 - BUG/MINOR: connection: See new connection as available only on reuse always 801 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x 802 - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog() 803 - DOC: update INSTALL with new compiler versions 804 - DOC: minor update to coding style file 805 - MINOR: version: mention that it's an LTS release now 806 8072020/07/04 : 2.2-dev12 808 - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb() 809 - MINOR: cli: make "show sess" stop at the last known session 810 - CLEANUP: buffers: remove unused buffer_wq_lock lock 811 - BUG/MEDIUM: buffers: always allocate from the local cache first 812 - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns 813 - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY 814 - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections. 815 - BUG/MEDIUM: checks: Increment the server's curr_used_conns 816 - REORG: buffer: rename buffer.c to dynbuf.c 817 - REORG: includes: create tinfo.h for the thread_info struct 818 - CLEANUP: pool: only include the type files from types 819 - MINOR: pools: move the LRU cache heads to thread_info 820 - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD 821 - MINOR: stats: add 3 new output values for the per-server idle conn state 822 - MINOR: activity: add per-thread statistics on FD takeover 823 - BUG/MINOR: server: start cleaning idle connections from various points 824 - MEDIUM: server: improve estimate of the need for idle connections 825 - MINOR: stats: add the estimated need of concurrent connections per server 826 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock. 827 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list. 828 - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list." 829 - BUG/MINOR: haproxy: don't wake already stopping threads on exit 830 - BUG/MINOR: server: always count one idle slot for current thread 831 - MEDIUM: server: use the two thresholds for the connection release algorithm 832 - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules 833 - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race 834 - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks 835 - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks 836 - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks 837 - MINOR: pools: increase MAX_BASE_POOLS to 64 838 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list 839 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible 840 - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string() 841 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash 842 - BUG/MINOR: proxy: always initialize the trash in show servers state 843 - MINOR: cli/proxy: add a new "show servers conn" command 844 - MINOR: server: skip servers with no idle conns earlier 845 - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions 846 - MEDIUM: server: add a new pool-low-conn server setting 847 - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one 848 - MINOR: backend: don't always takeover from the same threads 849 - MINOR: sched: make sched->task_list_size atomic 850 - MEDIUM: sched: create a new TASK_KILLED task flag 851 - MEDIUM: sched: implement task_kill() to kill a task 852 - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup() 853 - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup() 854 - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup() 855 - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK() 856 - CLEANUP: connections: rename the toremove_lock to takeover_lock 857 - MEDIUM: connections: Don't use a lock when moving connections to remove. 858 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio 859 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio 860 - MINOR: config: add a new tune.idle-pool.shared global setting. 861 - MINOR: 51d: silence a warning about null pointer dereference 862 - MINOR: debug: add a new "debug dev memstats" command 863 - MINOR: log-format: allow to preserve spacing in log format strings 864 - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS 865 - BUG/MAJOR: sched: make sure task_kill() always queues the task 866 - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it. 867 - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none 868 - BUILD: haproxy: fix build error when RLIMIT_AS is not set 869 - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT 870 - MINOR: log: add time second fraction field to rfc5424 log timestamp. 871 - BUG/MINOR: log: missing timezone on iso dates. 872 - BUG/MEDIUM: server: don't kill all idle conns when there are not enough 873 - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on() 874 - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover. 875 - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened. 876 - BUG/MINOR: http_act: don't check capture id in backend (2) 877 - BUILD: makefile: disable threads by default on OpenBSD 878 - BUILD: peers: fix build warning with gcc 4.2.1 879 - CI: cirrus-ci: exclude slow reg-tests 880 8812020/06/26 : 2.2-dev11 882 - REGTEST: Add a simple script to tests errorfile directives in proxy sections 883 - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer 884 - BUG/MINOR: spoe: correction of setting bits for analyzer 885 - BUG/MINOR: cfgparse: Support configurations without newline at EOF 886 - MINOR: cfgparse: Warn on truncated lines / files 887 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry 888 - MINOR: debug: add a new DEBUG_FD build option 889 - BUG/MINOR: tasks: make sure never to exceed max_processed 890 - MINOR: task: add a new pointer to current tasklet queue 891 - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT 892 - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message 893 - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message 894 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free 895 - MINOR: ssl: free bind_conf_node in crtlist_free() 896 - MINOR: ssl: free the crtlist and the ckch during the deinit() 897 - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit() 898 - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted 899 - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c 900 - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes 901 - MINOR: tasks: make current_queue an index instead of a pointer 902 - MINOR: tasks: add a mask of the queues with active tasklets 903 - MINOR: tasks: pass the queue index to run_task_from_list() 904 - MINOR: tasks: make run_tasks_from_lists() scan the queues itself 905 - MEDIUM: tasks: add a tune.sched.low-latency option 906 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key 907 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines 908 - MINOR: tools: make parse_line() always terminate the args list 909 - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated 910 - MINOR: cfgparse: sanitize the output a little bit 911 - MINOR: cli/ssl: handle trailing slashes in crt-list commands 912 - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate 913 - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response 914 - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages 915 - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses 916 - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy 917 - MINOR: spoe: Don't systematically create new applets if processing rate is low 918 - DOC: fix some typos in the ssl_s_{s|i}_dn documentation 919 - BUILD: fix ssl_sample.c when building against BoringSSL 920 - CI: travis-ci: switch BoringSSL builds to ninja 921 - CI: extend spellchecker whitelist 922 - DOC: assorted typo fixes in the documentation 923 - CLEANUP: assorted typo fixes in the code and comments 924 - MINOR: http: Add support for http 413 status 925 - REGTEST: ssl: tests the ssl_f_* sample fetches 926 - REGTEST: ssl: add some ssl_c_* sample fetches test 927 - DOC: ssl: update the documentation of "commit ssl cert" 928 - BUG/MINOR: cfgparse: correctly deal with empty lines 929 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL 930 9312020/06/19 : 2.2-dev10 932 - BUILD: include: add sys/types before netinet/tcp.h 933 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor 934 - BUILD: Remove nowarn for warnings that do not trigger 935 - BUG/MEDIUM: pattern: fix thread safety of pattern matching 936 - BUILD: Re-enable -Wimplicit-fallthrough 937 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0 938 - BUILD: thread: add parenthesis around values of locking macros 939 - BUILD: proto_uxst: shut up yet another gcc's absurd warning 940 - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd 941 - CI: travis-ci: use "-O1" for clang builds 942 - MINOR: haproxy: Add void deinit_and_exit(int) 943 - MINOR: haproxy: Make use of deinit_and_exit() for clean exits 944 - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules 945 - BUILD: compression: make gcc 10 happy with free_zlib() 946 - BUILD: atomic: add string.h for memcpy() on ARM64 947 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change 948 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness 949 - BUILD: haproxy: mark deinit_and_exit() as noreturn 950 - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules 951 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks 952 - MINOR: tools: add a new configurable line parse, parse_line() 953 - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines 954 - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error 955 - MINOR: http: do not close connections anymore after internal responses 956 - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case 957 - BUG/MINOR: spoe: add missing key length check before checking key names 958 - MINOR: version: put the compiler version output into version.c not haproxy.c 959 - MINOR: compiler: always define __has_feature() 960 - MINOR: version: report the presence of the compiler's address sanitizer 961 - BUILD: Fix build by including haproxy/global.h 962 - BUG/MAJOR: connection: always disable ready events once reported 963 - CLEANUP: activity: remove unused counter fd_lock 964 - DOC: fd: make it clear that some fields ordering must absolutely be respected 965 - MINOR: activity: report the number of times poll() reports I/O 966 - MINOR: activity: rename confusing poll_* fields in the output 967 - MINOR: fd: Fix a typo in a coment. 968 - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own. 969 - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd. 970 - MINOR: activity: group the per-loop counters at the top 971 - MINOR: activity: rename the "stream" field to "stream_calls" 972 - MEDIUM: fd: refine the fd_takeover() migration lock 973 - MINOR: fd: slightly optimize the fd_takeover double-CAS loop 974 - MINOR: fd: factorize the fd_takeover() exit path to make it safer 975 - MINOR: peers: do not use localpeer as an array anymore 976 - MEDIUM: peers: add the "localpeer" global option 977 - MEDIUM: fd: add experimental support for edge-triggered polling 978 - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST 979 - MINOR: haproxy: process signals before runnable tasks 980 - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks() 981 - MEDIUM: tasks: also process late wakeups in process_runnable_tasks() 982 - BUG/MINOR: cli: allow space escaping on the CLI 983 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI 984 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI 985 - REGTEST: http-rules: test spaces in ACLs 986 - REGTEST: http-rules: test spaces in ACLs with master CLI 987 - BUG/MAJOR: init: properly compute the default global.maxpipes value 988 - MEDIUM: map: make the "clear map" operation yield 989 - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding 990 - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send. 991 - BUG/MINOR: systemd: Wait for network to be online 992 - DOC: configuration: Unindent non-code sentences in the protobuf example 993 - DOC: configuration: http-check send was missing from matrix 994 9952020/06/11 : 2.2-dev9 996 - BUG/MINOR: http-htx: Don't forget to release the http reply in release function 997 - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing 998 - MINOR: checks: Remove dead code from process_chk_conn() 999 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used 1000 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv 1001 - MINOR: lua: Use vars_unset_by_name_ifexist() 1002 - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*) 1003 - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value 1004 - MINOR: lua: Make `set_var()` and `unset_var()` return success 1005 - MEDIUM: lua: Add `ifexist` parameter to `set_var` 1006 - MEDIUM: ring: new section ring to declare custom ring buffers. 1007 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation 1008 - REGTESTS: Require the version 2.2 to execute lua/set_var 1009 - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect 1010 - MINOR: checks: Remove useless tests on the connection and conn-stream 1011 - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail 1012 - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections 1013 - BUG/MINOR: connection: Always get the stream when available to send PP2 line 1014 - BUG/MEDIUM: backend: set the connection owner to the session when using alpn. 1015 - MINOR: pools: compute an estimate of each pool's average needed objects 1016 - MEDIUM: pools: directly free objects when pools are too much crowded 1017 - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn 1018 - MINOR: http-ana: Make the function http_reply_to_htx() public 1019 - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses 1020 - MINOR: http-rules: Use an action function to eval http-request auth rules 1021 - CLEANUP: http: Remove unused HTTP message templates 1022 - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect 1023 - MINOR: checks: I/O callback function only rely on the data layer wake callback 1024 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup 1025 - BUG/MEDIUM: logs: fix trailing zeros on log message. 1026 - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6 1027 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf 1028 - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree 1029 - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines 1030 - CLEANUP: pools: use the regular lock for the flush operation on lockless pools 1031 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp 1032 - MINOR: ring: re-work ring attach generic API. 1033 - BUG/MINOR: error on unknown statement in ring section. 1034 - MEDIUM: ring: add server statement to forward messages from a ring 1035 - MEDIUM: ring: add new srv statement to support octet counting forward 1036 - MINOR: ssl: set ssl-min-ver in ambiguous configurations 1037 - CLEANUP: ssl: remove comment from dump_crtlist_sslconf() 1038 - BUILD: sink: address build warning on 32-bit architectures 1039 - BUG/MINOR: peers: fix internal/network key type mapping. 1040 - CLEANUP: regex: remove outdated support for regex actions 1041 - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent" 1042 - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade 1043 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action 1044 - DOC: add a line about comments in crt-list 1045 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations 1046 - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check 1047 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics 1048 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv() 1049 - BUG/MINOR: init: -x can have a parameter starting with a dash 1050 - BUG/MINOR: init: -S can have a parameter starting with a dash 1051 - BUG/MEDIUM: mworker: fix the reload with an -- option 1052 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases 1053 - BUG/MINOR: mworker: fix a memleak when execvp() failed 1054 - MINOR: sample: Add secure_memcmp converter 1055 - REORG: ebtree: move the C files from ebtree/ to src/ 1056 - REORG: ebtree: move the include files from ebtree to include/import/ 1057 - REORG: ebtree: clean up remains of the ebtree/ directory 1058 - REORG: include: create new file haproxy/api-t.h 1059 - REORG: include: create new file haproxy/api.h 1060 - REORG: include: update all files to use haproxy/api.h or api-t.h if needed 1061 - CLEANUP: include: remove common/config.h 1062 - CLEANUP: include: remove unused template.h 1063 - REORG: include: move MIN/MAX from tools.h to compat.h 1064 - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h 1065 - CLEANUP: include: remove unused common/tools.h 1066 - REORG: include: move the base files from common/ to haproxy/ 1067 - REORG: include: move version.h to haproxy/ 1068 - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/ 1069 - REORG: include: move openssl-compat.h from common/ to haproxy/ 1070 - REORG: include: move ist.h from common/ to import/ 1071 - REORG: include: move the BUG_ON() code to haproxy/bug.h 1072 - REORG: include: move debug.h from common/ to haproxy/ 1073 - CLEANUP: debug: drop unused function p_malloc() 1074 - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h 1075 - REORG: include: move istbuf.h to haproxy/ 1076 - REORG: include: split mini-clist into haproxy/list and list-t.h 1077 - REORG: threads: extract atomic ops from hathreads.h 1078 - CLEANUP: threads: remove a few needless includes of hathreads.h 1079 - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h 1080 - CLEANUP: thread: rename __decl_hathreads() to __decl_thread() 1081 - REORG: include: move time.h from common/ to haproxy/ 1082 - REORG: include: move integer manipulation functions from standard.h to intops.h 1083 - CLEANUP: include: remove excessive includes of common/standard.h 1084 - REORG: include: move freq_ctr to haproxy/ 1085 - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions 1086 - REORG: memory: move the pool type definitions to haproxy/pool-t.h 1087 - REORG: memory: move the OS-level allocator to haproxy/pool-os.h 1088 - MINOR: memory: don't let __pool_get_first() pick from the cache 1089 - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself 1090 - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free() 1091 - MEDIUM: memory: make local pools independent on lockless pools 1092 - REORG: include: move common/memory.h to haproxy/pool.h 1093 - REORG: include: move common/chunk.h to haproxy/chunk.h 1094 - REORG: include: move activity to haproxy/ 1095 - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h 1096 - REORG: include: move common/net_helper.h to haproxy/net_helper.h 1097 - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h 1098 - REORG: include: split common/regex.h into haproxy/regex{,-t}.h 1099 - REORG: include: split common/xref.h into haproxy/xref{,-t}.h 1100 - REORG: include: move common/ticks.h to haproxy/ticks.h 1101 - REORG: include: split common/http.h into haproxy/http{,-t}.h 1102 - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h 1103 - REORG: include: move common/h1.h to haproxy/h1.h 1104 - REORG: include: split common/htx.h into haproxy/htx{,-t}.h 1105 - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl 1106 - REORG: include: move common/h2.h to haproxy/h2.h 1107 - REORG: include: move common/fcgi.h to haproxy/ 1108 - REORG: include: move protocol.h to haproxy/protocol{,-t}.h 1109 - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h 1110 - REORG: include: move dict.h to hparoxy/dict{,-t}.h 1111 - REORG: include: move shctx to haproxy/shctx{,-t}.h 1112 - REORG: include: move port_range.h to haproxy/port_range{,-t}.h 1113 - REORG: include: move fd.h to haproxy/fd{,-t}.h 1114 - REORG: include: move ring to haproxy/ring{,-t}.h 1115 - REORG: include: move sink.h to haproxy/sink{,-t}.h 1116 - REORG: include: move pipe.h to haproxy/pipe{,-t}.h 1117 - CLEANUP: include: remove empty raw_sock.h 1118 - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h 1119 - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h 1120 - REORG: include: move compression.h to haproxy/compression{,-t}.h 1121 - REORG: include: move h1_htx.h to haproxy/h1_htx.h 1122 - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h 1123 - REORG: include: move hlua.h to haproxy/hlua{,-t}.h 1124 - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h 1125 - REORG: include: move action.h to haproxy/action{,-t}.h 1126 - REORG: include: move arg.h to haproxy/arg{,-t}.h 1127 - REORG: include: move auth.h to haproxy/auth{,-t}.h 1128 - REORG: include: move dns.h to haproxy/dns{,-t}.h 1129 - REORG: include: move flt_http_comp.h to haproxy/ 1130 - REORG: include: move counters.h to haproxy/counters-t.h 1131 - REORG: include: split mailers.h into haproxy/mailers{,-t}.h 1132 - REORG: include: move capture.h to haproxy/capture{,-t}.h 1133 - REORG: include: move frontend.h to haproxy/frontend.h 1134 - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h 1135 - REORG: include: move http_rules.h to haproxy/http_rules.h 1136 - CLEANUP: include: remove unused mux_pt.h 1137 - REORG: include: move mworker.h to haproxy/mworker{,-t}.h 1138 - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h 1139 - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h 1140 - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h 1141 - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h 1142 - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h 1143 - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h 1144 - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h 1145 - REORG: include: move listener.h to haproxy/listener{,-t}.h 1146 - REORG: include: move pattern.h to haproxy/pattern{,-t}.h 1147 - REORG: include: move map to haproxy/map{,-t}.h 1148 - REORG: include: move payload.h to haproxy/payload.h 1149 - REORG: include: move sample.h to haproxy/sample{,-t}.h 1150 - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h 1151 - REORG: include: move vars.h to haproxy/vars{,-t}.h 1152 - REORG: include: split global.h into haproxy/global{,-t}.h 1153 - REORG: include: move task.h to haproxy/task{,-t}.h 1154 - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h 1155 - REORG: include: move signal.h to haproxy/signal{,-t}.h 1156 - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h 1157 - REORG: include: move connection.h to haproxy/connection{,-t}.h 1158 - REORG: include: move checks.h to haproxy/check{,-t}.h 1159 - REORG: include: move http_fetch.h to haproxy/http_fetch.h 1160 - REORG: include: move peers.h to haproxy/peers{,-t}.h 1161 - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h 1162 - REORG: include: move session.h to haproxy/session{,-t}.h 1163 - REORG: include: move trace.h to haproxy/trace{,-t}.h 1164 - REORG: include: move acl.h to haproxy/acl.h{,-t}.h 1165 - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h 1166 - REORG: move applet.h to haproxy/applet{,-t}.h 1167 - REORG: include: move stats.h to haproxy/stats{,-t}.h 1168 - REORG: include: move cli.h to haproxy/cli{,-t}.h 1169 - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h 1170 - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h 1171 - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h 1172 - REORG: include: move channel.h to haproxy/channel{,-t}.h 1173 - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h 1174 - REORG: include: move filters.h to haproxy/filters{,-t}.h 1175 - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h 1176 - REORG: include: move log.h to haproxy/log{,-t}.h 1177 - REORG: include: move proxy.h to haproxy/proxy{,-t}.h 1178 - REORG: include: move spoe.h to haproxy/spoe{,-t}.h 1179 - REORG: include: move backend.h to haproxy/backend{,-t}.h 1180 - REORG: include: move queue.h to haproxy/queue{,-t}.h 1181 - REORG: include: move server.h to haproxy/server{,-t}.h 1182 - REORG: include: move stream.h to haproxy/stream{,-t}.h 1183 - REORG: include: move cfgparse.h to haproxy/cfgparse.h 1184 - CLEANUP: hpack: export debug functions and move inlines to .h 1185 - REORG: check: move the e-mail alerting code to mailers.c 1186 - REORG: check: move tcpchecks away from check.c 1187 - REORG: check: move email_alert* from proxy-t.h to mailers-t.h 1188 - REORG: check: extract the external checks from check.{c,h} 1189 - CLEANUP: include: don't include stddef.h directly 1190 - CLEANUP: include: don't include proxy-t.h in global-t.h 1191 - CLEANUP: include: move sample_data out of sample-t.h 1192 - REORG: include: move the error reporting functions to from log.h to errors.h 1193 - BUILD: reorder objects in the Makefile for faster builds 1194 - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate 1195 - CLEANUP: include: make atomic.h part of the base API 1196 - REORG: include: move MAX_THREADS to defaults.h 1197 - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h 1198 - CLEANUP: include: tree-wide alphabetical sort of include files 1199 - REORG: include: make list-t.h part of the base API 1200 - REORG: dgram: rename proto_udp to dgram 1201 12022020/05/22 : 2.2-dev8 1203 - MINOR: checks: Improve report of unexpected errors for expect rules 1204 - MEDIUM: checks: Add matching on log-format string for expect rules 1205 - DOC: Fix req.body and co documentation to be accurate 1206 - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead 1207 - CLEANUP: checks: sort and rename tcpcheck_expect_type types 1208 - MINOR: checks: Use dedicated actions to send log-format strings in send rules 1209 - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules 1210 - MINOR: checks/sample: Remove unnecessary tests on the sample session 1211 - REGTEST: checks: Adapt SSL error message reported when connection is rejected 1212 - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly 1213 - MINOR: checks: Support log-format string to set the URI for HTTP send rules 1214 - MINOR: checks: Support log-format string to set the body for HTTP send rules 1215 - DOC: Be more explicit about configurable check ok/error/timeout status 1216 - MINOR: checks: Make matching on HTTP headers for expect rules less obscure 1217 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT 1218 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur 1219 - REGTESTS: make the http-check-send test require version 2.2 1220 - BUG/MINOR: http-ana: fix NTLM response parsing again 1221 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer 1222 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered 1223 - MINOR: cfgparse: Improve error message for invalid \x sequences 1224 - CI: travis-ci: enable arm64 builds again 1225 - MEDIUM: ssl: increase default-dh-param to 2048 1226 - CI: travis-ci: skip pcre2 on arm64 build 1227 - CI: travis-ci: extend the build time for SSL to 60 minutes 1228 - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM 1229 - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET 1230 - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h 1231 - CLEANUP: remove THREAD_LOCAL from config.h 1232 - CI: travis-ci: upgrade LibreSSL versions 1233 - DOC: assorted typo fixes in the documentation 1234 - CI: extend spellchecker whitelist 1235 - CLEANUP: assorted typo fixes in the code and comments 1236 - MAJOR: contrib: porting spoa_server to support python3 1237 - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect 1238 - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done 1239 - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection 1240 - MINOR: checks: Don't try to send outgoing data if waiting to be able to send 1241 - MINOR: sample: Move aes_gcm_dec implementation into sample.c 1242 - MINOR: sample: Add digest and hmac converters 1243 - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed 1244 - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0 1245 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools" 1246 - BUG/MINOR: pollers: remove uneeded free in global init 1247 - CLEANUP: select: enhance readability in init 1248 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping 1249 - MINOR: soft-stop: let the first stopper only signal other threads 1250 - BUILD: select: only declare existing local labels to appease clang 1251 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry. 1252 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP. 1253 - DOC: retry-on can only be used with mode http 1254 - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages 1255 - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism 1256 - MINOR: ssl: add a new function ssl_sock_get_ssl_object() 1257 - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate 1258 - REORG: ssl: move macros and structure definitions to ssl_sock.h 1259 - CLEANUP: ssl: remove the shsess_* macros 1260 - REORG: move the crt-list structures in their own .h 1261 - REORG: ssl: move the ckch structures to types/ssl_ckch.h 1262 - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h 1263 - REORG: ssl: move crtlist functions to src/ssl_crtlist.c 1264 - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h 1265 - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c 1266 - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c 1267 - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c 1268 - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c 1269 - REORG: ssl: move ssl configuration to cfgparse-ssl.c 1270 - MINOR: ssl: remove static keyword in some SSL utility functions 1271 - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues 1272 - REORG: ssl: move sample fetches to src/ssl_sample.c 1273 - REORG: ssl: move utility functions to src/ssl_utils.c 1274 - DOC: ssl: update MAINTAINERS file 1275 - CI: travis-ci: switch arm64 builds to use openssl from distro 1276 - MINOR: stats: Prepare for more accurate moving averages 1277 - MINOR: stats: Expose native cum_req metric for a server 1278 - MEDIUM: stats: Enable more accurate moving average calculation for stats 1279 - BUILD: ssl: include buffer common headers for ssl_sock_ctx 1280 - BUILD: ssl: include errno.h in ssl_crtlist.c 1281 - CLEANUP: acl: remove unused assignment 1282 - DOC/MINOR: halog: Add long help info for ic flag 1283 - BUILD: ssl: fix build without OPENSSL_NO_ENGINE 1284 - DOC: SPOE is no longer experimental 1285 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt() 1286 - MINOR: config: Don't dump keywords if argument is NULL 1287 - MEDIUM: checks: Make post-41 the default mode for mysql checks 1288 - BUG/MINOR: logs: prevent double line returns in some events. 1289 - MEDIUM: sink: build header in sink_write for log formats 1290 - MEDIUM: logs: buffer targets now rely on new sink_write 1291 - MEDIUM: sink: add global statement to create a new ring (sink buffer) 1292 - MEDIUM: hpack: use a pool for the hpack table 1293 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason 1294 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching 1295 - MINOR: applet: adopt the wait list entry from the CLI 1296 - MINOR: ring: make the applet code not depend on the CLI 1297 - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)" 1298 - CI: travis-ci: fix libslz download URL 1299 - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver 1300 - CLEANUP: http_ana: Remove unused TXN flags 1301 - BUG/MINOR: http-rules: Mark http return rules as final 1302 - MINOR: http-htx: Add http_reply type based on what is used for http return rules 1303 - CLEANUP: http-htx: Rename http_error structure into http_error_msg 1304 - MINOR: http-rules: Use http_reply structure for http return rules 1305 - MINOR: http-htx: Use a dedicated function to release http_reply objects 1306 - MINOR: http-htx: Use a dedicated function to parse http reply arguments 1307 - MINOR: http-htx: Use a dedicated function to check http reply validity 1308 - MINOR: http-ana: Use a dedicated function to send a response from an http reply 1309 - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules 1310 - MINOR: http-htx: Store default error messages in a global http reply array 1311 - MINOR: http-htx: Store messages of an http-errors section in a http reply array 1312 - MINOR: http-htx: Store errorloc/errorfile messages in http replies 1313 - MINOR: proxy: Add references on http replies for proxy error messages 1314 - MINOR: http-htx: Use http reply from the http-errors section 1315 - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation 1316 - MEDIUM: http-ana: Use http replies for HTTP error messages 1317 - CLEANUP: http-htx: Remove unused storage of error messages in buffers 1318 - MINOR: htx: Add a function to copy a buffer in an HTX message 1319 - CLEANUP: channel: Remove channel_htx_copy_msg() function 1320 - MINOR: http-ana: Add a function to write an http reply in an HTX message 1321 - MINOR: http-htx/proxy: Add http-error directive using http return syntax 1322 - DOC: Fix "errorfile" description in the configuration manual 1323 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified 1324 - BUILD: hpack: make sure the hpack table can still be built standalone 1325 - CONTRIB: hpack: make use of the simplified standalone HPACK API 1326 - MINOR: connection: add pp2-never-send-local to support old PP2 behavior 1327 13282020/05/05 : 2.2-dev7 1329 - MINOR: version: Show uname output in display_version() 1330 - CI: run weekly OpenSSL "no-deprecated" builds 1331 - CLEANUP: log: fix comment of parse_logformat_string() 1332 - DOC: Improve documentation on http-request set-src 1333 - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list' 1334 - MINOR: ssl/cli: restrain certificate path when inserting into a directory 1335 - MINOR: ssl: add ssl-skip-self-issued-ca global option 1336 - BUG/MINOR: ssl: default settings for ssl server options are not used 1337 - MINOR: config: add a global directive to set default SSL curves 1338 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly. 1339 - DOC: internals: update the SSL architecture schema 1340 - BUG/MINOR: tools: fix the i386 version of the div64_32 function 1341 - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom() 1342 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP 1343 - DOC: option logasap does not depend on mode 1344 - MEDIUM: memory: make pool_gc() run under thread isolation 1345 - MINOR: contrib: make the peers wireshark dissector a plugin 1346 - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors 1347 - BUG/MINOR: check: Update server address and port to execute an external check 1348 - MINOR: mini-clist: Add functions to iterate backward on a list 1349 - MINOR: checks: Add a way to send custom headers and payload during http chekcs 1350 - MINOR: server: respect warning and alert semantic 1351 - BUG/MINOR: checks: Respect the no-check-ssl option 1352 - BUG/MEDIUM: server/checks: Init server check during config validity check 1353 - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port 1354 - BUG/MINOR: checks: chained expect will not properly wait for enough data 1355 - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented 1356 - MINOR: checks: Use an enum to describe the tcp-check rule type 1357 - MINOR: checks: Simplify connection flag parsing in tcp-check connect 1358 - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data 1359 - MINOR: checks: simplify tcp expect config parser 1360 - MINOR: checks: add min-recv tcp-check expect option 1361 - MINOR: checks: add linger option to tcp connect 1362 - MINOR: checks: define a tcp expect type 1363 - MEDIUM: checks: rewrite tcp-check expect block 1364 - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules 1365 - MINOR: checks: add rbinary expect match type 1366 - MINOR: checks: Simplify functions to get step id and comment 1367 - MEDIUM: checks: capture groups in expect regexes 1368 - MINOR: checks: Don't use a static tcp rule list head 1369 - MEDIUM: checks: Use a non-comment rule iterator to get next rule 1370 - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules 1371 - MINOR: checks: Set the tcp-check rule index during parsing 1372 - MINOR: checks: define tcp-check send type 1373 - MINOR: checks: define a tcp-check connect type 1374 - MEDIUM: checks: Add implicit tcp-check connect rule 1375 - MAJOR: checks: Refactor and simplify the tcp-check loop 1376 - MEDIUM: checks: Associate a session to each tcp-check healthcheck 1377 - MINOR: checks/vars: Add a check scope for variables 1378 - MEDIUM: checks: Parse custom action rules in tcp-checks 1379 - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks 1380 - MINOR: checks: Add the sni option for tcp-check connect rules 1381 - MINOR: checks: Add the via-socks4 option for tcp-check connect rules 1382 - MINOR: checks: Add the alpn option for tcp-check connect rules 1383 - MINOR: ssl: Export a generic function to parse an alpn string 1384 - MINOR: checks: Add the default option for tcp-check connect rules 1385 - MINOR: checks: Add the addr option for tcp-check connect rule 1386 - MEDIUM: checks: Support expression to set the port 1387 - MEDIUM: checks: Support log-format strings for tcp-check send rules 1388 - MINOR: log: Don't depends on a stream to process samples in log-format string 1389 - MINOR: log: Don't systematically set LW_REQ when a sample expr is added 1390 - MEDIUM: checks: Add a shared list of tcp-check rules 1391 - MINOR: sample: add htonl converter 1392 - MINOR: sample: add cut_crlf converter 1393 - MINOR: sample: add ltrim converter 1394 - MINOR: sample: add rtrim converter 1395 - MINOR: checks: Use a name for the healthcheck status enum 1396 - MINOR: checks: Add option to tcp-check expect rules to customize error status 1397 - MINOR: checks: Merge tcp-check comment rules with the others at config parsing 1398 - MINOR: checks: Add a sample fetch to extract a block from the input check buffer 1399 - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules 1400 - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules 1401 - MINOR: checks: Relax the default option for tcp-check connect rules 1402 - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset 1403 - MINOR: checks: Export the tcpcheck_eval_ret enum 1404 - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages 1405 - MINOR: checks: Support custom functions to eval a tcp-check expect rules 1406 - MEDIUM: checks: Implement redis check using tcp-check rules 1407 - MEDIUM: checks: Implement ssl-hello check using tcp-check rules 1408 - MEDIUM: checks: Implement smtp check using tcp-check rules 1409 - MEDIUM: checks: Implement postgres check using tcp-check rules 1410 - MEDIUM: checks: Implement MySQL check using tcp-check rules 1411 - MEDIUM: checks: Implement LDAP check using tcp-check rules 1412 - MEDIUM: checks: Implement SPOP check using tcp-check rules 1413 - MINOR: server/checks: Move parsing of agent keywords in checks.c 1414 - MINOR: server/checks: Move parsing of server check keywords in checks.c 1415 - MEDIUM: checks: Implement agent check using tcp-check rules 1416 - REGTEST: Adapt regtests about checks to recent changes 1417 - MINOR: Produce tcp-check info message for pure tcp-check rules only 1418 - MINOR: checks: Add an option to set success status of tcp-check expect rules 1419 - MINOR: checks: Improve log message of tcp-checks on success 1420 - MINOR: proxy/checks: Move parsing of httpchk option in checks.c 1421 - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c 1422 - MINOR: proxy/checks: Register a keyword to parse http-check rules 1423 - MINOR: proxy/checks: Move parsing of external-check option in checks.c 1424 - MINOR: proxy/checks: Register a keyword to parse external-check rules 1425 - MEDIUM: checks: Use a shared ruleset to store tcp-check rules 1426 - MINOR: checks: Use an indirect string to represent the expect matching string 1427 - MINOR: checks: Introduce flags to configure in tcp-check expect rules 1428 - MINOR: standard: Add my_memspn and my_memcspn 1429 - MINOR: checks: Add a reverse non-comment rule iterator to get last rule 1430 - MAJOR: checks: Implement HTTP check using tcp-check rules 1431 - MINOR: checks: Make resume conditions more explicit in tcpcheck_main() 1432 - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux 1433 - MEDIUM: checks: Refactor how data are received in tcpcheck_main() 1434 - MINOR: checks/obj_type: Add a new object type for checks 1435 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function 1436 - MINOR: checks: Use the check as origin when a session is created 1437 - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule 1438 - MINOR: connection: Add a function to install a mux for a health-check 1439 - MAJOR: checks: Use the best mux depending on the protocol for health checks 1440 - MEDIUM: checks: Implement default TCP check using tcp-check rules 1441 - MINOR: checks: Remove unused code about pure TCP checks 1442 - CLEANUP: checks: Reorg checks.c file to be more readable 1443 - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes 1444 - MINOR: ist: Add a function to retrieve the ist pointer 1445 - MINOR: checks: Use ist API as far as possible 1446 - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains 1447 - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets 1448 - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks 1449 - REGTEST: Add scripts to test based tcp-check health-checks 1450 - Revert "MEDIUM: checks: capture groups in expect regexes" 1451 - DOC: Add documentation about comments for tcp-check and http-check directives 1452 - DOC: Fix the tcp-check and http-check directives layout 1453 - BUG/MEDIUM: checks: Use the mux protocol specified on the server line 1454 - MINOR: checks: Support mux protocol definition for tcp and http health checks 1455 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it 1456 - MINOR: checks: Support list of status codes on http-check expect rules 1457 - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed 1458 - REGTEST: Add a script to validate agent checks 1459 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable 1460 - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect 1461 - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support 1462 - BUG/MINOR: checks/server: use_ssl member must be signed 1463 - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux 1464 - BUG/MEDIUM: checks: Destroy the conn-stream before the session 1465 - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet 1466 - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6 1467 - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules 1468 - MINOR: checks: Use ver keyword to specify the HTTP version for http checks 1469 - BUG/MINOR: checks: Remove wrong variable redeclaration 1470 - BUG/MINOR: checks: Properly handle truncated mysql server messages 1471 - CLEANUP: checks: Remove unused code when ldap server message is parsed 1472 - MINOR: checks: Make the use of the check's server more explicit on connect 1473 - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed 1474 - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed 1475 - BUG/MINOR: checks: Don't lose warning on proxy capability 1476 - MINOR: log: Add "Tu" timer 1477 - BUG/MINOR: checks: Set the output buffer length before calling parse_binary() 1478 - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections 1479 - REGTEST: ssl: test the client certificate authentication 1480 - DOC: give a more accurate description of what check does 1481 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream 1482 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream 1483 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam 1484 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam 1485 - CLEANUP: http: add a few comments on certain functions' assumptions about streams 1486 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream 1487 - MINOR: http-htx: Export functions to update message authority and host 1488 - MINOR: checks: Don't support multiple host header for http-check send rule 1489 - MINOR: checks: Skip some headers for http-check send rules 1490 - MINOR: checks: Keep the Host header and the request uri synchronized 1491 - CLEANUP: checks: Fix checks includes 1492 - DOC: Fix send rules in the http-check connect example 1493 - DOC: Add more info about request formatting in http-check send description 1494 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script 1495 - REGTEST: ssl: remove curl from the "add ssl crt-list" test 1496 - REGTEST: ssl: improve the "set ssl cert" test 1497 - CLEANUP: ssl: silence a build warning when threads are disabled 1498 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop 1499 - MINOR: threads: export the POSIX thread ID in panic dumps 1500 - BUG/MINOR: debug: properly use long long instead of long for the thread ID 1501 - BUG/MEDIUM: shctx: really check the lock's value while waiting 1502 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock 1503 - MINOR: stream: report the list of active filters on stream crashes 1504 - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection 1505 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release() 1506 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach() 1507 - BUG/MEDIUM: connections: force connections cleanup on server changes 1508 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed 1509 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id() 1510 - CLEANUP: connections: align function declaration 1511 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string 1512 - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples 1513 - DOC: Document the log-format parameter for tcp-check send/send-binary rules 1514 - MINOR: checks: Add support of payload-based sample fetches 1515 - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches 1516 - MINOR: checks: Add support of server side ssl sample fetches 1517 - MINOR: checks: Add support of HTTP response sample fetches 1518 - MINOR: http-htx: Support different methods to look for header names 1519 - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing 1520 - BUG/MINOR: checks: Support multiple HTTP expect rules 1521 - REGTEST: checks: Fix sync condition for agent-check 1522 - MEDIUM: checks: Support matching on headers for http-check expect rules 1523 - MINOR: lua: allow changing port with set_addr 1524 - BUG/MINOR: da: Fix HTX message prefetch 1525 - BUG/MINOR: wurfl: Fix HTX message prefetch 1526 - BUG/MINOR: 51d: Fix HTX message prefetch 1527 - MINOR: ist: add istadv() function 1528 - MINOR: ist: add istissame() function 1529 - MINOR: istbuf: add ist2buf() function 1530 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS() 1531 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}() 1532 - DOC: update intro.txt for 2.2 1533 - DOC: intro: add a contacts section 1534 15352020/04/17 : 2.2-dev6 1536 - BUG/MINOR: ssl: memory leak when find_chain is NULL 1537 - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain 1538 - MINOR: ssl: rework add cert chain to CTX to be libssl independent 1539 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized 1540 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL 1541 - BUG/MINOR: peers: Use after free of "peers" section. 1542 - CI: github actions: add weekly h2spec test 1543 - BUG/MEDIUM: mux_h1: Process a new request if we already received it. 1544 - MINOR: build: Fix build in mux_h1 1545 - CLEANUP: remove obsolete comments 1546 - BUG/MEDIUM: dns: improper parsing of aditional records 1547 - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx 1548 - MINOR: listener: add so_name sample fetch 1549 - MEDIUM: stream: support use-server rules with dynamic names 1550 - MINOR: servers: Add a counter for the number of currently used connections. 1551 - MEDIUM: connections: Revamp the way idle connections are killed 1552 - MINOR: cli: add a general purpose pointer in the CLI struct 1553 - MINOR: ssl: add a list of bind_conf in struct crtlist 1554 - REORG: ssl: move SETCERT enum to ssl_sock.h 1555 - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry 1556 - REORG: ssl: move some functions above crtlist_load_cert_dir() 1557 - MINOR: ssl: use crtlist_free() upon error in directory loading 1558 - MINOR: ssl: add a list of crtlist_entry in ckch_store 1559 - MINOR: ssl: store a ptr to crtlist in crtlist_entry 1560 - MINOR: ssl/cli: update pointer to store in 'commit ssl cert' 1561 - MEDIUM: ssl/cli: 'add ssl crt-list' command 1562 - REGTEST: ssl/cli: test the 'add ssl crt-list' command 1563 - BUG/MINOR: ssl: entry->ckch_inst not initialized 1564 - REGTEST: ssl/cli: change test type to devel 1565 - REGTEST: make the PROXY TLV validation depend on version 2.2 1566 - CLEANUP: assorted typo fixes in the code and comments 1567 - BUG/MINOR: stats: Fix color of draining servers on stats page 1568 - DOC: internals: Fix spelling errors in filters.txt 1569 - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused. 1570 - REGTEST: make the unique-id test depend on version 2.0 1571 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive 1572 - MINOR: ssl: split the line parsing of the crt-list 1573 - MINOR: ssl/cli: support filters and options in add ssl crt-list 1574 - MINOR: ssl: add a comment above the ssl_bind_conf keywords 1575 - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list 1576 - REGTEST: ssl: pollute the crt-list file 1577 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping 1578 - BUG/MINOR: protocol_buffer: Wrong maximum shifting. 1579 - CLEANUP: src/fd.c: mask setsockopt with DISGUISE 1580 - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry 1581 - REGTEST: ssl/cli: add other cases of 'add ssl crt-list' 1582 - CLEANUP: assorted typo fixes in the code and comments 1583 - DOC: management: add the new crt-list CLI commands 1584 - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list' 1585 - MINOR: ssl/cli: 'del ssl crt-list' delete an entry 1586 - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option 1587 - CI: use better SSL library definition 1588 - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds 1589 - CI: travis-ci: upgrade openssl to 1.1.1f 1590 - MINOR: ssl: improve the errors when a crt can't be open 1591 - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD 1592 - CI: adopt openssl download script to download all versions 1593 - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete 1594 - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list 1595 - MINOR: ssl/cli: 'del ssl cert' deletes a certificate 1596 - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached 1597 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert' 1598 - CLEANUP: ssl: use the refcount for the SSL_CTX' 1599 - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry 1600 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain 1601 - CLEANUP: ssl: remove a commentary in struct ckch_inst 1602 - MINOR: ssl: initialize all list in ckch_inst_new() 1603 - MINOR: ssl: free instances and SNIs with ckch_inst_free() 1604 - MINOR: ssl: replace ckchs_free() by ckch_store_free() 1605 - BUG/MEDIUM: ssl/cli: trying to access to free'd memory 1606 - MINOR: ssl: ckch_store_new() alloc and init a ckch_store 1607 - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist 1608 - REORG: ssl: move some free/new functions 1609 - MINOR: ssl: crtlist_entry_{new, free} 1610 - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing 1611 - MINOR: ssl: don't alloc ssl_conf if no option found 1612 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections 1613 - BUG/MINOR: peers: Incomplete peers sections should be validated. 1614 - MINOR: init: report in "haproxy -c" whether there were warnings or not 1615 - MINOR: init: add -dW and "zero-warning" to reject configs with warnings 1616 - MINOR: init: report the compiler version in haproxy -vv 1617 - CLEANUP: assorted typo fixes in the code and comments 1618 - MINOR: init: report the haproxy version and executable path once on errors 1619 - DOC: Make how "option redispatch" works more explicit 1620 - BUILD: Makefile: add linux-musl to TARGET 1621 - CLEANUP: assorted typo fixes in the code and comments 1622 - CLEANUP: http: Fixed small typo in parse_http_return 1623 - DOC: hashing: update link to hashing functions 1624 16252020/03/23 : 2.2-dev5 1626 - CLEANUP: ssl: is_default is a bit in ckch_inst 1627 - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters 1628 - DOC: ssl: clarify security implications of TLS tickets 1629 - CLEANUP: remove support for Linux i686 vsyscalls 1630 - CLEANUP: drop support for USE_MY_ACCEPT4 1631 - CLEANUP: remove support for USE_MY_EPOLL 1632 - CLEANUP: remove support for USE_MY_SPLICE 1633 - CLEANUP: remove the now unused common/syscall.h 1634 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU 1635 - BUILD: wdt: only test for SI_TKILL when compiled with thread support 1636 - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS 1637 - CLEANUP: ssl: separate the directory loading in a new function 1638 - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer. 1639 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL; 1640 - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock() 1641 - MEDIUM: init: always try to push the FD limit when maxconn is set from -m 1642 - BUG/MAJOR: list: fix invalid element address calculation 1643 - BUILD: stream-int: fix a few includes dependencies 1644 - MINOR: mt_lists: Appease gcc. 1645 - MINOR: lists: Implement function to convert list => mt_list and mt_list => list 1646 - MINOR: servers: Kill priv_conns. 1647 - MINOR: lists: fix indentation. 1648 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64 1649 - BUG/MEDIUM: connections: Don't assume the connection has a valid session. 1650 - BUG/MEDIUM: pools: Always update free_list in pool_gc(). 1651 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask 1652 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping 1653 - BUG/MINOR: haproxy/threads: try to make all threads leave together 1654 - Revert "BUILD: travis-ci: enable s390x builds" 1655 - BUILD: travis-ci: enable regular s390x builds 1656 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID 1657 - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections 1658 - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2 1659 - CLEANUP: connection: Add blank line after declarations in PP handling 1660 - CLEANUP: assorted typo fixes in the code and comments 1661 - CI: add spellcheck github action 1662 - DOC: correct typo in alert message about rspirep 1663 - CI: travis: switch linux builds to clang-9 1664 - MINOR: debug: add a new DISGUISE() macro to pass a value as identity 1665 - MINOR: debug: consume the write() result in BUG_ON() to silence a warning 1666 - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result 1667 - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF 1668 - CLEANUP: connection: Stop directly setting an ist's .ptr 1669 - CI: travis: revert to clang-7 for BoringSSL tests 1670 - BUILD: on ARM, must be linked to libatomic. 1671 - BUILD: makefile: fix regex syntax in ARM platform detection 1672 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases. 1673 - REORG: ssl: move ssl_sock_load_cert() 1674 - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs() 1675 - MEDIUM: ssl: allow crt-list caching 1676 - MINOR: ssl: directories are loaded like crt-list 1677 - BUG/MINOR: ssl: can't open directories anymore 1678 - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area 1679 - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock. 1680 - MINOR: mux_pt: Don't try to remove the connection from the idle list. 1681 - MINOR: ssl/cli: show/dump ssl crt-list 1682 - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist 1683 - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock. 1684 - BUG/MINOR: ssl: memory leak in crtlist_parse_file() 1685 - MINOR: tasks: Provide the tasklet to the callback. 1686 - BUG/MINOR: ssl: memleak of struct crtlist_entry 1687 - BUG/MINOR: pattern: Do not pass len = 0 to calloc() 1688 - BUILD: makefile: fix expression again to detect ARM platform 1689 - CI: travis: re-enable ASAN on clang 1690 - CI: travis: proper group output redirection together with travis_wait 1691 - DOC: assorted typo fixes in the documentation 1692 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h. 1693 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue(). 1694 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc. 1695 - MINOR: ssl/cli: 'new ssl cert' command 1696 - MINOR: ssl/cli: show certificate status in 'show ssl cert' 1697 - MEDIUM: sessions: Don't be responsible for connections anymore. 1698 - MEDIUM: servers: Split the connections into idle, safe, and available. 1699 - MINOR: fd: Implement fd_takeover(). 1700 - MINOR: connections: Add a new mux method, "takeover". 1701 - MINOR: connections: Make the "list" element a struct mt_list instead of list. 1702 - MINOR: connections: Add a flag to know if we're in the safe or idle list. 1703 - MEDIUM: connections: Attempt to get idle connections from other threads. 1704 - MEDIUM: mux_h1: Implement the takeover() method. 1705 - MEDIUM: mux_h2: Implement the takeover() method. 1706 - MEDIUM: mux_fcgi: Implement the takeover() method. 1707 - MEDIUM: connections: Kill connections even if we are reusing one. 1708 - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters. 1709 - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure 1710 - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements 1711 - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0 1712 - BUG/MEDIUM: build: Fix compilation by spelling decl correctly. 1713 - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern. 1714 - CI: run travis-ci builds on push only, skip pull requests 1715 - CI: temporarily disable unstable travis arm64 builds 1716 - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert' 1717 - BUG/MINOR: connections: Make sure we free the connection on failure. 1718 - BUG/MINOR: ssl/cli: fix a potential NULL dereference 1719 - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list. 1720 - BUG/MINOR: connections: Set idle_time before adding to idle list. 1721 - MINOR: muxes: Note that we can't usee a connection when added to the srv idle. 1722 - REGTEST: increase timeouts on the seamless-reload test 1723 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection 1724 - CLEANUP: haproxy/threads: don't check global_tasks_mask twice 1725 17262020/03/09 : 2.2-dev4 1727 - MEDIUM: buffer: remove the buffer_wq lock 1728 - MINOR: ssl: move find certificate chain code to its own function 1729 - MINOR: ssl: resolve issuers chain later 1730 - MINOR: ssl: resolve ocsp_issuer later 1731 - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:" 1732 - BUG/MINOR: h2: reject again empty :path pseudo-headers 1733 - MINOR: wdt: always clear sigev_value to make valgrind happy 1734 - MINOR: epoll: always initialize all of epoll_event to please valgrind 1735 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch 1736 - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null() 1737 - BUILD: cirrus-ci: suppress OS version check when installing packages 1738 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits 1739 - CLEANUP: fd: remove the FD_EV_STATUS aggregate 1740 - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags 1741 - MINOR: fd: merge the read and write error bits into RW error 1742 - BUG/MINOR: dns: ignore trailing dot 1743 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric 1744 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name 1745 - MINOR: mux-h1: Remove useless case-insensitive comparisons 1746 - MINOR: rawsock: always mark the FD not ready when we're certain it happens 1747 - MEDIUM: connection: make the subscribe() call able to wakeup if ready 1748 - MEDIUM: connection: don't stop receiving events in the FD handler 1749 - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore 1750 - BUG/MINOR: arg: don't reject missing optional args 1751 - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log 1752 - MINOR: debug: report the task handler's pointer relative to main 1753 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump 1754 - MINOR: haproxy: export main to ease access from debugger 1755 - MINOR: haproxy: export run_poll_loop 1756 - MINOR: task: export run_tasks_from_list 1757 - BUILD: tools: remove obsolete and conflicting trace() from standard.c 1758 - MINOR: tools: add new function dump_addr_and_bytes() 1759 - MINOR: tools: add resolve_sym_name() to resolve function pointers 1760 - MINOR: debug: use resolve_sym_name() to dump task handlers 1761 - MINOR: cli: make "show fd" rely on resolve_sym_name() 1762 - MEDIUM: debug: add support for dumping backtraces of stuck threads 1763 - MINOR: debug: call backtrace() once upon startup 1764 - MINOR: ssl: add "ca-verify-file" directive 1765 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled 1766 - BUILD: Makefile: include librt before libpthread 1767 - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available 1768 - MINOR: wdt: do not depend on USE_THREAD 1769 - MINOR: debug: report the number of entries in the backtrace 1770 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems 1771 - MINOR: debug: use our own backtrace function on clang+x86_64 1772 - MINOR: debug: dump the whole trace if we can't spot the starting point 1773 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms 1774 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr() 1775 - CLEANUP: contrib/spoa_example: Fix several typos 1776 - BUILD: makefile: do not modify the build options during make reg-tests 1777 - BUG/MEDIUM: connection: stop polling for sending when the event is ready 1778 - MEDIUM: stream-int: make sure to try to immediately validate the connection 1779 - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect() 1780 - MEDIUM: connection: only call ->wake() for connect() without I/O 1781 - OPTIM: connection: disable receiving on disabled events when the run queue is too high 1782 - OPTIM: mux-h1: subscribe rather than waking up at a few other places 1783 - REGTEST: Add unique-id reg-test 1784 - MINOR: stream: Add stream_generate_unique_id function 1785 - MINOR: stream: Use stream_generate_unique_id 1786 - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore 1787 - MINOR: ssl/cli: support crt-list filters 1788 - MINOR: ssl: reach a ckch_store from a sni_ctx 1789 - DOC: fix incorrect indentation of http_auth_* 1790 - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters 1791 - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size 1792 - MINOR: ist: Add `IST_NULL` macro 1793 - MINOR: ist: Add `int isttest(const struct ist)` 1794 - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)` 1795 - CLEANUP: Use `isttest()` and `istfree()` 1796 - MINOR: ist: Add `struct ist istdup(const struct ist)` 1797 - MINOR: proxy: Make `header_unique_id` a `struct ist` 1798 - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist` 1799 - OPTIM: startup: fast unique_id allocation for acl. 1800 - DOC: configuration.txt: fix various typos 1801 - DOC: assorted typo fixes in the documentation and Makefile 1802 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits 1803 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths 1804 - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs 1805 - MINOR: buf: Add function to insert a string at an absolute offset in a buffer 1806 - MINOR: htx: Add a function to return a block at a specific offset 1807 - MINOR: htx: Use htx_find_offset() to truncate an HTX message 1808 - MINOR: flt_trace: Use htx_find_offset() to get the available payload length 1809 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data 1810 - BUG/MINOR: filters: Forward everything if no data filters are called 1811 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload 1812 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload 1813 - BUG/MINOR: http-ana: Reset request analysers on a response side error 1814 - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action 1815 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not 1816 - MINOR: lua: Add function to know if a channel is a response one 1817 - MINOR: lua: Stop using the lua txn in hlua_http_get_headers() 1818 - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr() 1819 - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr() 1820 - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY 1821 - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time() 1822 - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function 1823 - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction 1824 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action 1825 - BUG/MINOR: http-rules: Fix a typo in the reject action function 1826 - MINOR: cache/filters: Initialize the cache filter when stream is created 1827 - MINOR: compression/filters: Initialize the comp filter when stream is created 1828 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action 1829 - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed 1830 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop 1831 - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response 1832 - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h 1833 - BUILD: ssl: include mini-clist.h 1834 - BUILD: global: must not include common/standard.h but only types/freq_ctr.h 1835 - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h 1836 - BUILD: listener: types/listener.h must not include standard.h 1837 - BUG/MEDIUM: random: initialize the random pool a bit better 1838 - BUG/MEDIUM: random: implement per-thread and per-process random sequences 1839 - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences" 1840 - BUILD: cirrus-ci: get rid of unstable freebsd images 1841 - MINOR: tools: add 64-bit rotate operators 1842 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG 1843 - MINOR: backend: use a single call to ha_random32() for the random LB algo 1844 - BUG/MINOR: checks/threads: use ha_random() and not rand() 1845 - MINOR: sample: make all bits random on the rand() sample fetch 1846 - MINOR: tools: add a generic function to generate UUIDs 1847 - DOC: fix typo about no-tls-tickets 1848 - DOC: improve description of no-tls-tickets 1849 - DOC: assorted typo fixes in the documentation 1850 - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions 1851 18522020/02/25 : 2.2-dev3 1853 - SCRIPTS: announce-release: place the send command in the mail's header 1854 - SCRIPTS: announce-release: allow the user to force to overwrite old files 1855 - SCRIPTS: backport: fix the master branch detection 1856 - BUG/MINOR: http-act: Set stream error flag before returning an error 1857 - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions 1858 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init 1859 - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules 1860 - DOC: schematic of the SSL certificates architecture 1861 - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed 1862 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit 1863 - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming 1864 - BUILD: cirrus-ci: workaround "pkg install" bug 1865 - BUILD: cirrus-ci: add ERR=1 to freebsd builds 1866 - BUG/MINOR: connection: correctly retry I/O on signals 1867 - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0) 1868 - BUILD: http_act: cast file sizes when reporting file size error 1869 - BUG/MEDIUM: listener: only consider running threads when resuming listeners 1870 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init 1871 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener 1872 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs 1873 - BUILD: travis-ci: no more allowed failures for openssl-1.0.2 1874 - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors) 1875 - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME} 1876 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative 1877 - SCRIPTS: make announce-release executable again 1878 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat 1879 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method. 1880 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param 1881 - CLEANUP: ssl: remove unused functions in openssl-compat.h 1882 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex 1883 - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier 1884 - MINOR: chunk: implement chunk_strncpy() to copy partial strings 1885 - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name 1886 - MEDIUM: arg: make make_arg_list() stop after its own arguments 1887 - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them 1888 - MEDIUM: arg: make make_arg_list() support quotes in arguments 1889 - MINOR: sample: make sample_parse_expr() able to return an end pointer 1890 - MEDIUM: log-format: make the LF parser aware of sample expressions' end 1891 - BUG/MINOR: arg: report an error if an argument is larger than bufsize 1892 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft 1893 - BUILD: enable ERR=1 in github cygwin builds 1894 - BUG/MINOR: arg: fix again incorrect argument length check 1895 - MINOR: sample: regsub now supports backreferences 1896 - BUG/MINOR: tools: also accept '+' as a valid character in an identifier 1897 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message 1898 - MINOR: filters: Forward data only if the last filter forwards something 1899 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them 1900 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes 1901 - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed 1902 - BUG/MINOR: sample: exit regsub() in case of trash allocation error 1903 - MINOR: ssl: add "issuers-chain-path" directive. 1904 - REGTESTS: use "command -v" instead of "which" 1905 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive 1906 - MINOR: http-ana: Match on the path if the monitor-uri starts by a / 1907 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments 1908 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered 1909 - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage 1910 - MINOR: checks: do not call conn_xprt_stop_send() anymore 1911 - CLEANUP: epoll: place the struct epoll_event in the stack 1912 - MEDIUM: connection: remove the intermediary polling state from the connection 1913 - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send() 1914 - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send() 1915 - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_* 1916 - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv} 1917 - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE 1918 - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant 1919 - MINOR: ist: add an iststop() function 1920 - BUG/MINOR: http: http-request replace-path duplicates the query string 1921 - CLEANUP: sample: use iststop instead of a for loop 1922 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned 1923 - MINOR: compiler: move CPU capabilities definition from config.h and complete them 1924 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support 1925 - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families 1926 - BUILD: fix recent build failure on unaligned archs 1927 - MINOR: ssl: load the key from a dedicated file 1928 - BUG/MINOR: ssl: load .key in a directory only after PEM 1929 - MINOR: compiler: drop special cases of likely/unlikely for older compilers 1930 - CLEANUP: conn: Do not pass a pointer to likely 1931 - CLEANUP: net_helper: Do not negate the result of unlikely 1932 - BUILD: remove obsolete support for -mregparm / USE_REGPARM 1933 - CLEANUP: cfgparse: Fix type of second calloc() parameter 1934 - BUILD: ssl: only pass unsigned chars to isspace() 1935 - BUILD: general: always pass unsigned chars to is* functions 1936 - BUG/MINOR: sample: fix the json converter's endian-sensitivity 1937 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions 1938 - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings 1939 - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash 1940 - CLEANUP: stick-tables: use read_u32() to display a node's key 1941 - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask 1942 - MINOR: pattern: fix all remaining strict aliasing issues 1943 - CLEANUP: lua: fix aliasing issues in the address matching code 1944 - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser 1945 - BUILD: makefile: re-enable strict aliasing 1946 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections 1947 - MINOR: compiler: add new alignment macros 1948 - BUILD: ebtree: improve architecture-specific alignment 1949 - MINOR: config: mark global.debug as deprecated 1950 - BUILD: travis-ci: enable s390x builds 1951 - MINOR: ssl/cli: 'show ssl cert' displays the chain 1952 - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain 1953 - MINOR: ssl/cli: reorder 'show ssl cert' output 1954 - CLEANUP: ssl: move issuer_chain tree and definition 1955 - DOC: proxy-protocol: clarify IPv6 address representation in the spec 1956 19572020/02/07 : 2.2-dev2 1958 - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure 1959 - MEDIUM: cli: Allow multiple filter entries for "show table" 1960 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst. 1961 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent 1962 - BUILD: stick-table: fix build errors introduced by last stick-table change 1963 - BUG/MINOR: cli: Missing arg offset for filter data values. 1964 - MEDIUM: streams: Always create a conn_stream in connect_server(). 1965 - MEDIUM: connections: Get ride of the xprt_done callback. 1966 - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1 1967 - BUILD: CI: move cygwin builds to Github Actions 1968 - MINOR: cli: Report location of errors or any extra data for "show table" 1969 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded 1970 - CLEANUP: backend: remove useless test for inexistent connection 1971 - CLEANUP: backend: shut another false null-deref in back_handle_st_con() 1972 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2 1973 - BUG/MINOR: ssl: increment issuer refcount if in chain 1974 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer 1975 - BUG/MINOR: ssl: typo in previous patch 1976 - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session(). 1977 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert" 1978 - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_* 1979 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake. 1980 - MINOR: stream-int: always report received shutdowns 1981 - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE 1982 - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE 1983 - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O 1984 - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early 1985 - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes 1986 - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending 1987 - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH 1988 - BUG/MINOR: stktable: report the current proxy name in error messages 1989 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers" 1990 - MINOR: lua: Add hlua_prepend_path function 1991 - MINOR: lua: Add lua-prepend-path configuration option 1992 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option 1993 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines 1994 - BUG/MINOR: http-ana: Increment the backend counters on the backend 1995 - BUG/MINOR: stream: Be sure to have a listener to increment its counters 1996 - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL. 1997 - REGTESTS: make the set_ssl_cert test require version 2.2 1998 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer. 1999 - MINOR: ssl: Remove dead code. 2000 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure. 2001 - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con(). 2002 - MEDIUM: streams: Don't close the connection in back_handle_st_con(). 2003 - MEDIUM: streams: Don't close the connection in back_handle_st_rdy(). 2004 - BUILD: CI: disable slow regtests on Travis 2005 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack 2006 - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions 2007 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2 2008 - BUG/MINOR: dns: allow 63 char in hostname 2009 - MINOR: proxy: clarify number of connections log when stopping 2010 - DOC: word converter ignores delimiters at the start or end of input string 2011 - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv} 2012 - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2 2013 - MEDIUM: pipe/thread: reduce the locking overhead 2014 - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes 2015 - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters 2016 - MINOR: tasks: move the list walking code to its own function 2017 - MEDIUM: tasks: implement 3 different tasklet classes with their own queues 2018 - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet 2019 - OPTIM: task: refine task classes default CPU bandwidth ratios 2020 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection. 2021 - MINOR: task: permanently flag tasklets waking themselves up 2022 - MINOR: task: make sched->current also reflect tasklets 2023 - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING 2024 - OPTIM: task: readjust CPU bandwidth distribution since last update 2025 - MINOR: task: don't set TASK_RUNNING on tasklets 2026 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush(). 2027 - MINOR: memory: Only init the pool spinlock once. 2028 - BUG/MEDIUM: memory: Add a rwlock before freeing memory. 2029 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty. 2030 - MINOR: ssl: ssl-load-extra-files configure loading of files 2031 - SCRIPTS: add a new "backport" script to simplify long series of backports 2032 - BUG/MINOR: ssl: we may only ignore the first 64 errors 2033 - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts 2034 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure 2035 - CLEANUP: hpack: remove a redundant test in the decoder 2036 - CLEANUP: peers: Remove unused static function `free_dcache` 2037 - CLEANUP: peers: Remove unused static function `free_dcache_tx` 2038 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX 2039 - CONTRIB: debug: add the possibility to decode the value as certain types only 2040 - CONTRIB: debug: support reporting multiple values at once 2041 - BUG/MINOR: http-act: Use the good message to test strict rewritting mode 2042 - MINOR: global: Set default tune.maxrewrite value during global structure init 2043 - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails 2044 - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve 2045 - MINOR: htx: Add a function to append an HTX message to another one 2046 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer 2047 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported 2048 - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size 2049 - MINOR: dns: Add function to release memory allocated for a do-resolve rule 2050 - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response 2051 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect 2052 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction 2053 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated 2054 - MINOR: http-ana: Rely on http_reply_and_close() to handle server error 2055 - MINOR: http-ana: Add a function for forward internal responses 2056 - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses 2057 - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding 2058 - MEDIUM: http-rules: Add the return action to HTTP rules 2059 - MEDIUM: http-rules: Support extra headers for HTTP return actions 2060 - CLEANUP: lua: Remove consistency check for sample fetches and actions 2061 - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response 2062 - MINOR: lua: Get the action return code on the stack when an action finishes 2063 - MINOR: lua: Create the global 'act' object to register all action return codes 2064 - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields 2065 - MEDIUM: lua: Add ability for actions to intercept HTTP messages 2066 - REGTESTS: Add reg tests for the HTTP return action 2067 - REGTESTS: Add a reg test for http-after-response rulesets 2068 - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn 2069 - MINOR: acl: Warn when an ACL is named 'or' 2070 - CONTRIB: debug: also support reading values from stdin 2071 - SCRIPTS: backport: use short revs and resolve the initial commit 2072 - BUG/MINOR: acl: Fix type of log message when an acl is named 'or' 2073 20742020/01/22 : 2.2-dev1 2075 - DOC: this is development again 2076 - MINOR: version: this is development again, update the status 2077 - SCRIPTS: update create-release to fix the changelog on new branches 2078 - CLEANUP: ssl: Clean up error handling 2079 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only 2080 - BUG/MINOR: h1: Don't test the host header during response parsing 2081 - BUILD/MINOR: trace: fix use of long type in a few printf format strings 2082 - DOC: Clarify behavior of server maxconn in HTTP mode 2083 - MINOR: ssl: deduplicate ca-file 2084 - MINOR: ssl: compute ca-list from deduplicate ca-file 2085 - MINOR: ssl: deduplicate crl-file 2086 - CLEANUP: dns: resolution can never be null 2087 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty 2088 - DOC: ssl/cli: set/commit/abort ssl cert 2089 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2 2090 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive 2091 - BUG/MINOR: stats: Fix HTML output for the frontends heading 2092 - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0 2093 - DOC: clarify matching strings on binary fetches 2094 - DOC: Fix ordered list in summary 2095 - DOC: move the "group" keyword at the right place 2096 - MEDIUM: init: prevent process and thread creation at runtime 2097 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights 2098 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data 2099 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible 2100 - BUG/MINOR: ssl/cli: don't overwrite the filters variable 2101 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener 2102 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1 2103 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending 2104 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN 2105 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data 2106 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity(). 2107 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting. 2108 - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec" 2109 - MEDIUM: init: set NO_NEW_PRIVS by default when supported 2110 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added 2111 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted 2112 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state 2113 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events 2114 - BUG/MINOR: listener: also clear the error flag on a paused listener 2115 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept() 2116 - MINOR: listener: make the wait paths cleaner and more reliable 2117 - MINOR: listener: split dequeue_all_listener() in two 2118 - REORG: listener: move the global listener queue code to listener.c 2119 - DOC: document the listener state transitions 2120 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data. 2121 - BUG/MAJOR: dns: add minimalist error processing on the Rx path 2122 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive. 2123 - DOC: listeners: add a few missing transitions 2124 - BUG/MINOR: tasks: only requeue a task if it was already in the queue 2125 - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups 2126 - DOC: proxies: HAProxy only supports 3 connection modes 2127 - DOC: remove references to the outdated architecture.txt 2128 - BUG/MINOR: log: fix minor resource leaks on logformat error path 2129 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers 2130 - BUG/MINOR: listener: do not immediately resume on transient error 2131 - BUG/MINOR: server: make "agent-addr" work on default-server line 2132 - BUG/MINOR: listener: fix off-by-one in state name check 2133 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy() 2134 - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state 2135 - MINOR: http-htx: Add some htx sample fetches for debugging purpose 2136 - REGTEST: Add an HTX reg-test to check an edge case 2137 - DOC: clarify the fact that replace-uri works on a full URI 2138 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter 2139 - BUG/MINOR: sample: always check converters' arguments 2140 - MINOR: sample: Validate the number of bits for the sha2 converter 2141 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early. 2142 - MINOR: ssl/cli: 'show ssl cert' give information on the certificates 2143 - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2 2144 - MINOR: debug: support logging to various sinks 2145 - MINOR: http: add a new "replace-path" action 2146 - REGTEST: ssl: test the "set ssl cert" CLI command 2147 - REGTEST: run-regtests: implement #REQUIRE_BINARIES 2148 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task 2149 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing 2150 - BUG/MEDIUM: ssl: Revamp the way early data are handled. 2151 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute 2152 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd 2153 - REGTEST: make the "set ssl cert" require version 2.1 2154 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines 2155 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry 2156 - BUG/MINOR: state-file: do not store duplicates in the global tree 2157 - BUG/MINOR: state-file: do not leak memory on parse errors 2158 - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty 2159 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream 2160 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility 2161 - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH 2162 - BUILD: travis-ci: reenable address sanitizer for clang builds 2163 - BUG/MINOR: checks: refine which errno values are really errors. 2164 - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active 2165 - CLEANUP: connection: conn->xprt is never NULL 2166 - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP 2167 - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP 2168 - REORG: connection: move tcp_connect_probe() to conn_fd_check() 2169 - MINOR: connection: check for connection validation earlier 2170 - MINOR: connection: remove the double test on xprt_done_cb() 2171 - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE 2172 - MINOR: poller: do not call the IO handler if the FD is not active 2173 - OPTIM: epoll: always poll for recv if neither active nor ready 2174 - OPTIM: polling: do not create update entries for FD removal 2175 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready. 2176 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection. 2177 - BUILD: CI: modernize cirrus-ci 2178 - MINOR: config: disable busy polling on old processes 2179 - MINOR: ssl: Remove unused variable "need_out". 2180 - BUG/MINOR: h1: Report the right error position when a header value is invalid 2181 - BUG/MINOR: proxy: Fix input data copy when an error is captured 2182 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied 2183 - BUG/MINOR: channel: inject output data at the end of output 2184 - BUG/MEDIUM: session: do not report a failure when rejecting a session 2185 - MEDIUM: dns: implement synchronous send 2186 - MINOR: raw_sock: make sure to disable polling once everything is sent 2187 - MINOR: http: Add 410 to http-request deny 2188 - MINOR: http: Add 404 to http-request deny 2189 - CLEANUP: mux-h2: remove unused goto "out_free_h2s" 2190 - BUILD: cirrus-ci: choose proper openssl package name 2191 - BUG/MAJOR: listener: do not schedule a task-less proxy 2192 - CLEANUP: server: remove unused err section in server_finalize_init 2193 - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf" 2194 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached 2195 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free(). 2196 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send() 2197 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch 2198 - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert 2199 - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections 2200 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary 2201 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs 2202 - REGTEST: mcli/mcli_start_progs: start 2 programs 2203 - BUG/MEDIUM: mworker: remain in mworker mode during reload 2204 - DOC: clarify crt-base usage 2205 - CLEANUP: compression: remove unused deinit_comp_ctx section 2206 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed(). 2207 - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync. 2208 - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks 2209 - BUG/MAJOR: hashes: fix the signedness of the hash inputs 2210 - REGTEST: add sample_fetches/hashes.vtc to validate hashes 2211 - BUG/MEDIUM: cli: _getsocks must send the peers sockets 2212 - CLEANUP: cli: deduplicate the code in _getsocks 2213 - BUG/MINOR: stream: don't mistake match rules for store-request rules 2214 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability 2215 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns 2216 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only 2217 - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf() 2218 - MEDIUM: connection: get rid of CO_FL_CURR_* flags 2219 - BUILD: pattern: include errno.h 2220 - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux 2221 - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux 2222 - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut 2223 - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut 2224 - REORG: stream/backend: move backend-specific stuff to backend.c 2225 - MEDIUM: backend: move the connection finalization step to back_handle_st_con() 2226 - MEDIUM: connection: merge the send_wait and recv_wait entries 2227 - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake 2228 - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock 2229 - MEDIUM: mux-h1: merge recv_wait and send_wait 2230 - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications 2231 - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications 2232 - MINOR: connection: make the last arg of subscribe() a struct wait_event* 2233 - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format. 2234 - DOC: Fix copy and paste mistake in http-response replace-value doc 2235 - BUG/MINOR: cache: Fix leak of cache name in error path 2236 - BUG/MINOR: dns: Make dns_query_id_seed unsigned 2237 - BUG/MINOR: 51d: Fix bug when HTX is enabled 2238 - MINOR: http-htx: Move htx sample fetches in the scope "internal" 2239 - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data' 2240 - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string 2241 - DOC: Add a section to document the internal sample fetches 2242 - MINOR: mux-h1: Inherit send flags from the upper layer 2243 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics 2244 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters 2245 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules 2246 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing 2247 - MEDIUM: http-rules: Register an action keyword for all http rules 2248 - MINOR: tcp-rules: Always set from which ruleset a rule comes from 2249 - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action 2250 - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR 2251 - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR 2252 - MINOR: counters: Add a counter to report internal processing errors 2253 - MEDIUM: http-ana: Properly handle internal processing errors 2254 - MINOR: http-rules: Add a rule result to report internal error 2255 - MINOR: http-rules: Handle internal errors during HTTP rules evaluation 2256 - MINOR: http-rules: Add more return codes to let custom actions act as normal ones 2257 - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules 2258 - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules 2259 - MINOR: stats: Report internal errors in the proxies/listeners/servers stats 2260 - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server 2261 - MINOR: counters: Remove failed_secu counter and use denied_resp instead 2262 - MINOR: counters: Review conditions to increment counters from analysers 2263 - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites 2264 - MINOR: http-rules: Handle all message rewrites the same way 2265 - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode 2266 - MEDIUM: http-rules: Enable the strict rewriting mode by default 2267 - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc 2268 - MINOR: actions: Add a function pointer to release args used by actions 2269 - MINOR: actions: Regroup some info about HTTP rules in the same struct 2270 - MINOR: http-rules/tcp-rules: Call the defined action function first if defined 2271 - MINOR: actions: Rename the act_flag enum into act_opt 2272 - MINOR: actions: Add flags to configure the action behaviour 2273 - MINOR: actions: Use an integer to set the action type 2274 - MINOR: http-rules: Use a specific action type for some custom HTTP actions 2275 - MINOR: http-rules: Make replace-header and replace-value custom actions 2276 - MINOR: http-rules: Make set-header and add-header custom actions 2277 - MINOR: http-rules: Make set/del-map and add/del-acl custom actions 2278 - MINOR: http-rules: Group all processing of early-hint rule in its case clause 2279 - MEDIUM: http-rules: Make early-hint custom actions 2280 - MINOR: http-rule/tcp-rules: Make track-sc* custom actions 2281 - MINOR: tcp-rules: Make tcp-request capture a custom action 2282 - MINOR: http-rules: Add release functions for existing HTTP actions 2283 - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing 2284 - MINOR: tcp-rules: Add release functions for existing TCP actions 2285 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing 2286 - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX 2287 - MINOR: http-htx: Add functions to create HTX redirect message 2288 - MINOR: config: Use dedicated function to parse proxy's errorfiles 2289 - MINOR: config: Use dedicated function to parse proxy's errorloc 2290 - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages 2291 - MINOR: proxy: Register keywords to parse errorfile and errorloc directives 2292 - MINOR: http-htx: Add a new section to create groups of custom HTTP errors 2293 - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy 2294 - MINOR: http-rules: Update txn flags and status when a deny rule is executed 2295 - MINOR: http-rules: Support an optional status on deny rules for http reponses 2296 - MINOR: http-rules: Use same function to parse request and response deny actions 2297 - MINOR: http-ana: Add an error message in the txn and send it when defined 2298 - MEDIUM: http-rules: Support an optional error message in http deny rules 2299 - REGTEST: Add a strict rewriting mode reg test 2300 - REGEST: Add reg tests about error files 2301 - MINOR: ssl: accept 'verify' bind option with 'set ssl cert' 2302 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak 2303 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak 2304 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak 2305 - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded 2306 - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved 2307 - BUILD: CI: introduce ARM64 builds 2308 - BUILD: ssl: more elegant anti-replay feature presence check 2309 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive 2310 - MEDIUM: dns: use Additional records from SRV responses 2311 - CLEANUP: Consistently `unsigned int` for bitfields 2312 - CLEANUP: pattern: remove the pat_time definition 2313 - BUG/MINOR: http_act: don't check capture id in backend 2314 - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x 2315 23162019/11/25 : 2.2-dev0 2317 - exact copy of 2.1.0 2318 23192019/11/25 : 2.1.0 2320 - BUG/MINOR: init: fix set-dumpable when using uid/gid 2321 - MINOR: init: avoid code duplication while setting identify 2322 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer 2323 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1 2324 - MINOR: peers: Alway show the table info for disconnected peers. 2325 - MINOR: peers: Add TX/RX heartbeat counters. 2326 - MINOR: peers: Add debugging information to "show peers". 2327 - BUG/MINOR: peers: Wrong null "server_name" data field handling. 2328 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction 2329 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec 2330 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting. 2331 - BUILD/MINOR: ssl: fix compiler warning about useless statement 2332 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported 2333 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope 2334 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance 2335 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests 2336 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path 2337 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding 2338 - DOC: Update http-buffer-request description to remove the part about chunks 2339 - BUG/MINOR: stream-int: Fix si_cs_recv() return value 2340 - DOC: internal: document the init calls 2341 - MEDIUM: dns: Add resolve-opts "ignore-weight" 2342 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code 2343 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit 2344 - MINOR: ssl/cli: display warning during 'commit ssl cert' 2345 - MINOR: version: report the version status in "haproxy -v" 2346 - MINOR: version: emit the link to the known bugs in output of "haproxy -v" 2347 - DOC: Add documentation about the use-service action 2348 - MINOR: ssl: fix possible null dereference in error handling 2349 - BUG/MINOR: ssl: fix curve setup with LibreSSL 2350 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments 2351 - CLEANUP: ssl: check if a transaction exists once before setting it 2352 - BUG/MINOR: cli: fix out of bounds in -S parser 2353 - MINOR: ist: add ist_find_ctl() 2354 - BUG/MAJOR: h2: reject header values containing invalid chars 2355 - BUG/MAJOR: h2: make header field name filtering stronger 2356 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state 2357 - MINOR: h2: add a function to report H2 error codes as strings 2358 - MINOR: mux-h2/trace: report the connection and/or stream error code 2359 - SCRIPTS: create-release: show the correct origin name in suggested commands 2360 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands 2361 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error 2362 - BUILD: reorder the objects in the makefile 2363 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version 2364 - MINOR: version: indicate that this version is stable 2365 23662019/11/15 : 2.1-dev5 2367 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found 2368 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension 2369 - BUG/MINOR: ssl/cli: fix an error when a file is not found 2370 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert' 2371 - DOC: fix date and http_date keywords syntax 2372 - MINOR: peers: Add "log" directive to "peers" section. 2373 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages 2374 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it 2375 - MINOR: flt_trace: Rename macros to print trace messages 2376 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug 2377 - MEDIUM: stream/trace: Register a new trace source with its events 2378 - MINOR: doc: http-reuse connection pool fix 2379 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams 2380 - MINOR: http-ana: Remove the unused function http_reset_txn() 2381 - BUG/MINOR: action: do-resolve now use cached response 2382 - BUG: dns: timeout resolve not applied for valid resolutions 2383 - DOC: management: fix typo on "cache_lookups" stats output 2384 - BUG/MINOR: stream: init variables when the list is empty 2385 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet. 2386 - BUG/MINOR: queue/threads: make the queue unlinking atomic 2387 - BUG/MEDIUM: Make sure we leave the session list in session_free(). 2388 - CLEANUP: session: slightly simplify idle connection cleanup logic 2389 - MINOR: memory: also poison the area on freeing 2390 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it 2391 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it 2392 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition 2393 - BUILD: contrib/da: remove an "unused" warning 2394 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams 2395 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams 2396 - MINOR: freq_ctr: Make the sliding window sums thread-safe 2397 - MINOR: stream: Remove the lock on the proxy to update time stats 2398 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time 2399 - MINOR: stats: Report max times in addition of the averages for sessions 2400 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions 2401 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics 2402 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server 2403 - DOC: Add missing stats fields in the management manual 2404 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers 2405 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe 2406 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state 2407 - MINOR: sink: Set the default max length for a message to BUFSIZE 2408 - MINOR: ring: make the parse function automatically set the handler/release 2409 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead 2410 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression 2411 24122019/11/03 : 2.1-dev4 2413 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed 2414 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent 2415 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached 2416 - DOC: remove obsolete section about header manipulation 2417 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error 2418 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler 2419 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries 2420 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri) 2421 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset() 2422 - BUG/MINOR: spoe: fix off-by-one length in UUID format string 2423 - BUILD/MINOR: ssl: shut up a build warning about format truncation 2424 - BUILD: do not disable -Wformat-truncation anymore 2425 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk 2426 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist" 2427 - MINOR: mux: Add a new method to get informations about a mux. 2428 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready. 2429 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready. 2430 - MINOR: doc: fix busy-polling performance reference 2431 - MINOR: config: allow no set-dumpable config option 2432 - MINOR: init: always fail when setrlimit fails 2433 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit' 2434 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2) 2435 - REGTEST: vtest can now enable mcli with its own flag 2436 - BUG/MINOR: config: Update cookie domain warn to RFC6265 2437 - MINOR: sample: add us/ms support to date/http_date 2438 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert() 2439 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors 2440 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list 2441 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams 2442 - BUG/MINOR: stats: properly check the path and not the whole URI 2443 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl 2444 - BUG/MINOR: ssl: ckch->chain must be initialized 2445 - BUG/MINOR: ssl: double free on error for ckch->{key,cert} 2446 - MINOR: ssl: BoringSSL ocsp_response does not need issuer 2447 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert 2448 - MINOR: backend: Add srv_name sample fetche 2449 - DOC: Add GitHub issue config.yml 2450 24512019/10/25 : 2.1-dev3 2452 - MINOR: mux-h2/trace: missing conn pointer in demux full message 2453 - MINOR: mux-h2: add a per-connection list of blocked streams 2454 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const 2455 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections 2456 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue. 2457 - BUG/MINOR: peers: crash on reload without local peer. 2458 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization 2459 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1 2460 - MINOR: htx: Adapt htx_dump() to be used from traces 2461 - MINOR: mux-h1/trace: register a new trace source with its events 2462 - MINOR: proxy: Store http-send-name-header in lower case 2463 - MINOR: http: Remove headers matching the name of http-send-name-header option 2464 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request 2465 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message 2466 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation 2467 - MINOR: fcgi: Add function to get the string representation of a record type 2468 - MINOR: mux-fcgi/trace: Register a new trace source with its events 2469 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri 2470 - DOC: clarify some points around http-send-name-header's behavior 2471 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS 2472 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces 2473 - DOC: fix typo in Prometheus exporter doc 2474 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX 2475 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri 2476 - MINOR: http: Add a function to get the authority into a URI 2477 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing 2478 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized 2479 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line 2480 - MEDIUM: h2: make the request parser rebuild a complete URI 2481 - MINOR: h2: report in the HTX flags when the request has an authority 2482 - MEDIUM: mux-h2: do not map Host to :authority on output 2483 - MEDIUM: h2: use the normalized URI encoding for absolute form requests 2484 - MINOR: stats: mention in the help message support for "json" and "typed" 2485 - MINOR: stats: get rid of the ST_CONVDONE flag 2486 - MINOR: stats: replace the ST_* uri_auth flags with STAT_* 2487 - MINOR: stats: always merge the uri_auth flags into the appctx flags 2488 - MINOR: stats: set the appctx flags when initializing the applet only 2489 - MINOR: stats: get rid of the STAT_SHOWADMIN flag 2490 - MINOR: stats: make stats_dump_fields_json() directly take flags 2491 - MINOR: stats: uniformize the calling convention of the dump functions 2492 - MINOR: stats: support the "desc" output format modifier for info and stat 2493 - MINOR: stats: prepare to add a description with each stat/info field 2494 - MINOR: stats: make "show stat" and "show info" 2495 - MINOR: stats: fill all the descriptions for "show info" and "show stat" 2496 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing 2497 - BUILD: stats: fix missing '=' sign in array declaration 2498 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED 2499 - MINOR: list: add new macro MT_LIST_BEHEAD 2500 - MEDIUM: task: Split the tasklet list into two lists. 2501 - MINOR: h2: Document traps to be avoided on multithread. 2502 - MINOR: lists: Try to use local variables instead of macro arguments. 2503 - MINOR: lists: Fix alignement of \ when relevant. 2504 - MINOR: mux-h2: also support emitting CONTINUATION on trailers 2505 - MINOR: ssl: crt-list do ckchn_lookup 2506 - REORG: ssl: rename ckch_node to ckch_store 2507 - REORG: ssl: move structures to ssl_sock.h 2508 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT 2509 - MINOR: ssl: initialize explicitly the sni_ctx trees 2510 - BUG/MINOR: ssl: abort on sni allocation failure 2511 - BUG/MINOR: ssl: free the sni_keytype nodes 2512 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure 2513 - MEDIUM: ssl: introduce the ckch instance structure 2514 - MEDIUM: ssl: split ssl_sock_add_cert_sni() 2515 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail 2516 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail 2517 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst 2518 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO 2519 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI 2520 - MINOR: ssl: load the sctl in/from the ckch 2521 - MINOR: ssl: load the ocsp in/from the ckch 2522 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni() 2523 - BUG/MINOR: ssl: fix build without SSL 2524 - BUG/MINOR: ssl: fix build without multi-cert bundles 2525 - BUILD: ssl: wrong #ifdef for SSL engines code 2526 - BUG/MINOR: ssl: fix OCSP build with BoringSSL 2527 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1 2528 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data 2529 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted 2530 - MINOR: mux-h1: Xfer as much payload data as possible during output processing 2531 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c 2532 - BUG/MINOR: mux-h1: Capture ignored parsing errors 2533 - MINOR: h1: Reject requests with different occurrences of the header host 2534 - MINOR: h1: Reject requests if the authority does not match the header host 2535 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings 2536 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too 2537 - BUG/MINOR: WURFL: fix send_log() function arguments 2538 - BUG/MINOR: ssl: fix error messages for OCSP loading 2539 - BUG/MINOR: ssl: can't load ocsp files 2540 - MINOR: version: make the version strings variables, not constants 2541 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive 2542 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy 2543 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request 2544 - BUILD: travis-ci: limit build to branches "master" and "next" 2545 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info 2546 - BUILD/SMALL: threads: enable threads on osx 2547 - BUILD/MEDIUM: threads: enable cpu_affinity on osx 2548 - MINOR: istbuf: add b_fromist() to make a buffer from an ist 2549 - BUG/MINOR: cache: also cache absolute URIs 2550 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally 2551 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers 2552 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD(). 2553 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing. 2554 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup() 2555 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads 2556 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once 2557 - Revert e8826ded5fea3593d89da2be5c2d81c522070995. 2558 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached. 2559 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive. 2560 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI 2561 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes 2562 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_* 2563 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings. 2564 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn 2565 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn 2566 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn 2567 - CLEANUP: bind: handle warning label on bind keywords parsing. 2568 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1 2569 - BUG/MINOR: mworker/cli: reload fail with inherited FD 2570 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed 2571 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr 2572 - BUG/MINOR: cache: alloc shctx after check config 2573 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found` 2574 - BUG/MINOR: server: check return value of fopen() in apply_server_state() 2575 - REGTESTS: make seamless-reload depend on 1.9 and above 2576 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum 2577 - BUG/MINOR: dns: allow srv record weight set to 0 2578 - BUG/MINOR: ssl: fix memcpy overlap without consequences. 2579 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion 2580 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless 2581 - BUG/MINOR: mux-h2: do not emit logs on backend connections 2582 - CLEANUP: ssl: remove old TODO commentary 2583 - CLEANUP: ssl: fix SNI/CKCH lock labels 2584 - MINOR: ssl: OCSP functions can load from file or buffer 2585 - MINOR: ssl: load sctl from buf OR from a file 2586 - MINOR: ssl: load issuer from file or from buffer 2587 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch() 2588 - BUG/MINOR: ssl/cli: fix looking up for a bundle 2589 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI 2590 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents 2591 - MINOR: ssl: copy a ckch from src to dst 2592 - MINOR: ssl: new functions duplicate and free a ckch_store 2593 - MINOR: ssl/cli: assignate a new ckch_store 2594 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler 2595 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP 2596 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl 2597 - BUG/MINOR: ssl: fix build with openssl < 1.1.0 2598 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL 2599 - MINOR: tcp: avoid confusion in time parsing init 2600 - MINOR: debug: add a new "debug dev stream" command 2601 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream" 2602 - REORG: move CLI access level definitions to cli.h 2603 - MINOR: cli: add an expert mode to hide dangerous commands 2604 - MINOR: debug: make most debug CLI commands accessible in expert mode 2605 - MINOR: stats/debug: maintain a counter of debug commands issued 2606 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream" 2607 26082019/10/01 : 2.1-dev2 2609 - DOC: management: document reuse and connect counters in the CSV format 2610 - DOC: management: document cache_hits and cache_lookups in the CSV format 2611 - BUG/MINOR: dns: remove irrelevant dependency on a client connection 2612 - MINOR: applet: make appctx use their own pool 2613 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed. 2614 - BUG/MEDIUM: http/htx: unbreak option http_proxy 2615 - BUG/MINOR: backend: do not try to install a mux when the connection failed 2616 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf() 2617 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules 2618 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies 2619 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware 2620 - BUG/MINOR: hlua: Make the function txn:done() HTX aware 2621 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability() 2622 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules 2623 - MINOR: proto_htx: Add the function htx_return_srv_error() 2624 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection 2625 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing 2626 - DOC: htx: Update comments in HTX files 2627 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size() 2628 - MINOR: htx: Deduce the number of used blocks from tail and head values 2629 - MINOR: htx: Use an array of char to store HTX blocks 2630 - MINOR: htx: Slightly update htx_dump() to report better messages 2631 - DOC: htx: Add internal documentation about the HTX 2632 - MAJOR: http: Deprecate and ignore the option "http-use-htx" 2633 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode 2634 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones 2635 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX 2636 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones 2637 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode 2638 - MINOR: config: Remove tests on the option 'http-use-htx' 2639 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new() 2640 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade 2641 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets 2642 - MINOR: cache: Remove tests on the option 'http-use-htx' 2643 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx' 2644 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX 2645 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore 2646 - MEDIUM: backend: Remove code relying on the HTTP legacy mode 2647 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode 2648 - MINOR: http_act: Remove code relying on the legacy HTTP mode 2649 - MEDIUM: cache: Remove code relying on the legacy HTTP mode 2650 - MEDIUM: compression: Remove code relying on the legacy HTTP mode 2651 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode 2652 - MINOR: stats: Remove code relying on the legacy HTTP mode 2653 - MAJOR: filters: Remove code relying on the legacy HTTP mode 2654 - MINOR: stream: Remove code relying on the legacy HTTP mode 2655 - MAJOR: http: Remove the HTTP legacy code 2656 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags 2657 - MINOR: proto_http: Remove unused http txn flags 2658 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN 2659 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction 2660 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT 2661 - CLEANUP: proto_http: Remove unecessary includes and comments 2662 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c 2663 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files 2664 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA 2665 - MINOR: proxy: Remove support of the option 'http-tunnel' 2666 - DOC: config: Update as a result of the legacy HTTP removal 2667 - MEDIUM: config: Remove parsing of req* and rsp* directives 2668 - MINOR: proxy: Remove the unused list of block rules 2669 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists 2670 - DOC: config: Remove unsupported req* and rsp* keywords 2671 - MINOR: global: Preset tune.max_http_hdr to its default value 2672 - MINOR: http: Don't store raw HTTP errors in chunks anymore 2673 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection 2674 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket 2675 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_* 2676 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop 2677 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix 2678 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction 2679 - MINOR: connection: add conn_get_src() and conn_get_dst() 2680 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging 2681 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping 2682 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address 2683 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst} 2684 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy() 2685 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output 2686 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses 2687 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address 2688 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses 2689 - MINOR: http: check the source address via conn_get_src() in sample fetch functions 2690 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr() 2691 - MINOR: connection: add new src and dst fields 2692 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to} 2693 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to 2694 - MINOR: lua: switch to conn->dst for a connection's target address 2695 - MINOR: peers: use conn->dst for the peer's target address 2696 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst} 2697 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst} 2698 - MINOR: proxy: switch to conn->src in error snapshots 2699 - MINOR: session: use conn->src instead of conn->addr.from 2700 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst} 2701 - MINOR: unix: use conn->dst for the target address in ->connect() 2702 - MINOR: sockpair: use conn->dst for the target address in ->connect() 2703 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to} 2704 - MINOR: checks: replace conn->addr.to with conn->dst 2705 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst} 2706 - MINOR: http: convert conn->addr.from to conn->src in sample fetches 2707 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst} 2708 - MINOR: connection: create a new pool for struct sockaddr_storage 2709 - MEDIUM: connection: make sure all address producers allocate their address 2710 - MAJOR: connection: remove the addr field 2711 - MINOR: connection: don't use clear_addr() anymore, just release the address 2712 - MINOR: stream: add a new target_addr entry in the stream structure 2713 - MAJOR: stream: store the target address into s->target_addr 2714 - MINOR: peers: now remove the remote connection setup code 2715 - MEDIUM: lua: do not allocate the remote connection anymore 2716 - MEDIUM: backend: always release any existing prior connection in connect_server() 2717 - MEDIUM: backend: remove impossible cases from connect_server() 2718 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach() 2719 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream 2720 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error 2721 - BUG/MINOR: http_htx: Support empty errorfiles 2722 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter 2723 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff 2724 - BUG/MINOR: proxy: always lock stop_proxy() 2725 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps 2726 - BUILD: threads: add the definition of PROTO_LOCK 2727 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased 2728 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send. 2729 - BUG/MINOR: log: make sure writev() is not interrupted on a file output 2730 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix 2731 - MEDIUM: h1: Don't try to subscribe if we managed to read data. 2732 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request. 2733 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc 2734 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called 2735 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class 2736 - MINOR: hlua: Don't set request analyzers on response channel for lua actions 2737 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used 2738 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready 2739 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion 2740 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file() 2741 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file() 2742 - MEDIUM: ssl: split the loading of the certificates 2743 - MEDIUM: ssl: lookup and store in a ckch_node tree 2744 - MEDIUM: ssl: load DH param in struct cert_key_and_chain 2745 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue() 2746 - MINOR: ssl: use STACK_OF for chain certs 2747 - MINOR: ssl: add extra chain compatibility 2748 - MINOR: ssl: check private key consistency in loading 2749 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH 2750 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch 2751 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn 2752 - MAJOR: fd: Get rid of the fd cache. 2753 - MEDIUM: pollers: Remember the state for read and write for each threads. 2754 - MEDIUM: mux-h2: don't try to read more than needed 2755 - BUG/BUILD: ssl: fix build with openssl < 1.0.2 2756 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch 2757 - BUG/MINOR: debug: fix a small race in the thread dumping code 2758 - MINOR: wdt: also consider that waiting in the thread dumper is normal 2759 - REGTESTS: checks: make 4be_1srv_health_checks more reliable 2760 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id 2761 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle 2762 - BUG/MINOR: ssl: fix ressource leaks on error 2763 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased 2764 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion 2765 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending 2766 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle 2767 - BUG/MINOR: stream-int: also update analysers timeouts on activity 2768 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames 2769 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes 2770 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2 2771 - DOC: Add 'Question.md' issue template, discouraging asking questions 2772 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete(). 2773 - BUG/MEDIUM: pollers: Clear the poll_send bits as well. 2774 - BUILD: travis-ci: enable daily Coverity scan 2775 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one 2776 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data() 2777 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads 2778 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition 2779 - BUG/MINOR: mux-h2: always send stream window update before connection's 2780 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame 2781 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak 2782 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing. 2783 - CLEANUP: mux-h2: move the demuxed frame check code in its own function 2784 - MINOR: cache: add method to cache hash 2785 - MINOR: cache: allow caching of OPTIONS request 2786 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL 2787 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL 2788 - BUG/MINOR: pools: don't mark the thread harmless if already isolated 2789 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it 2790 - CLEANUP: buffer: replace b_drop() with b_free() 2791 - CLEANUP: task: move the cpu_time field to the task-only part 2792 - MINOR: cli: add two new states to print messages on the CLI 2793 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr() 2794 - CLEANUP: cli: replace all occurrences of manual handling of return messages 2795 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX. 2796 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream. 2797 - BUG/MINOR: lua: fix setting netfilter mark 2798 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers 2799 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout 2800 - BUG/MINOR: stats: Wait the body before processing POST requests 2801 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events() 2802 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe. 2803 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds. 2804 - MINOR: debug: indicate the applet name when the task is task_run_applet() 2805 - MINOR: tools: add append_prefixed_str() 2806 - MINOR: lua: export applet and task handlers 2807 - MEDIUM: debug: make the thread dump code show Lua backtraces 2808 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf(). 2809 - MINOR: list: add LIST_SPLICE() to merge one list into another 2810 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args 2811 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe 2812 - MINOR: sink: create definitions a minimal code for event sinks 2813 - MINOR: sink: add a support for file descriptors 2814 - MINOR: trace: start to create a new trace subsystem 2815 - MINOR: trace: add allocation of buffer-sized trace buffers 2816 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources 2817 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity 2818 - MINOR: trace/cli: add "show trace" to report trace state and statistics 2819 - MINOR: trace: implement a very basic trace() function 2820 - MINOR: trace: add the file name and line number in the prefix 2821 - MINOR: trace: make trace() now also take a level in argument 2822 - MINOR: trace: implement a call to a decode function 2823 - MINOR: trace: add per-level macros to produce traces 2824 - MINOR: trace: add a definition of typed arguments to trace() 2825 - MINOR: trace: make sure to always stop the locking when stopping or pausing 2826 - MINOR: trace: add the possibility to lock on some arguments 2827 - MINOR: trace: parse the "lock" argument to trace 2828 - MINOR: trace: retrieve useful pointers and enforce lock-on 2829 - DOC: management: document the "trace" and "show trace" commands 2830 - BUILD: trace: make the lockon_ptr const to silence a warning without threads 2831 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary 2832 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full 2833 - DOC: fixed typo in management.txt 2834 - BUG/MINOR: mworker: disable SIGPROF on re-exec 2835 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener() 2836 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash. 2837 - MINOR: backend: Add srv_queue converter 2838 - MINOR: sink: set the fd-type sinks to non-blocking 2839 - MINOR: tools: add a function varint_bytes() to report the size of a varint 2840 - MINOR: buffer: add functions to read/write varints from/to buffers 2841 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd 2842 - MINOR: sink: now call the generic fd write function 2843 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers 2844 - MINOR: ring: add a ring_write() function 2845 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer 2846 - MINOR: sink: add support for ring buffers 2847 - MINOR: sink: implement "show events" to show supported sinks and dump the rings 2848 - MINOR: sink: now report the number of dropped events on output 2849 - MINOR: trace: support a default callback for the source 2850 - MINOR: trace: extend the source location to 13 chars 2851 - MINOR: trace: show thread number and source name in the trace 2852 - MINOR: trace: change the TRACE() calling convention to put the args and cb last 2853 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2 2854 - MINOR: tools: add a generic struct "name_desc" for name-description pairs 2855 - MINOR: trace: replace struct trace_lockon_args with struct name_desc 2856 - MINOR: trace: change the "payload" level to "data" and move it 2857 - MINOR: trace: prepend the function name for developer level traces 2858 - MINOR: trace: also report the trace level in the output 2859 - MINOR: trace: change the detail_level to per-source verbosity 2860 - MINOR: mux-h2/trace: register a new trace source with its events 2861 - MINOR: mux-h2/trace: add the default decoding callback 2862 - MEDIUM: mux-h2/trace: add lots of traces all over the code 2863 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string 2864 - MINOR: mux-h2/trace: add a new verbosity level "clean" 2865 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal" 2866 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags 2867 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID 2868 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment 2869 - CLEANUP: mux-h2/trace: lower-case event names 2870 - MINOR: trace: extend default event names to 12 chars 2871 - BUG/MINOR: ring: fix the way watchers are counted 2872 - MINOR: cli: extend the CLI context with a list and two offsets 2873 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H 2874 - MEDIUM: ring: implement a wait mode for watchers 2875 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle 2876 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces 2877 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t 2878 - CLEANUP: fd: remove leftovers of the fdcache 2879 - MINOR: fd: add a new "initialized" bit in the fdtab struct 2880 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit 2881 - MEDIUM: log: use the new generic fd_write_frag_line() function 2882 - MINOR: log: add a target type instead of hacking the address family 2883 - MEDIUM: log: add support for logging to a ring buffer 2884 - MINOR: send-proxy-v2: sends authority TLV according to TLV received 2885 - MINOR: build: add linux-glibc-legacy build TARGET 2886 - BUG/MEDIUM: peers: local peer socket not bound. 2887 - BUILD: connection: silence gcc warning with extra parentheses 2888 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled 2889 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted 2890 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing 2891 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached 2892 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers 2893 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks 2894 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big 2895 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe() 2896 - MEDIUM: fd: remove the FD_EV_POLLED status bit 2897 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR 2898 - MINOR: fd: make updt_fd_polling() a normal function 2899 - CONTRIB: debug: add new program "poll" to test poll() events 2900 - BUG/MINOR: checks: stop polling for write when we have nothing left to send 2901 - BUG/MINOR: checks: start sending the request right after connect() 2902 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing 2903 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up 2904 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser() 2905 - BUILD: CI: add basic CentOS 6 cirrus build 2906 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers 2907 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers 2908 - BUG/MAJOR: ssl: ssl_sock was not fully initialized. 2909 - MEDIUM: fd: mark the FD as ready when it's inserted 2910 - MINOR: fd: add two new calls fd_cond_{recv,send}() 2911 - MEDIUM: connection: enable reading only once the connection is confirmed 2912 - MINOR: fd: add two flags ERR and SHUT to describe FD states 2913 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore 2914 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed 2915 - MINOR: stats: report the number of idle connections for each server 2916 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6 2917 - BUILD/MINOR: auth: enabling for osx 2918 - BUG/MINOR: listener: Fix a possible null pointer dereference 2919 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context 2920 - MINOR: stats: Add JSON export from the stats page 2921 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error 2922 - MINOR: sample: Add UUID-fetch 2923 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK 2924 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed 2925 - BUG/MINOR: backend: Fix a possible null pointer dereference 2926 - BUG/MINOR: Missing stat_field_names (since f21d17bb) 2927 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument 2928 - BUILD: CI: temporarily disable ASAN 2929 - MINOR: htx: Add a flag on HTX message to report processing errors 2930 - MINOR: mux-h1: Report a processing error during output processing 2931 - MINOR: http-ana: Handle HTX errors first during message analysis 2932 - MINOR: http-ana: Remove err_state field from http_msg 2933 - MINOR: config: Support per-proxy and per-server deinit functions callbacks 2934 - MINOR: config: Support per-proxy and per-server post-check functions callbacks 2935 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass 2936 - MINOR: istbuf: Add the function b_isteqi() 2937 - MINOR: log: Provide a function to emit a log for an application 2938 - MINOR: http: Add function to parse value of the header Status 2939 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file 2940 - MINOR: h1-htx: Use the same function to copy message payload in all cases 2941 - MINOR: muxes/htx: Ignore pseudo header during message formatting 2942 - MINOR: fcgi: Add code related to FCGI protocol 2943 - MEDIUM: fcgi-app: Add FCGI application and filter 2944 - MEDIUM: mux-fcgi: Add the FCGI multiplexer 2945 - MINOR: doc: Add documentation about the FastCGI support 2946 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL 2947 - BUILD: CI: install golang-1.13 when building BoringSSL 2948 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe 2949 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe 2950 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer 2951 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback 2952 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame 2953 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1 2954 - MEDIUM: list: Separate "locked" list from regular list. 2955 - MINOR: mt_lists: Add new macroes. 2956 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL(). 2957 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list. 2958 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value. 2959 - MEDIUM: tasklets: Make the tasklet list a struct mt_list. 2960 - TESTS: Add a stress-test for mt_lists. 2961 - BUILD: travis-ci: add PCRE2, SLZ build 2962 - BUG/MINOR: build: fix event ports (Solaris) 2963 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode 2964 - OPTIM: listeners: use tasklets for the multi-queue rings 2965 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int) 2966 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send() 2967 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends 2968 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv 2969 - CLEANUP: task: remove impossible test 2970 - CLEANUP: task: cache the task_per_thread pointer 2971 - MINOR: task: split the tasklet vs task code in process_runnable_tasks() 2972 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff 2973 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id() 2974 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log() 2975 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps. 2976 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces 2977 - MINOR: h2/trace: report the frame type when known 2978 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready 2979 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown 2980 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO 2981 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO} 2982 - MINOR: sink: change ring buffer "buf0"'s format to "timed" 2983 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams 2984 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference 2985 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach() 2986 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream 2987 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames 2988 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request 2989 - BUG/MEDIUM: spoe: Use a different engine-id per process 2990 - MINOR: spoe: Improve generation of the engine-id 2991 - MINOR: spoe: Support the async mode with several threads 2992 - MINOR: http: Add server name header from HTTP multiplexers 2993 - CLEANUP: http-ana: Remove the unused function http_send_name_header() 2994 - MINOR: stats: Add the support of float fields in stats 2995 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds 2996 - DOC: Fix documentation about the cli command to get resolver stats 2997 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration 2998 - BUG/MINOR: stats: Add a missing break in a switch statement 2999 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg) 3000 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg) 3001 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field 3002 - CLEANUP: proxy: Remove `proxy_tbl_by_name` 3003 - BUILD: ssl: fix a warning when built with openssl < 1.0.2 3004 - DOC: replace utf-8 quotes by ascii ones 3005 - BUG/MEDIUM: fd: HUP is an error only when write is active 3006 - BUG/MINOR: action: do-resolve does not yield on requests with body 3007 - Revert "MINOR: cache: allow caching of OPTIONS request" 3008 30092019/07/16 : 2.1-dev1 3010 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built 3011 - DOC: this is a development branch again. 3012 - MEDIUM: Make 'block' directive fatal 3013 - MEDIUM: Make 'redispatch' directive fatal 3014 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal 3015 - MEDIUM: Remove 'option independant-streams' 3016 - MINOR: sample: Add sha2([<bits>]) converter 3017 - MEDIUM: server: server-state global file stored in a tree 3018 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware 3019 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages 3020 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses 3021 - MINOR: htx: Add the function htx_change_blk_value_len() 3022 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed 3023 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux 3024 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked 3025 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock 3026 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition. 3027 - BUILD: mworker: silence two printf format warnings around getpid() 3028 - BUILD: makefile: use :space: instead of digits to count commits 3029 - BUILD: makefile: adjust the sed expression of "make help" for solaris 3030 - BUILD: makefile: do not rely on shell substitutions to determine git version 3031 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse 3032 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory 3033 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit 3034 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON. 3035 - BUG/MEDIUM: connections: Always add the xprt handshake if needed. 3036 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx. 3037 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore 3038 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced 3039 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted 3040 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache 3041 - BUG/MINOR: log: Detect missing sampling ranges in config 3042 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages 3043 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages 3044 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal 3045 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL. 3046 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported 3047 - BUG/MINOR: mworker/cli: don't output a \n before the response 3048 - BUG/MEDIUM: checks: unblock signals in external checks 3049 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages 3050 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses 3051 - BUG/MEDIUM: connections: Always call shutdown, with no linger. 3052 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed. 3053 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max() 3054 - BUG/MINOR: hlua: Don't use channel_htx_recv_max() 3055 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit() 3056 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent 3057 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent 3058 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux. 3059 - BUG/MEDIUM: servers: Authorize tfo in default-server. 3060 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions. 3061 - MINOR: server: Add "no-tfo" option. 3062 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks 3063 - MINOR: action: Add the return code ACT_RET_DONE for actions 3064 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered 3065 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock 3066 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted 3067 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred 3068 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send() 3069 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si 3070 - DOC: contrib: spoa_server Add some hints for building spoa_server 3071 - DOC: Fix typo in intro.txt 3072 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it. 3073 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2 3074 - MINOR: pools: release the pool's lock during the malloc/free calls 3075 - MINOR: pools: always pre-initialize allocated memory outside of the lock 3076 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls 3077 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept 3078 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections 3079 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection. 3080 - BUG/MEDIUM: da: cast the chunk to string. 3081 - DOC: Fix typos and grammer in configuration.txt 3082 - CLEANUP: proto_tcp: Remove useless header inclusions. 3083 - BUG/MEDIUM: servers: Fix a race condition with idle connections. 3084 - MINOR: task: introduce work lists 3085 - BUG/MAJOR: listener: fix thread safety in resume_listener() 3086 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send 3087 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used 3088 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request. 3089 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set. 3090 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0 3091 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again 3092 - MEDIUM: mworker-prog: Add user/group options to program section 3093 - REGTESTS: checks: tcp-check connect to multiple ports 3094 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored 3095 30962019/06/16 : 2.1-dev0 3097 - exact copy of 2.0.0 3098 30992019/06/16 : 2.0.0 3100 - MINOR: fd: Don't use atomic operations when it's not needed. 3101 - DOC: mworker-prog: documentation for the program section 3102 - MINOR: http: add a new "http-request replace-uri" action 3103 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware. 3104 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing. 3105 - MINOR: mworker: change formatting in uptime field of "show proc" 3106 - MINOR: mworker: add the HAProxy version in "show proc" 3107 - MINOR: doc: Remove -Ds option in man page 3108 - MINOR: doc: add master-worker in the man page 3109 - MINOR: doc: mention HAPROXY_LOCALPEER in the man 3110 - BUILD: Silence gcc warning about unused return value 3111 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib 3112 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c 3113 - MINOR: doc: update the manpage and usage message about -S 3114 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not. 3115 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error. 3116 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete. 3117 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity 3118 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM 3119 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full() 3120 - BUG/MINOR: http: Use the global value to limit the number of parsed headers 3121 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms 3122 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis 3123 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all() 3124 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding 3125 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes 3126 - MINOR: h2: Set flags about the request's scheme on the start-line 3127 - MINOR: mux-h1: Set flags about the request's scheme on the start-line 3128 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags 3129 - MEDIUM: server: server-state only rely on server name 3130 - CLEANUP: connection: rename the wait_event.task field to .tasklet 3131 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_* 3132 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger. 3133 - DOC: add some environment variables in section 2.3 3134 - BUILD: makefile: clarify the "help" output and list options 3135 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent 3136 - BUG: tasks: fix bug introduced by latest scheduler cleanup 3137 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose 3138 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP. 3139 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux. 3140 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX 3141 - BUILD: makefile: further clarify the "help" output and list targets 3142 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets 3143 - BUILD: travis-ci: switch to linux-glibc instead of linux2628 3144 - DOC: update few references to the linux* targets and change them to linux-glibc 3145 - BUILD: makefile: detect and reject recently removed linux targets 3146 - BUILD: makefile: enable linux namespaces by default on linux 3147 - BUILD: makefile: enable TFO on linux platforms 3148 - BUILD: makefile: enable getaddrinfo on the linux-glibc target 3149 - DOC: small updates to the CONTRIBUTING file 3150 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data. 3151 - CLEANUP: removed obsolete examples an move a few to better places 3152 - DOC: Fix typos in CONTRIBUTING 3153 - DOC: update the outdated ROADMAP file 3154 - DOC: create a BRANCHES file to explain the life cycle 3155 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version 3156 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default 3157 - BUILD: makefile: make the obsolete target detection compatible with make-3.80 3158 - BUILD: tools: work around an internal compiler bug in gcc-3.4 3159 - BUILD: pattern: work around an internal compiler bug in gcc-3.4 3160 - BUILD: makefile: enable USE_RT on Solaris 3161 - BUILD: makefile: do not use echo -n 3162 - DOC: mention a few common build errors in the INSTALL file 3163 31642019/06/11 : 2.0-dev7 3165 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set 3166 - MINOR: tools: add new bitmap manipulation functions 3167 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps 3168 - MINOR: chunks: Make sure trash_size is only set once. 3169 - Revert "MINOR: chunks: Make sure trash_size is only set once." 3170 - MINOR: threads: serialize threads initialization 3171 - MINOR peers: data structure simplifications for server names dictionary cache. 3172 - DOC: peers: Update for dictionary cache entries for peers protocol. 3173 - MINOR: dict: Store the length of the dictionary entries. 3174 - MINOR: peers: A bit of optimization when encoding cached server names. 3175 - MINOR: peers: Optimization for dictionary cache lookup. 3176 - MEDIUM: tools: improve time format error detection 3177 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early. 3178 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI. 3179 - MINOR: threads: avoid clearing harmless twice in thread_release() 3180 - MEDIUM: threads: add thread_sync_release() to synchronize steps 3181 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others 3182 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread 3183 - BUG/MINOR: dict: race condition fix when inserting dictionary entries. 3184 - MEDIUM: init/threads: don't use spinlocks during the init phase 3185 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet 3186 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block 3187 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding 3188 - MAJOR: htx: Rework how free rooms are tracked in an HTX message 3189 - MINOR: htx: Add the function htx_move_blk_before() 3190 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early." 3191 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message 3192 - MINOR: http: turn default error files to HTTP/1.1 3193 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error. 3194 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done. 3195 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0 3196 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames 3197 - MINOR: contrib/spoa_server: Add random IP score 3198 - DOC/MINOR: contrib/spoa_server: Fix typo in README 3199 32002019/06/07 : 2.0-dev6 3201 - BUG/MEDIUM: connection: fix multiple handshake polling issues 3202 - MINOR: connection: also stop receiving after a SOCKS4 response 3203 - MINOR: mux-h1: don't try to recv() before the connection is ready 3204 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one 3205 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore 3206 - CLEANUP: connection: remove the now unused CS_FL_REOS flag 3207 - CONTRIB: debug: add 4 missing connection/conn_stream flags 3208 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit 3209 - MINOR: server: increase the default pool-purge-delay to 5 seconds 3210 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers 3211 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars 3212 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions 3213 - BUILD: task: fix a build warning when threads are disabled 3214 - CLEANUP: peers: Remove tabs characters. 3215 - CLEANUP: peers: Replace hard-coded values by macros. 3216 - BUG/MINOR: peers: Wrong stick-table update message building. 3217 - MINOR: dict: Add dictionary new data structure. 3218 - MINOR: peers: Add a LRU cache implementation for dictionaries. 3219 - MINOR: stick-table: Add "server_name" new data type. 3220 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type. 3221 - MINOR: proxy: Add a "server by name" tree to proxy. 3222 - MINOR: server: Add a dictionary for server names. 3223 - MINOR: stream: Stickiness server lookup by name. 3224 - MINOR: peers: Make peers protocol support new "server_name" data type. 3225 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type. 3226 - REGTEST: Add a basic server by name stickiness reg test. 3227 - MINOR: peers: Add dictionary cache information to "show peers" CLI command. 3228 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros. 3229 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros. 3230 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL) 3231 - BUILD: travis-ci improvements 3232 - MINOR: SSL: add client/server random sample fetches 3233 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message 3234 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time 3235 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing 3236 - MEDIUM: mux-h1: refactor output processing 3237 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s 3238 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers 3239 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers 3240 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache 3241 - MEDIUM: htx: Add the parsing of trailers of chunked messages 3242 - MINOR: htx: Don't use end-of-data blocks anymore 3243 - BUG/MINOR: mux-h1: Don't send more data than expected 3244 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body. 3245 - BUG/MINOR: peers: Wrong "server_name" decoding. 3246 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled. 3247 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy(). 3248 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled. 3249 - MEDIUM: ssl: Handle subscribe by itself. 3250 - MINOR: ssl: Make ssl_sock_handshake() static. 3251 - MINOR: connections: Add a new xprt method, remove_xprt. 3252 - MINOR: connections: Add a new xprt method, add_xprt(). 3253 - MEDIUM: connections: Introduce a handshake pseudo-XPRT. 3254 - MEDIUM: connections: Remove CONN_FL_SOCK* 3255 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait. 3256 - BUG/MINOR: peers: Wrong server name parsing. 3257 - MINOR: server: really increase the pool-purge-delay default to 5 seconds 3258 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states 3259 - MINOR: stream-int: use bit fields to match multiple stream-int states at once 3260 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states 3261 - MEDIUM: stream-int: introduce a new state SI_ST_RDY 3262 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O 3263 - MEDIUM: stream-int: make idle-conns switch to ST_RDY 3264 - MEDIUM: stream: re-arrange the connection setup status reporting 3265 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx() 3266 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both() 3267 - MEDIUM: stream: rearrange the events to remove the loop 3268 - MEDIUM: stream: only loop on flags relevant to the analysers 3269 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW 3270 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit() 3271 - BUILD: peers: fix a build warning about an incorrect intiialization 3272 - BUG/MINOR: time: make sure only one thread sets global_now at boot 3273 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect. 3274 32752019/06/02 : 2.0-dev5 3276 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value 3277 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL 3278 - BUILD: watchdog: condition it to USE_RT 3279 - MINOR: raw_sock: report global traffic statistics 3280 - MINOR: stats: report the global output bit rate in human readable form 3281 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect 3282 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it 3283 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects 3284 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted 3285 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade 3286 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled 3287 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag() 3288 - DOC: fix typos 3289 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression 3290 - OPTIM: freq-ctr: don't take the date lock for most updates 3291 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed 3292 - CLEANUP: debug: remove the TRACE() macro 3293 - MINOR: buffer: introduce b_make() to make a buffer from its parameters 3294 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers 3295 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring 3296 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail 3297 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring 3298 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers 3299 - CLEANUP: mux-h2: consistently use a local variable for the mbuf 3300 - MINOR: mux-h2: report the mbuf's head and tail in "show fd" 3301 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition. 3302 - BUILD: connections: shut up gcc about impossible out-of-bounds warning 3303 - BUILD: ssl: fix latest LibreSSL reg-test error 3304 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity 3305 - MINOR: cli/activity: add 3 general purpose counters in development mode 3306 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass 3307 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute. 3308 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms 3309 - MEDIUM: config: now alert when two servers have the same name 3310 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead 3311 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h 3312 - MINOR: htx: Store the head position instead of the wrap one 3313 - MINOR: htx: Store start-line block's position instead of address of its payload 3314 - MINOR: htx: Add functions to get the first block of an HTX message 3315 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built 3316 - MINOR: htx: Replace the function http_find_stline() by http_get_stline() 3317 - CLEANUP: htx: Remove unused function htx_get_stline() 3318 - MINOR: http/htx: Use sl_pos directly to replace the start-line 3319 - MEDIUM: http/htx: Perform analysis relatively to the first block 3320 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max() 3321 - MINOR: htx: Add function htx_get_max_blksz() 3322 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata 3323 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf() 3324 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf() 3325 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv() 3326 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV 3327 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf() 3328 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line 3329 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced 3330 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced 3331 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks() 3332 - MEDIUM: htx: 1xx messages are now part of the final reponses 3333 - MINOR: channel/htx: Add function to forward headers of an HTX message 3334 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering 3335 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses 3336 - MEDIUM: htx: Store the first block position instead of the start-line one 3337 - MINOR: stats/htx: don't use the first block position but the head one 3338 - MINOR: channel/htx: Add functions to forward a part or all HTX payload 3339 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded 3340 - MEDIUM: filters/htx: Filter body relatively to the first block 3341 - MINOR: htx: Optimize htx_drain() when all data are drained 3342 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate() 3343 - MINOR: htx: remove the unused function htx_find_blk() 3344 - MINOR: htx: Remove support of pseudo headers because it is unused 3345 - BUG/MEDIUM: http: fix "http-request reject" when not final 3346 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail. 3347 - MINOR: ssl: Don't forget to call the close method of the underlying xprt. 3348 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce() 3349 - MINOR: htx: make htx_add_data() return the transmitted byte count 3350 - MEDIUM: htx: make htx_add_data() never defragment the buffer 3351 - MINOR: activity: write totals on the "show activity" output 3352 - MINOR: activity: report totals and average separately 3353 - MEDIUM: poller: separate the wait time from the wake events 3354 - MINOR: activity: report the number of failed pool/buffer allocations 3355 - MEDIUM: buffers: relax the buffer lock a little bit 3356 - MINOR: task: turn the WQ lock to an RW_LOCK 3357 - MEDIUM: task: don't grab the WR lock just to check the WQ 3358 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read 3359 - MEDIUM: sessions: Introduce session flags. 3360 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs. 3361 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop 3362 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer 3363 - BUG/MEDIUM: connection: Use the session to get the origin address if needed. 3364 - MEDIUM: tasks: Get rid of active_tasks_mask. 3365 - MEDIUM: connection: Upstream SOCKS4 proxy support 3366 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct 3367 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit 3368 33692019/05/22 : 2.0-dev4 3370 - BUILD: enable freebsd builds on cirrus-ci 3371 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()" 3372 - MEDIUM: Make 'option forceclose' actually warn 3373 - MEDIUM: Make 'resolution_pool_size' directive fatal 3374 - DOC: management: place "show activity" at the right place 3375 - MINOR: cli/activity: show the dumping thread ID starting at 1 3376 - MINOR: task: export global_task_mask 3377 - MINOR: cli/debug: add a thread dump function 3378 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete. 3379 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection. 3380 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it 3381 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task 3382 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer 3383 - BUG/MINOR: debug: don't check the call date on tasklets 3384 - MINOR: thread: implement ha_thread_relax() 3385 - MINOR: task: put barriers after each write to curr_task 3386 - MINOR: task: always reset curr_task when freeing a task or tasklet 3387 - MINOR: stream: detach the stream from its own task on stream_free() 3388 - MEDIUM: debug/threads: implement an advanced thread dump system 3389 - REGTEST: extend the check duration on tls_health_checks and mark it slow 3390 - DOC: fix "successful" typo 3391 - MINOR: init: setenv HAPROXY_CFGFILES 3392 - MINOR: threads/init: synchronize the threads startup 3393 - MEDIUM: init/mworker: make the pipe register function a regular initcall 3394 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label 3395 - CLEANUP: threads: remove the now unused START_LOCK label 3396 - MINOR: init/threads: make the global threads an array of structs 3397 - MINOR: threads: add each thread's clockid into the global thread_info 3398 - CLEANUP: stream: remove an obsolete debugging test 3399 - MINOR: tools: add dump_hex() 3400 - MINOR: debug: implement ha_panic() 3401 - MINOR: debug/cli: add some debugging commands for developers 3402 - MINOR: tools: provide a may_access() function and make dump_hex() use it 3403 - MINOR: debug: make ha_panic() report threads starting at 1 3404 - REORG: compat: move some integer limit definitions from standard.h to compat.h 3405 - REORG: threads: move the struct thread_info from global.h to hathreads.h 3406 - MINOR: compat: make sure to always define clockid_t 3407 - MINOR: threads: always place the clockid in the struct thread_info 3408 - MINOR: threads: add a thread-local thread_info pointer "ti" 3409 - MINOR: time: move the cpu, mono, and idle time to thread_info 3410 - MINOR: time: add a function to retrieve another thread's cputime 3411 - MINOR: debug: report each thread's cpu usage in "show thread" 3412 - BUILD: threads: only assign the clock_id when supported 3413 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris 3414 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris) 3415 - MAJOR: polling: add event ports support (Solaris) 3416 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0. 3417 - CLEANUP: time: refine the test on _POSIX_TIMERS 3418 - MINOR: compat: define a new empty type empty_t for non-implemented fields 3419 - CLEANUP: time: switch clockid_t to empty_t when not available 3420 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members 3421 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts 3422 - MINOR: debug: switch to SIGURG for thread dumps 3423 - CLEANUP: threads: really move thread_info to hathreads.c 3424 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads 3425 - CLEANUP: debug: always report harmless/want_rdv even without threads 3426 - MINOR: threads: implement ha_tkill() and ha_tkillall() 3427 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs 3428 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash() 3429 - MINOR: debug: dump streams when an applet, iocb or stream is known 3430 - MINOR: threads: add a "stuck" flag to the thread_info struct 3431 - MINOR: threads: add a timer_t per thread in thread_info 3432 - MAJOR: watchdog: implement a thread lockup detection mechanism 3433 - MINOR: stream: remove the cpu time detection from process_stream() 3434 - MINOR: connection: report the mux names in "haproxy -vv" 3435 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name 3436 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info. 3437 - MINOR: WURFL: call header_retireve_callback() in dummy library 3438 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id 3439 - MINOR: WURFL: shows log messages during module initialization 3440 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results 3441 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails 3442 - MEDIUM: WURFL: HTX awareness. 3443 - MINOR: WURFL: module version bump to 2.0 3444 - MINOR: WURFL: do not emit warnings when not configured 3445 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library 3446 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks 3447 - BUILD: travis: add sanitizers to travis-ci builds 3448 - BUILD: time: remove the test on _POSIX_C_SOURCE 3449 - CLEANUP: build: rename some build macros to use the USE_* ones 3450 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround 3451 - BUG/MEDIUM: dns: make the port numbers unsigned 3452 - MEDIUM: config: deprecate the antique req* and rsp* commands 3453 34542019/05/15 : 2.0-dev3 3455 - BUG/MINOR: peers: Really close the sessions with no heartbeat. 3456 - CLEANUP: peers: remove useless annoying tabulations. 3457 - CLEANUP: peers: replace timeout constants by macros. 3458 - REGTEST: Enable again reg tests with HEAD HTTP method usage. 3459 - DOC: The option httplog is no longer valid in a backend. 3460 - DOC: peers: Peers protocol documentation update. 3461 - REGTEST: remove unexpected "nbthread" statement from Lua test cases 3462 - BUILD: Makefile: remove 11-years old workarounds for deprecated options 3463 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE 3464 - BUILD: Makefile: remove outdated support for dlmalloc 3465 - BUILD: Makefile: consider a variable's origin and not its value for the options list 3466 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable 3467 - BUILD: Makefile: shorten default settings declaration 3468 - BUILD: Makefile: clean up the target declarations 3469 - BUILD: report the whole feature set with their status in haproxy -vv 3470 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler 3471 - REGTEST: script: make the script use the new features list 3472 - REGTEST: script: remove platform-specific assigments of OPTIONS 3473 - BUG/MINOR: peers: Missing initializations after peer session shutdown. 3474 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes 3475 - BUILD/MINOR: listener: Silent a few signedness warnings. 3476 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output 3477 - BUG/MEDIUM: mworker: don't free the wrong child when not found 3478 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error. 3479 - BUG/MAJOR: checks: segfault during tcpcheck_main 3480 - BUILD: makefile: work around an old bug in GNU make-3.80 3481 - BUILD: makefile: work around another bug in make 3.80 3482 - BUILD: http: properly mark some struct as extern 3483 - BUILD: chunk: properly declare pool_head_trash as extern 3484 - BUILD: cache: avoid a build warning with some compilers/linkers 3485 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf() 3486 - MINOR: tools: add an unsetenv() implementation 3487 - BUILD: re-implement an initcall variant without using executable sections 3488 - BUILD: use inttypes.h instead of stdint.h 3489 - BUILD: connection: fix naming of ip_v field 3490 - BUILD: makefile: fix build of IPv6 header on aix51 3491 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51 3492 - BUILD: define unsetenv on AIX 5.1 3493 - BUILD: Makefile: disable shared cache on AIX 5.1 3494 - MINOR: ssl: Add aes_gcm_dec converter 3495 - REORG: mworker: move serializing functions to mworker.c 3496 - REORG: mworker: move signals functions to mworker.c 3497 - REORG: mworker: move IPC functions to mworker.c 3498 - REORG: mworker: move signal handlers and related functions 3499 - REORG: mworker: move mworker_cleanlisteners to mworker.c 3500 - MINOR: mworker: calloc mworker_proc structures 3501 - MINOR: mworker: don't use children variable anymore 3502 - MINOR: cli: export cli_parse_default() definition in cli.h 3503 - REORG: mworker/cli: move CLI functions to mworker.c 3504 - MEDIUM: mworker-prog: implement program for master-worker 3505 - MINOR: mworker/cli: show programs in 'show proc' 3506 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets' 3507 - MINOR: cli: start addresses by a prefix in 'show cli sockets' 3508 - MINOR: cli: export HAPROXY_CLI environment variable 3509 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error 3510 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE 3511 - REGTEST: http-capture/h00000: Relax a regex matching the log message 3512 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled 3513 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301 3514 - REGTEST: log/b00000: Be sure the client always hits its timeout 3515 - REGTEST: lua/b00003: Relax the regex matching the log message 3516 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed 3517 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release. 3518 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed. 3519 - BUG/MEDIUM: htx: fix random premature abort of data transfers 3520 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both(). 3521 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both(). 3522 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both. 3523 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols. 3524 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD. 3525 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity 3526 - MINOR: skip get_gmtime where tm is unused 3527 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL 3528 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state. 3529 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected. 3530 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks 3531 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value 3532 - BUG/MINOR: listener: renice the accept ring processing task 3533 - MINOR: cli/listener: report the number of accepts on "show activity" 3534 - MINOR: cli/activity: report the accept queue sizes in "show activity" 3535 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream 3536 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages 3537 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded 3538 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap 3539 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block 3540 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX 3541 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers 3542 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections 3543 - MINOR: mux-h1: Simplify handling of 1xx responses 3544 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses 3545 - MEDIUM: h1: Add an option to sanitize connection headers during parsing 3546 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers 3547 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed 3548 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write 3549 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode 3550 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX 3551 - MINOR: stream: Set a flag when the stream uses the HTX 3552 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX 3553 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx 3554 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter 3555 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn 3556 - MEDIUM: muxes: Add an optional input buffer during mux initialization 3557 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection 3558 - MEDIUM: muxes: Be prepared to don't own connection during the release 3559 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades 3560 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too 3561 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode 3562 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2 3563 - MAJOR: htx: Enable the HTX mode by default for all proxies 3564 - REGTEST: Use HTX by default and add '--no-htx' option to disable it 3565 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions 3566 - CLEANUP: task: do not export rq_next anymore 3567 - MEDIUM: tasks: improve fairness between the local and global queues 3568 - MEDIUM: tasks: only base the nice offset on the run queue depth 3569 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present 3570 - BUG/MEDIUM: map: Fix memory leak in the map converter 3571 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation 3572 - BUILD: task/thread: fix single-threaded build of task.c 3573 - BUILD: cli/threads: fix build in single-threaded mode 3574 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx. 3575 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe(). 3576 - BUG/MEDIUM: h2: Revamp the way send subscriptions works. 3577 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag. 3578 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7. 3579 - BUILD: address a few cases of "static <type> inline foo()" 3580 - BUILD: do not specify "const" on functions returning structs or scalars 3581 - BUILD: htx: fix a used uninitialized warning on is_cookie2 3582 - MINOR: peers: Add a new command to the CLI for peers. 3583 - DOC: update for "show peers" CLI command. 3584 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB 3585 - MEDIUM: mworker: store the leaving state of a process 3586 - MEDIUM: mworker-prog: implements 'option start-on-reload' 3587 - CLEANUP: mworker: remove the type field in mworker_proc 3588 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable 3589 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI 3590 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode 3591 - MINOR: init: add a "set-dumpable" global directive to enable core dumps 3592 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load 3593 - BUG/MINOR: mworker: mworker_kill should apply on every children 3594 - BUG/MINOR: mworker: don't exit with an ambiguous value 3595 - BUG/MINOR: mworker: ensure that we still quits with SIGINT 3596 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled 3597 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty 3598 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done 3599 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty 3600 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only 3601 - MINOR: mux-h1: Handle read0 during TCP splicing 3602 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty 3603 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used 3604 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX 3605 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode 3606 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq. 3607 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock. 3608 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup(). 3609 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock. 3610 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list. 3611 - BUG/MEDIUM: applets: Don't use task_in_rq(). 3612 - BUG/MAJOR: task: make sure never to delete a queued task 3613 - MINOR: task/thread: factor out a wake-up condition 3614 - CLEANUP: task: remain consistent when using the task's handler 3615 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy(). 3616 - MEDIUM: tasks: Don't account a destroyed task as a runned task. 3617 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type 3618 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics 3619 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable 3620 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type 3621 - BUG/MINOR: mworker: disable busy polling in the master process 3622 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask. 3623 - MEDIUM: ssl: Give ssl_sock its own context. 3624 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx. 3625 - MEDIUM: ssl: provide its own subscribe/unsubscribe function. 3626 - MEDIUM: connections: Provide a xprt_ctx for each xprt method. 3627 - MEDIUM: ssl: provide our own BIO. 3628 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0 3629 - MINOR: peers: adds counters on show peers about tasks calls. 3630 - MEDIUM: enable travis-ci builds 3631 - MINOR: fd: Add a counter of used fds. 3632 - MEDIUM: connections: Add a way to control the number of idling connections. 3633 - BUG/MEDIUM: maps: only try to parse the default value when it's present 3634 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR 3635 - REGTEST: Missing REQUIRE_VERSION declarations. 3636 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var 3637 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available 3638 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules 3639 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled 3640 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST() 3641 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST() 3642 - MINOR: gcc: Fix a silly gcc warning in connect_server() 3643 - MINOR: ssl/cli: async fd io-handlers printable on show fd 3644 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code" 3645 - BUILD: add USE_WURFL to the list of known build options 3646 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use 3647 - BUILD: wurfl: build fix for 1.9/2.0 code base 3648 - CLEANUP: wurfl: removed deprecated methods 3649 - DOC: wurfl: added point of contact in MAINTAINERS file 3650 - MINOR: wurfl: enabled multithreading mode 3651 - MINOR: contrib: dummy wurfl library 3652 - MINOR: dns: dns_requester structures are now in a memory pool 3653 - MINOR: dns: move callback affection in dns_link_resolution() 3654 - MINOR: obj_type: new object type for struct stream 3655 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action 3656 - MINOR: log: Extract some code to send syslog messages. 3657 - REGTEST: replace LEVEL option by a more human readable one. 3658 - REGTEST: rename the reg test files. 3659 - REGTEST: adapt some reg tests after renaming. 3660 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default 3661 - BUG/MAJOR: stream: Missing DNS context initializations. 3662 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled 3663 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler 3664 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN. 3665 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB 3666 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only 3667 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup 3668 - CLEANUP: task: report calls as unsigned in show sess 3669 - MINOR: tasks/activity: report the context switch and task wakeup rates 3670 - MINOR: stream: measure and report a stream's call rate in "show sess" 3671 - MINOR: applet: measure and report an appctx's call rate in "show sess" 3672 - BUILD: extend Travis CI config to support more platforms 3673 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks 3674 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word 3675 - REGTEST: exclude OSX and generic targets from abns_socket.vtc 3676 - BUILD: travis: remove the "allow_failures" entry 3677 - BUG/MINOR: activity: always initialize the profiling variable 3678 - MINOR: activity: make the profiling status per thread and not global 3679 - MINOR: activity: enable automatic profiling turn on/off 3680 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str() 3681 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive 3682 - MINOR: connection: make the debugging helper functions safer 3683 - MINOR: stream/debug: make a stream dump and crash function 3684 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever 3685 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever 3686 - MEDIUM: streams: measure processing time and abort when detecting bugs 3687 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API. 3688 - MEDIUM: da: HTX mode support. 3689 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames 3690 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request 3691 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed 3692 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding 3693 - DOC: contrib/modsecurity: Typos and fix the reject example 3694 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it 3695 - MINOR: log: Add "sample" new keyword to "log" lines. 3696 - MINOR: log: Enable the log sampling and load-balancing feature. 3697 - DOC: log: Document the sampling and load-balancing logging feature. 3698 - REGTEST: Add a new reg test for log load-balancing feature. 3699 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI 3700 - REGTEST: Make this reg test be Linux specific. 3701 - CLEANUP: task: move the task_per_thread definition to task.h 3702 - MINOR: activity: report context switch counts instead of rates 3703 - MINOR: threads: Implement HA_ATOMIC_LOAD(). 3704 - BUG/MEDIUM: port_range: Make the ring buffer lock-free. 3705 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled 3706 - MINOR: config: Test validity of tune.maxaccept during the config parsing 3707 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1 3708 - BUG/MEDIUM: servers: fix typo "src" instead of "srv" 3709 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w. 3710 - BUG/MINOR: haproxy: fix rule->file memory leak 3711 - BUG/MINOR: log: properly free memory on logformat parse error and deinit() 3712 - BUG/MINOR: checks: free memory allocated for tasklets 3713 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions 3714 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase(). 3715 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown. 3716 - MINOR: threads: flatten the per-thread cpu-map 3717 - MINOR: init/threads: remove the useless tids[] array 3718 - MINOR: init/threads: make the threads array global 3719 - BUG/MEDIUM: ssl: Use the early_data API the right way. 3720 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected. 3721 - MEDIUM: streams: Add the ability to retry a request on L7 failure. 3722 - MEDIUM: streams: Add a way to replay failed 0rtt requests. 3723 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response" 3724 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries 3725 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock 3726 - BUG/MINOR: logs/threads: properly split the log area upon startup 3727 - BUILD: extend travis-ci matrix 3728 - CLEANUP: Remove appsession documentation 3729 - DOC: Fix typo in keyword matrix 3730 - BUILD: remove "build_libressl" duplicate declaration 3731 - BUILD: travis-ci: get back to osx without openssl support 3732 - BUILD: enable several LibreSSL hacks, including 3733 - BUILD: temporarily mark LibreSSL builds as allowed to fail 3734 - BUILD: travis: TMPDIR replacement. 3735 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl. 3736 - MINOR: doc: Document allow-0rtt on the server line. 3737 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected. 3738 - MEDIUM: proto: Change the prototype of the connect() method. 3739 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server 3740 - MINOR: config: Extract the code of "stick-table" line parsing. 3741 - BUILD/MINOR: stick-table: Compilation fix. 3742 - MEDIUM: stick-table: Stop handling stick-tables as proxies. 3743 - MINOR: stick-tables: Add peers process binding computing. 3744 - MINOR: stick-table: Add prefixes to stick-table names. 3745 - MINOR: peers: Do not emit global stick-table names. 3746 - DOC: Update for "table" lines in "peers" section. 3747 - REGTEST: Add reg tests for "table" lines in "peers" sections. 3748 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct 3749 - REGTEST: make the tls_health_checks test much faster 3750 - REGTEST: make the "table in peers" test require v2.0 3751 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data 3752 - BUG/MEDIUM: h2/htx: always fail on too large trailers 3753 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown 3754 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers 3755 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block 3756 - REGTEST: Flag some slow reg tests. 3757 - REGTEST: Reg tests file renaming. 3758 - REGTEST: Wrong renaming for one reg test. 3759 - REGTEST: Wrong assumption in IP:port logging test. 3760 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload 3761 - MINOR: systemd: Use the variables from /etc/default/haproxy 3762 - MINOR: systemd: Make use of master socket in systemd unit 3763 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib 3764 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct 3765 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy() 3766 - CLEANUP: task: remove unneeded tests before task_destroy() 3767 - MINOR: mworker: support a configurable maximum number of reloads 3768 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend 3769 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context 3770 - BUG/MINOR: mux-h1: Fix the parsing of trailers 3771 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks() 3772 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message 3773 - MINOR: htx: Don't try to append a trailer block with the previous one 3774 - MINOR: htx: Remove support for unused OOB HTX blocks 3775 - BUILD: travis-ci bugfixes and improvements 3776 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO. 3777 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach(). 3778 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix 3779 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER 3780 - BUILD: ssl: make libressl use its own version numbers 3781 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER 3782 - MINOR: ssl: enable aes_gcm_dec on LibreSSL 3783 - BUILD: ssl: fix libressl build again after aes-gcm-enc 3784 - REORG: ssl: move openssl-compat from proto to common 3785 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat 3786 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore 3787 - CLEANUP: ssl: make inclusion of openssl headers safe 3788 - BUILD: add BoringSSL to travis-ci build matrix 3789 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds 3790 - BUG/MINOR: stream: Attach the read side on the response as soon as possible 3791 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers 3792 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list. 3793 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry. 3794 - MEDIUM: streams: Add a new http action, disable-l7-retry. 3795 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors. 3796 - BUG/MINOR: vars: Fix memory leak in vars_check_arg 3797 - BUILD: travis-ci: make TMPDIR global variable in travis-ci 3798 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat 3799 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs() 3800 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat 3801 - BUILD: threads: fix again the __ha_cas_dw() definition 3802 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list 3803 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg" 3804 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers 3805 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer 3806 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI 3807 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked 3808 - BUG/MINOR: vars: Fix memory leak in vars_check_arg 3809 - BUG/MAJOR: ssl: segfault upon an heartbeat request 3810 - MINOR: spoa-server: Clone the v1.7 spoa-example project 3811 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h 3812 - MINOR: spoa-server: Externalise debug functions 3813 - MINOR: spoe-server: rename "worker" functions 3814 - MINOR: spoa-server: Replace the thread init system by processes 3815 - MINOR: spoa-server: With debug mode, start only one process 3816 - MINOR: spoa-server: Allow registering external processes 3817 - MINOR: spoa-server: Allow registering message processors 3818 - MINOR: spoa-server: Load files 3819 - MINOR: spoa-server: Prepare responses 3820 - MINOR: spoa-server: Execute registered callbacks 3821 - MINOR: spoa-server: Add Lua processing 3822 - MINOR: spoa-server: Add python 3823 - MINOR/DOC: spoe-server: Add documentation 3824 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close. 3825 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list 3826 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant 3827 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw 3828 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut() 3829 - CLEANUP: connection: remove the handle field from the wait_event struct 3830 - BUG/MINOR: log: Wrong log format initialization. 3831 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries 3832 - BUG/MINOR: mworker: use after free when the PID not assigned 3833 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function 3834 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags 3835 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS 3836 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags 3837 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w} 3838 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions 3839 - MINOR: mux-h2: add macros to check multiple stream states at once 3840 - MINOR: mux-h2: stop relying on CS_FL_REOS 3841 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf() 3842 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro 3843 - MINOR: debug: add a new BUG_ON macro 3844 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 3845 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 3846 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 3847 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers 3848 38492019/03/26 : 2.0-dev2 3850 - CLEANUP: http: Remove unreachable code in parse_http_req_capture 3851 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy 3852 - MINOR: lists: Implement locked variations. 3853 - MEDIUM: servers: Used a locked list for idle_orphan_conns. 3854 - MEDIUM: servers: Reorganize the way idle connections are cleaned. 3855 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt. 3856 - MINOR: cfgparse: Add a cast to make gcc happier. 3857 - BUG/MEDIUM: standard: Wrong reallocation size. 3858 - BUG/MINOR: listener: keep accept rate counters accurate under saturation 3859 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting 3860 - MAJOR: config: disable support for nbproc and nbthread in parallel 3861 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse 3862 - MAJOR: listener: do not hold the listener lock in listener_accept() 3863 - MINOR: listener: maintain a per-thread count of the number of connections on a listener 3864 - MINOR: tools: implement functions to look up the nth bit set in a mask 3865 - MINOR: listener: pre-compute some thread counts per bind_conf 3866 - MINOR: listener: implement multi-queue accept for threads 3867 - MAJOR: listener: use the multi-queue for multi-thread listeners 3868 - MINOR: activity: add accept queue counters for pushed and overflows 3869 - MINOR: config: add global tune.listener.multi-queue setting 3870 - MAJOR: threads: enable one thread per CPU by default 3871 - DOC: update management.txt to reflect that threads are used by default 3872 - BUG/MINOR: config: don't over-count the global maxsock value 3873 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss 3874 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer 3875 - BUG/MEDIUM: list: add missing store barriers when updating elements and head 3876 - MINOR: list: make the delete and pop operations idempotent 3877 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED 3878 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists 3879 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns 3880 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element 3881 - MINOR: listener: introduce listener_backlog() to report the backlog value 3882 - MINOR: listener: do not needlessly set l->maxconn 3883 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's 3884 - MEDIUM: config: don't enforce a low frontend maxconn value anymore 3885 - MINOR: peers: Add a message for heartbeat. 3886 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values 3887 - BUG/MINOR: init: never lower rlim_fd_max 3888 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max 3889 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload 3890 - MINOR: init: make the maxpipe computation more accurate 3891 - MINOR: init: move some maxsock updates earlier 3892 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits 3893 - REGTEST: fix a spurious "nbthread 4" in the connection test 3894 - DOC: update the text related to the global maxconn value 3895 - BUG/MAJOR: mux-h2: fix race condition between close on both ends 3896 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter. 3897 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED 3898 - MINOR: htx: unconditionally handle parsing errors in requests or responses 3899 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX 3900 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars 3901 - MINOR: sample: Code factorization "ungrpc" converter. 3902 - MINOR: sample: Rework gRPC converter code. 3903 - CLEANUP: wurfl: remove dead, broken and unmaintained code 3904 - MINOR: config: relax the range checks on cpu-map 3905 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support 3906 - MINOR: sample: Extract some protocol buffers specific code. 3907 - DOC: Remove tabs and fixed punctuation. 3908 - MINOR: sample: Add a protocol buffers specific converter. 3909 - REGTEST: Peers reg tests. 3910 - REGTEST: Enable reg tests with HEAD HTTP method usage. 3911 - MINOR: lists: add a LIST_DEL_INIT() macro 3912 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue 3913 - MINOR: listener: improve incoming traffic distribution 3914 - MINOR: tools: implement my_flsl() 3915 - MEDIUM: listener: change the LB algorithm again to use two round robins instead 3916 - CLEANUP: listener: remove old thread bit mapping 3917 - MINOR: listener: move thr_idx from the bind_conf to the listener 3918 - BUG/MEDIUM: logs: Only attempt to free startup_logs once. 3919 - BUG/MAJOR: config: Wrong maxconn adjustment. 3920 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees() 3921 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list() 3922 - MINOR: fd: Remove debugging code. 3923 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL. 3924 - MINOR: threads: Implement __ha_barrier_atomic*. 3925 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API. 3926 - MINOR: threads: Add macros to do atomic operation with no memory barrier. 3927 - MEDIUM: various: Use __ha_barrier_atomic* when relevant. 3928 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros. 3929 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros. 3930 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros. 3931 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros. 3932 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros. 3933 - MEDIUM: server: Use the new _HA_ATOMIC_* macros. 3934 - MEDIUM: task: Use the new _HA_ATOMIC_* macros. 3935 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros. 3936 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros. 3937 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros. 3938 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros. 3939 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros. 3940 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros. 3941 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros. 3942 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros. 3943 - MEDIUM: http: Use the new _HA_ATOMIC_* macros. 3944 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros. 3945 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros. 3946 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros. 3947 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros. 3948 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros. 3949 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros. 3950 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros. 3951 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros. 3952 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros. 3953 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros. 3954 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros. 3955 - MEDIUM: time: Use the new _HA_ATOMIC_* macros. 3956 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros. 3957 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places 3958 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn 3959 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED() 3960 - BUG/MEDIUM: listener: make sure we don't pick stopped threads 3961 - MEDIUM: list: Remove useless barriers. 3962 - MEDIUM: list: Use _HA_ATOMIC_* 3963 - MEDIUM: connections: Use _HA_ATOMIC_* 3964 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq. 3965 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes 3966 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation 3967 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed. 3968 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received 3969 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent 3970 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added 3971 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate 3972 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests 3973 - MINOR: stats: Move stuff about the stats status codes in stats files 3974 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet 3975 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage." 3976 - BUILD: listener: shut up a build warning when threads are disabled 3977 - BUILD: Makefile: allow the reg-tests target to be verbose 3978 - BUILD: Makefile: resolve LEVEL before calling run-regtests 3979 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields 3980 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel 3981 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts 3982 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams 3983 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent 3984 - MINOR: muxes: Report the Last read with a dedicated flag 3985 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding 3986 - BUILD: tools: fix a build warning on some 32-bit archs 3987 - MINOR: init: report the list of optionally available services 3988 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter 3989 - BUG/MINOR: cache: Fully consume large requests in the cache applet 3990 - BUG/MINOR: stats: Fully consume large requests in the stats applet 3991 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends 3992 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue" 3993 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue" 3994 - MINOR: stats/cache: Handle the header Expect when applets are registered 3995 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way 3996 - CLEANUP: cache: don't export http_cache_applet anymore 3997 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore 3998 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay. 3999 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter" 4000 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done. 4001 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send. 4002 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders(). 4003 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses 4004 - CLEANUP: mux-h2: add some comments to help understand the code 4005 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites 4006 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used. 4007 - BUG/MEDIUM: h2: Try to be fair when sending data. 4008 - BUG/MINOR: proto-http: Don't forward request body anymore on error 4009 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data() 4010 - MINOR: connection: and new flag to mark end of input (EOI) 4011 - MINOR: channel: Report EOI on the input channel if it was reached in the mux 4012 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream 4013 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached 4014 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose 4015 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL 4016 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data 4017 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL. 4018 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send(). 4019 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf. 4020 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing. 4021 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion 4022 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty 4023 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition 4024 - CONTRIB: debug: report the CS and CF's EOI flags 4025 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down. 4026 40272019/02/26 : 2.0-dev1 4028 - MINOR: mux-h2: only increase the connection window with the first update 4029 - REGTESTS: remove the expected window updates from H2 handshakes 4030 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error 4031 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max 4032 - MEDIUM: mux-h2: remove padlen during headers phase 4033 - MINOR: h2: add a bit-based frame type representation 4034 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers() 4035 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream 4036 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code 4037 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code 4038 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM 4039 - MINOR: buffers: add a new b_move() function 4040 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset 4041 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames 4042 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION 4043 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server. 4044 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free(). 4045 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth 4046 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full. 4047 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream. 4048 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes. 4049 - BUG/MAJOR: servers: Correctly use LIST_ELEM(). 4050 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list. 4051 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error. 4052 - MEDIUM: servers: Be smarter when switching connections. 4053 - MEDIUM: sessions: Keep track of which connections are idle. 4054 - MINOR: payload: add sample fetch for TLS ALPN 4055 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals 4056 - MINOR: channel: Add the function channel_add_input 4057 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand 4058 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown 4059 - BUG/MAJOR: htx: Return the good block address after a defrag 4060 - MINOR: lb: allow redispatch when using consistent hash 4061 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers 4062 - BUG/MEDIUM: mux-h2: always restart reading if data are available 4063 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers() 4064 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers() 4065 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before 4066 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers 4067 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions 4068 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2 4069 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify() 4070 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done 4071 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts 4072 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count 4073 - MINOR: mux-h2: add a new dummy stream : h2_error_stream 4074 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors 4075 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers 4076 - MINOR: mux-h2: remove a misleading and impossible test 4077 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing 4078 - MINOR: mux-h2: check for too many streams only for idle streams 4079 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded 4080 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames 4081 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers 4082 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode) 4083 - MINOR: htx: add a new function to add a block without filling it 4084 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers 4085 - MEDIUM: mux-h2: pass trailers to HTX 4086 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN 4087 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests 4088 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent 4089 - MINOR: h1: make the H1 headers block parser able to parse headers only 4090 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks 4091 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command 4092 - MINOR: stream: Add the subscription events of SIs in "show sess all" command 4093 - MINOR: mux-h1: Add the subscription events in "show fd" command 4094 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing 4095 - BUG/MINOR: cache/htx: Be sure to count partial trailers 4096 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv(). 4097 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized. 4098 - MINOR: connections: Remove a stall comment. 4099 - BUG/MEDIUM: cli: make "show sess" really thread-safe 4100 - BUILD: add a new file "version.c" to carry version updates 4101 - MINOR: stream/htx: add the HTX flags output in "show sess all" 4102 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all" 4103 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all" 4104 - BUG/MINOR: lua: bad args are returned for Lua actions 4105 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred 4106 - MINOR: htx: Add an helper function to get the max space usable for a block 4107 - MINOR: channel/htx: Add HTX version for some helper functions 4108 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served 4109 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped 4110 - DOC: regtest: make it clearer what the purpose of the "broken" series is 4111 - REGTEST: mailers: add new test for 'mailers' section 4112 - REGTEST: Add a reg test for health-checks over SSL/TLS. 4113 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done 4114 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled 4115 - BUG/MINOR: compression: Disable it if another one is already in progress 4116 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams 4117 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it 4118 - REGTEST: Add some informatoin to test results. 4119 - MINOR: htx: Add a function to truncate all blocks after a specific offset 4120 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase 4121 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer 4122 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used 4123 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...) 4124 - DOC: http-request cache-use / http-response cache-store expects cache name 4125 - REGTEST: "capture (request|response)" regtest. 4126 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet 4127 - REGTEST: filters: add compression test 4128 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template 4129 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT. 4130 - DOC: Be a bit more explicit about allow-0rtt security implications. 4131 - MINOR: mux-h1: make the mux_h1_ops struct static 4132 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code 4133 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization 4134 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key 4135 - REGTESTS: test case for map_regm commit 271022150d 4136 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters 4137 - REGTESTS: Basic tests for using maps to redirect requests / select backend 4138 - DOC: REGTESTS README varnishtest -Dno-htx= define. 4139 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies 4140 - MINOR: checks: Store the proxy in checks. 4141 - BUG/MEDIUM: checks: Avoid having an associated server for email checks. 4142 - REGTEST: Switch to vtest. 4143 - REGTEST: Adapt reg test doc files to vtest. 4144 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw. 4145 - BUG/MINOR: base64: dec func ignores padding for output size checking 4146 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file 4147 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli. 4148 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH 4149 - BUG/MINOR: backend: balance uri specific options were lost across defaults 4150 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit 4151 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len 4152 - MINOR: backend: make headers and RDP cookie also use arg_str/len 4153 - MINOR: backend: add new fields in lbprm to store more LB options 4154 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only 4155 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3} 4156 - MINOR: backend: move hash_balance_factor out of chash 4157 - MEDIUM: backend: move all LB algo parameters into an union 4158 - MINOR: backend: make the random algorithm support a number of draws 4159 - BUILD/MEDIUM: da: Necessary code changes for new buffer API. 4160 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing 4161 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code. 4162 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not 4163 - DOC: add a missing space in the documentation for bc_http_major 4164 - REGTEST: checks basic stats webpage functionality 4165 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set. 4166 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded. 4167 - DOC: add github issue templates 4168 - MINOR: cfgparse: Extract some code to be re-used. 4169 - CLEANUP: cfgparse: Return asap from cfg_parse_peers(). 4170 - CLEANUP: cfgparse: Code reindentation. 4171 - MINOR: cfgparse: Useless frontend initialization in "peers" sections. 4172 - MINOR: cfgparse: Rework peers frontend init. 4173 - MINOR: cfgparse: Simplication. 4174 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines. 4175 - MINOR: peers: Make outgoing connection to SSL/TLS peers work. 4176 - MINOR: cfgparse: SSL/TLS binding in "peers" sections. 4177 - DOC: peers: SSL/TLS documentation for "peers" 4178 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free 4179 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash 4180 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state 4181 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk() 4182 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages 4183 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst 4184 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once 4185 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve 4186 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only 4187 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy 4188 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf() 4189 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room 4190 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors 4191 - MINOR: h2: declare new sets of frame types 4192 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY 4193 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error 4194 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream 4195 - BUG/MINOR: hpack: return a compression error on invalid table size updates 4196 - MINOR: server: make sure pool-max-conn is >= -1 4197 - BUG/MINOR: stream: take care of synchronous errors when trying to send 4198 - CLEANUP: server: fix indentation mess on idle connections 4199 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams() 4200 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID 4201 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available 4202 - MINOR: server: add a max-reuse parameter 4203 - MINOR: mux-h2: always consider a server's max-reuse parameter 4204 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON 4205 - MINOR: stream: don't wait before retrying after a failed connection reuse 4206 - MEDIUM: h2: always parse and deduplicate the content-length header 4207 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames 4208 - CLEANUP: h2: Remove debug printf in mux_h2.c 4209 - MINOR: cfgparse: make the process/thread parser support a maximum value 4210 - MINOR: threads: make MAX_THREADS configurable at build time 4211 - DOC: nbthread is no longer experimental. 4212 - BUG/MINOR: listener: always fill the source address for accepted socketpairs 4213 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY 4214 - BUG/MINOR: spoe: corrected fragmentation string size 4215 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups 4216 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry. 4217 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure 4218 - SCRIPTS: add the issue tracker URL to the announce script 4219 - MINOR: peers: Extract some code to be reused. 4220 - CLEANUP: peers: Indentation fixes. 4221 - MINOR: peers: send code factorization. 4222 - MINOR: peers: Add new functions to send code and reduce the I/O handler. 4223 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler. 4224 - MINOR: peers: Move update receive code to reduce the size of the I/O handler. 4225 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler. 4226 - MINOR: peers: Move high level receive code to reduce the size of I/O handler. 4227 - CLEANUP: peers: Be more generic. 4228 - MINOR: peers: move error handling to reduce the size of the I/O handler. 4229 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler. 4230 - MINOR: peers: move send code to reduce the size of the I/O handler. 4231 - CLEANUP: peers: Remove useless statements. 4232 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler. 4233 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler. 4234 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg() 4235 - CLEANUP: peers: factor error handling in peer_treat_definedmsg() 4236 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup 4237 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams 4238 - CLEANUP: mux-h2: remove two useless but misleading assignments 4239 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded. 4240 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated. 4241 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list. 4242 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed. 4243 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf. 4244 - BUG/MEDIUM: peers: Handle mux creation failure. 4245 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux. 4246 - BUG/MEDIUM: compression: Rewrite strong ETags 4247 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit 4248 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity 4249 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update 4250 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions 4251 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams 4252 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them 4253 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC 4254 - MINOR: h2: add a generic frame checker 4255 - MEDIUM: mux-h2: check the frame validity before considering the stream state 4256 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers 4257 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection 4258 - DOC: compression: Update the reasons for disabled compression 4259 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation. 4260 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers 4261 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty() 4262 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode 4263 - BUG/MEDIUM: peers: Peer addresses parsing broken. 4264 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden 4265 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE. 4266 - BUG/MINOR: stream: don't close the front connection when facing a backend error 4267 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection 4268 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed 4269 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection 4270 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams 4271 - BUG/MINOR: server: fix logic flaw in idle connection list management 4272 - MINOR: mux-h2: max-concurrent-streams should be unsigned 4273 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend 4274 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting 4275 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams 4276 - MINOR: xref: Add missing barriers. 4277 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free(). 4278 - MINOR: debug: Add an option that causes random allocation failures. 4279 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list 4280 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules 4281 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret. 4282 - BUG/MINOR: backend: check srv_conn before dereferencing it 4283 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method 4284 - BUG/MEDIUM: mux-h2: always set :authority on request output 4285 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free(). 4286 - BUG/MINOR: threads: fix the process range of thread masks 4287 - BUG/MINOR: config: fix bind line thread mask validation 4288 - CLEANUP: threads: fix misleading comment about all_threads_mask 4289 - CLEANUP: threads: use nbits to calculate the thread mask 4290 - OPTIM: listener: optimize cache-line packing for struct listener 4291 - MINOR: tools: improve the popcount() operation 4292 - MINOR: config: keep an all_proc_mask like we have all_threads_mask 4293 - MINOR: global: add proc_mask() and thread_mask() 4294 - MINOR: config: simplify bind_proc processing using proc_mask() 4295 - MINOR: threads: make use of thread_mask() to simplify some thread calculations 4296 - BUG/MINOR: compression: properly report compression stats in HTX mode 4297 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup 4298 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present 4299 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes 4300 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX 4301 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules 4302 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used 4303 - DOC: ssl: Stop documenting ciphers example to use 4304 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit 4305 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets 4306 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last 4307 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config 4308 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end 4309 - MINOR: config: make MAX_PROCS configurable at build time 4310 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck 4311 - BUG/MINOR: config: Reinforce validity check when a process number is parsed 4312 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl 4313 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy 4314 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive 4315 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly. 4316 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module. 4317 - BUG/MAJOR: stream: avoid double free on unique_id 4318 - BUILD/MINOR: stream: avoid a build warning with threads disabled 4319 - BUILD/MINOR: tools: fix build warning in the date conversion functions 4320 - BUILD/MINOR: peers: remove an impossible null test in intencode() 4321 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline 4322 - BUG/MEDIUM: peers: Missing peer initializations. 4323 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode 4324 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed 4325 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode 4326 - BUILD/MEDIUM: initcall: Fix build on MacOS. 4327 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf() 4328 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body 4329 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed 4330 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers 4331 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default 4332 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled 4333 - MINOR: mux-h2: Set HTX extra value when possible 4334 - BUG/MEDIUM: htx: count the amount of copied data towards the final count 4335 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable 4336 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers 4337 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns. 4338 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections. 4339 - MINOR: fd: add a new my_closefrom() function to close all FDs 4340 - MINOR: checks: use my_closefrom() to close all FDs 4341 - MINOR: fd: implement an optimised my_closefrom() function 4342 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs 4343 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked 4344 - BUG/MAJOR: listener: Make sure the listener exist before using it. 4345 - MINOR: fd: Use closefrom() as my_closefrom() if supported. 4346 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf() 4347 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped 4348 - MINOR: htx: Add function to drain data from an HTX message 4349 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel 4350 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served 4351 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests 4352 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests 4353 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input() 4354 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages 4355 - BUG/MEDIUM: h2: advertise to servers that we don't support push 4356 - MINOR: standard: Add a function to parse uints (dotted notation). 4357 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type. 4358 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC. 4359 - MINOR: sample: Add two sample converters for protocol buffers. 4360 - DOC: sample: Add gRPC related documentation. 4361 43622018/12/22 : 2.0-dev0 4363 - BUG/MAJOR: connections: Close the connection before freeing it. 4364 - REGTEST: Require the option LUA to run lua tests 4365 - REGTEST: script: Process script arguments before everything else 4366 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters 4367 - REGTEST: script: Add the option --clean to remove previous log direcotries 4368 - REGTEST: script: Add the option --debug to show logs on standard ouput 4369 - REGTEST: script: Add the option --keep-logs to keep all log directories 4370 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests 4371 - REGTEST: script: Print only errors in the results report 4372 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx' 4373 - REGTEST: Make reg-tests target support argument. 4374 - REGTEST: Fix a typo about barrier type. 4375 - REGTEST: Be less Linux specific with a syslog regex. 4376 - REGTEST: Missing enclosing quotes for ${tmpdir} macro. 4377 - REGTEST: Exclude freebsd target for some reg tests. 4378 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE. 4379 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports 4380 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response() 4381 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error 4382 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length 4383 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty 4384 - MEDIUM: mux_h1: Implement h1_show_fd. 4385 - REGTEST: script: Add support of alternatives in requited options list 4386 - REGTEST: Add a basic test for the compression 4387 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames 4388 - REGTEST: A basic test for "http-buffer-request" 4389 - BUG/MEDIUM: server: Also copy "check-sni" for server templates. 4390 - MINOR: ssl: Add ssl_sock_set_alpn(). 4391 - MEDIUM: checks: Add check-alpn. 4392 - wip 4393 43942018/12/19 : 1.9.0 4395 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data 4396 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback 4397 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams. 4398 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags 4399 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving 4400 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux 4401 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available 4402 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode 4403 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd" 4404 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT 4405 - MINOR: cli/stream: add the conn_stream in "show sess" output 4406 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd" 4407 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd 4408 - MINOR: objtype: report a few missing types in names and base pointers 4409 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS 4410 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams() 4411 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors 4412 - BUG/MINOR: mux-h1: report the correct frontend in error captures 4413 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer 4414 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX 4415 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding 4416 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies 4417 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets 4418 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything 4419 - MINOR: compression: Remove the thread_local variable buf_output 4420 - CLEANUP: connection: rename subscription events values and event field 4421 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx 4422 - MINOR: connection: remove an unwelcome dependency on struct stream 4423 - CLEANUP: stream-int: consistently call the si/stream_int functions 4424 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive. 4425 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames. 4426 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams() 4427 - MEDIUM: stream-int: always consider all CS errors on the send side 4428 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data. 4429 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers 4430 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer 4431 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts 4432 - MINOR: connection: add cs_set_error() to set the error bits 4433 - CLEANUP: mux-h2: make use of cs_set_error() 4434 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data 4435 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr. 4436 - MINOR: cli/show_fd: report that a connection is back or not 4437 - SCRIPTS: add the slack channel URL to the announce script 4438 - CLEANUP: remove my name and address from the copyright banner 4439 - DOC: mention in the readme that 1.9 is a stable version now 4440 44412018/12/16 : 1.9-dev11 4442 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried. 4443 - REGTEST/MINOR: remove double body specification for server txresp 4444 - BUG/MEDIUM: connections: Remove error flags when retrying. 4445 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd 4446 - REGTEST/MINOR: remove health-check that can make the test fail 4447 - DOC: clarify that check-sni needs an argument. 4448 - DOC: refer to check-sni in the documentation of sni 4449 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods 4450 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages 4451 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests 4452 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received 4453 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one 4454 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx. 4455 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation 4456 - CLEANUP: hpack: no need to include chunk.h, only include buf.h 4457 - MINOR: hpack: simplify the len to bytes conversion 4458 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header() 4459 - MINOR: hpack: optimize header encoding for short names 4460 - CONTRIB: hpack: add a compressed stream generator for the encoder 4461 - MEDIUM: hpack: make it possible to encode any static header name 4462 - MINOR: hpack: move the length computation and encoding functions to .h 4463 - MINOR: hpack: provide a function to encode a short indexed header 4464 - MINOR: hpack: provide a function to encode a long indexed header 4465 - MINOR: hpack: provide new functions to encode the ":status" header 4466 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status 4467 - MINOR: hpack: provide a function to encode an HTTP method 4468 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method 4469 - MINOR: hpack: provide a function to encode an HTTP scheme 4470 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme 4471 - MINOR: hpack: provide a function to encode an HTTP path 4472 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path 4473 - REGTEST: add the HTTP rules test involving HTX processing 4474 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions 4475 - MEDIUM: cli: rework the CLI proxy parser 4476 - MINOR: cli: parse prompt command in the CLI proxy 4477 - MINOR: cli: implements 'quit' in the CLI proxy 4478 - BUG/MINOR: cli: wait for payload data even without prompt 4479 - MEDIUM: cli: handle payload in CLI proxy 4480 - MINOR: cli: use pcli_flags for prompt activation 4481 - MINOR: compression: Rename the function check_legacy_http_comp_flt() 4482 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies 4483 - MINOR: cache: Register the cache as a data filter only if response is cacheable 4484 - MEDIUM: cache/htx: Add the HTX support into the cache 4485 - MINOR: cache: Improve and simplify the cache configuration check 4486 - MINOR: filters: Export the name of known filters 4487 - MEDIUM: cache/compression: Add a way to safely combined compression and cache 4488 - MEDIUM: cache: Require an explicit filter declaration if other filters are used 4489 - REORG: htx: merge types+proto into common/htx.h 4490 - REORG: http: create http_msg.c to place there some legacy HTTP parts 4491 - REORG: h1: move legacy http functions to http_msg.c 4492 - REORG: h1: move the h1_state definition to proto_http 4493 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions 4494 - REORG: h1: merge types+proto into common/h1.h 4495 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR 4496 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks 4497 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void* 4498 - BUG/MINOR: mux-h2: refrain from muxing during the preface 4499 - BUG/MINOR: mux-h2: advertise a larger connection window size 4500 - DOC: master CLI documentation in management.txt 4501 - MINOR: mux-h2: avoid copying large blocks into full buffers 4502 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks 4503 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode 4504 - MINOR: cli: change 'show proc' output of old processes 4505 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages 4506 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name 4507 - BUG: dns: Prevent out-of-bounds read in dns_read_name() 4508 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response() 4509 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response() 4510 - BUG: dns: Fix off-by-one write in dns_validate_dns_response() 4511 - REGTEST: the cache regtest requires haproxy 1.9 4512 - MEDIUM: cli: store CLI level in the appctx 4513 - MEDIUM: cli: show and change CLI permissions 4514 - CLEANUP: cli: use dedicated define instead of appctx ones 4515 - MEDIUM: cli: handle CLI level from the master CLI 4516 - BUG/MEDIUM: cli: handle correctly prefix and payload 4517 - BUILD: Makefile: Implements the help target 4518 - REGTESTS: adjust the http-rules regtest to support window updates 4519 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry. 4520 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected. 4521 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure. 4522 - MEDIUM: mux: Add an optional "reset" method. 4523 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data 4524 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send 4525 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established 4526 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection. 4527 - MEDIUM: htx: Try to take a connection over if it has no owner. 4528 - REGTEST: Reg testing improvements. 4529 - REGTEST: Add a first test for health-checks. 4530 - REGTEST: Reg test for "check" health-check option. 4531 - REGTEST: level 1 health-check test 2. 4532 - REGTEST: Add miscellaneous reg tests for health-checks. 4533 - REGTEST: add a few HTTP messaging tests 4534 - MINOR: lb: make the leastconn algorithm more accurate 4535 - REGTEST: fix missing space in checks/s00001 4536 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests 4537 - BUG/MEDIUM: cache: fix random crash on filter parser's error path 4538 - MINOR: connection: realign empty buffers in muxes, not transport layers 4539 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment 4540 - MINOR: backend: count the number of connect and reuse per server and per backend 4541 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses 4542 - MINOR: tools: increase the number of ITOA strings to 16 4543 - MINOR: cache: report the number of cache lookups and cache hits 4544 - MEDIUM: tasks: check the global task mask instead of the thread number 4545 - MINOR: mworker: set all_threads_mask and pid_bit to 1 4546 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason 4547 - BUG/MINOR: stats: Parse post data for HTX streams 4548 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware 4549 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX 4550 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies 4551 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX 4552 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware 4553 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages 4554 - MINOR: lua: Remove useless check on the messages state in HTTP functions 4555 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset. 4556 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct 4557 - MINOR: mworker/cli: indicate in the master prompt when a reload failed 4558 - MINOR: cli: implements 'reload' on master CLI 4559 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream. 4560 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send 4561 - BUG/MAJOR: backend: only update server's counters when the server exists 4562 - MINOR: tools: preset the port of fd-based "sockets" to zero 4563 - BUG/MINOR: log: fix logging to both FD and IP 4564 - REGTEST: Add a reg test for HTTP cookies. 4565 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs 4566 - BUILD: thread: properly report multi-thread support 4567 - BUG/MINOR: logs: leave startup-logs global and not per-thread 4568 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init 4569 - BUG/MAJOR: compression/cache: Make it really works with these both filters 4570 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut. 4571 - MEDIUM: proxy: Set http-reuse safe as default. 4572 - MEDIUM: servers: Add a command to limit the number of idling connections. 4573 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay. 4574 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list. 4575 - MEDIUM: mux: provide the session to the init() and attach() method. 4576 - MEDIUM: sessions: Don't keep an infinite number of idling connections. 4577 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists. 4578 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams. 4579 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort 4580 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery 4581 - MINOR: pools: Cast to volatile int * instead of int *. 4582 - MINOR: debug: make the ABORT_NOW macro use a volatile int 4583 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached. 4584 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer 4585 - DOC: clarify the agent-check status line syntax 4586 - BUG/MAJOR: hpack: fix length check for short names encoding 4587 - DOC: split the README into README + INSTALL 4588 45892018/12/08 : 1.9-dev10 4590 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific 4591 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above 4592 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn 4593 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master 4594 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner. 4595 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw. 4596 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support 4597 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data. 4598 - MEDIUM: mux-h1: Revamp the way subscriptions are handled. 4599 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv() 4600 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed 4601 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s 4602 - BUG/MINOR: proto_htx: Truncate the request when an error is detected 4603 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all. 4604 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode 4605 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers 4606 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked 4607 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested 4608 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks 4609 - BUG/MEDIUM: h1: Correctly report used data with no len. 4610 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed. 4611 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE. 4612 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers 4613 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers 4614 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room() 4615 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers 4616 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible 4617 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx 4618 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path 4619 - MEDIUM: htx: Rework conversion from a buffer to an htx structure 4620 - MEDIUM: channel/htx: Add functions for forward HTX data 4621 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf() 4622 - CLEANUP: htx: Fix indentation here and there in HTX files 4623 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing 4624 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line 4625 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors 4626 - MINOR: mux-h1: Drain obuf if the output is closed after sending data 4627 - BUG/MEDIUM: mworker: stop every tasks in the master 4628 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag 4629 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet. 4630 - BUG/MEDIUM: connections: Reuse an already attached conn_stream. 4631 - MINOR: stream-int: add a new blocking condition on the remote connection 4632 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established 4633 - BUG/MEDIUM: lua: block on remote connection establishment 4634 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks() 4635 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests 4636 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags. 4637 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection. 4638 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0. 4639 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv 4640 - REGTEST: Move LUA reg test 4 to level 1. 4641 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string 4642 - MEDIUM: ist: always turn header names to lower case 4643 - MINOR: h2: don't turn HTX header names to lower case anymore 4644 - MEDIUM: ist: use local conversion arrays to case conversion 4645 - MINOR: htx: switch to case sensitive search of lower case header names 4646 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending 4647 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv 4648 - REGTEST: fix the Lua test file name in test lua/h00002 :-) 4649 - REGTEST: add a basic test for HTTP rules manipulating headers 4650 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR. 4651 - MINOR: sample: add bc_http_major 4652 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time 4653 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well 4654 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX. 4655 - MINOR: compiler: add a new macro ALREADY_CHECKED() 4656 - BUILD: h2: mark the start line already checked to avoid warnings 4657 - BUG/MINOR: mux-h1: Remove the connection header when it is useless 4658 46592018/12/02 : 1.9-dev9 4660 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl 4661 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1 4662 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM 4663 - MINOR: compression: always create the compression pool 4664 - BUG/MEDIUM: mworker: fix FD leak upon reload 4665 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms 4666 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl 4667 - MINOR: initcall: introduce a way to register init functions to call at boot 4668 - MINOR: init: process all initcalls in order at boot time 4669 - MEDIUM: init: convert all trivial registration calls to initcalls 4670 - MINOR: thread: provide a set of lock initialisers 4671 - MINOR: threads: add new macros to declare self-initializing locks 4672 - MEDIUM: init: use self-initializing spinlocks and rwlocks 4673 - MINOR: initcall: apply initcall to all register_build_opts() calls 4674 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread* 4675 - MINOR: initcall: use initcalls for section parsers 4676 - MINOR: memory: add a callback function to create a pool 4677 - MEDIUM: init: use initcall for all fixed size pool creations 4678 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit() 4679 - MEDIUM: initcall: use initcalls for a few initialization functions 4680 - MEDIUM: memory: make the pool cache an array and not a thread_local 4681 - MINOR: ssl: free ctx when libssl doesn't support NPN 4682 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected 4683 - MINOR: h2: make struct h2_ops static 4684 - BUG/MEDIUM: mworker: avoid leak of client socket 4685 - REORG: mworker: declare master variable in global.h 4686 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set 4687 - CLEANUP: http: Fix typo in init_http's comment 4688 - BUILD: Makefile: Disable -Wcast-function-type if it exists. 4689 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed. 4690 - REGTEST/MINOR: script: add run-regtests.sh script 4691 - REGTEST: Add a basic test for the cache. 4692 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach. 4693 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id 4694 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen. 4695 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI. 4696 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done. 4697 - BUG/MEDIUM: stream_interface: Make sure we read all the data available. 4698 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection. 4699 - REGTEST: Fix several issues. 4700 - REGTEST: lua: check socket functionality from a lua-task 4701 - BUG/MEDIUM: session: Remove the session from the session_list in session_free. 4702 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp. 4703 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server(). 4704 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy. 4705 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing. 4706 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done. 4707 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always. 4708 - MEDIUM: h2: Destroy a connection with no stream if it has no owner. 4709 - MAJOR: sessions: Store multiple outgoing connections in the session. 4710 - MEDIUM: session: Steal owner-less connections on end of transaction. 4711 - MEDIUM: server: Be smarter about deciding to reuse the last server. 4712 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections. 4713 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name 4714 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot 4715 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced 4716 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages 4717 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed 4718 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing 4719 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM 4720 - BUG/MINOR: connection: report mux modes when HTX is supported 4721 - MINOR: htx: add a function to cut the beginning of a DATA block 4722 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer 4723 - MINOR: mux-h1: Implement get_cs_info() callback 4724 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones 4725 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible 4726 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode() 4727 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message 4728 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing 4729 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent 4730 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf() 4731 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list 4732 - MINOR: htx: Add function to add an HTX block just before another one 4733 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks 4734 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset 4735 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response 4736 - MEDIUM: htx: Change htx_sl to be a struct instead of an union 4737 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure 4738 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing 4739 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones 4740 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message 4741 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses 4742 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses 4743 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses 4744 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server 4745 - MINOR: proto_htx: Send valid HTX message to send 30x responses 4746 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX 4747 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found 4748 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response 4749 - MINOR: mux-h1: Capture bad H1 messages 4750 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation 4751 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding 4752 - MINOR: flt_trace: Adapt to be compatible with the HTX representation 4753 - MEDIUM: compression: Adapt to be compatible with the HTX representation 4754 - MINOR: h2: implement H2->HTX request header frame transcoding 4755 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes 4756 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers 4757 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware 4758 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers 4759 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks 4760 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks 4761 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks 4762 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed 4763 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode 4764 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers 4765 - MINOR: listener: the mux_proto entry in the bind_conf is const 4766 - MINOR: connection: create conn_get_best_mux_entry() 4767 - MINOR: server: the mux_proto entry in the server is const 4768 - MINOR: config: make sure to associate the proper mux to bind and servers 4769 - MINOR: hpack: add ":path" to the list of common header fields 4770 - MINOR: h2: add new functions to produce an HTX message from an H2 response 4771 - MINOR: mux-h2: mention that the mux is compatible with both sides 4772 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new() 4773 - MEDIUM: mux-h2: start to create the outgoing mux 4774 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side 4775 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic 4776 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well 4777 - MEDIUM: mux-h2: Implement h2_attach(). 4778 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY. 4779 - REGTEST: Fix LEVEL 4 script 0 of "connection" module. 4780 - MINOR: connection: Fix a comment. 4781 - MINOR: mux: add a "max_streams" method. 4782 - MEDIUM: servers: Add a way to keep idle connections alive. 4783 - CLEANUP: fix typos in the htx subsystem 4784 - CLEANUP: Fix typo in the chunk headers file 4785 - CLEANUP: Fix typos in the h1 subsystem 4786 - CLEANUP: Fix typos in the h2 subsystem 4787 - CLEANUP: Fix a typo in the mini-clist header 4788 - CLEANUP: Fix a typo in the proto_htx subsystem 4789 - CLEANUP: Fix typos in the proto_tcp subsystem 4790 - CLEANUP: Fix a typo in the signal subsystem 4791 - CLEANUP: Fix a typo in the session subsystem 4792 - CLEANUP: Fix a typo in the queue subsystem 4793 - CLEANUP: Fix typos in the shctx subsystem 4794 - CLEANUP: Fix typos in the socket pair protocol subsystem 4795 - CLEANUP: Fix typos in the map management functions 4796 - CLEANUP: Fix typo in the fwrr subsystem 4797 - CLEANUP: Fix typos in the cli subsystem 4798 - CLEANUP: Fix typo in the 51d subsystem 4799 - CLEANUP: Fix a typo in the base64 subsystem 4800 - CLEANUP: Fix a typo in the connection subsystem 4801 - CLEANUP: Fix a typo in the protocol header file 4802 - CLEANUP: Fix a typo in the checks header file 4803 - CLEANUP: Fix typos in the file descriptor subsystem 4804 - CLEANUP: Fix a typo in the listener subsystem 4805 - BUG/MINOR: lb-map: fix unprotected update to server's score 4806 - BUILD: threads: fix minor build warnings when threads are disabled 4807 48082018/11/25 : 1.9-dev8 4809 - REORG: config: extract the global section parser into cfgparse-global 4810 - REORG: config: extract the proxy parser into cfgparse-listen.c 4811 - BUILD: update the list of supported targets and compilers in makefile and readme 4812 - BUILD: reorder the objects in the makefile 4813 - BUILD: Makefile: make "V=1" show some of the commands that are executed 4814 - BUILD: Makefile: add the quiet mode to a few more targets 4815 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets 4816 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR 4817 - MINOR: cli: format `show proc` to be more readable 4818 - MINOR: cli: displays uptime in `show proc` 4819 - MINOR: cli: show master information in 'show proc' 4820 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field 4821 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer 4822 - BUG/MINOR: mux-h1: Enable keep-alive on server side 4823 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used 4824 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed 4825 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten 4826 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error 4827 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe() 4828 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf() 4829 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe 4830 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send() 4831 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols 4832 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed() 4833 - MEDIUM: mworker: wait mode use standard init code path 4834 - MINOR: log: introduce ha_notice() 4835 - MINOR: mworker: use ha_notice to announce a new worker 4836 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header. 4837 - MINOR: cli: add mworker_accept_wrapper to 'show fd' 4838 - MEDIUM: signal: signal_unregister() removes every handlers 4839 - BUG/MEDIUM: mworker: unregister the signals of main() 4840 - MINOR: cli: add a few missing includes in proto/cli.h 4841 - REORG: time/activity: move activity measurements to activity.{c,h} 4842 - MINOR: activity: report the average loop time in "show activity" 4843 - MINOR: activity: add configuration and CLI support for "profiling.tasks" 4844 - MEDIUM: tasks: collect per-task CPU time and latency 4845 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot 4846 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds 4847 - BUG/MINOR: cli: Fix memory leak 4848 - BUG/MINOR: mworker: fix FD leak and memory leak in error path 4849 - MINOR: poller: move the call of tv_update_date() back to the pollers 4850 - MINOR: polling: add an option to support busy polling 4851 - MINOR: server: Add "alpn" and "npn" keywords. 4852 - MEDIUM: connection: Don't bother reactivating polling after connection retry. 4853 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set. 4854 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches. 4855 - MINOR: servers: Free [idle|safe|priv]_conns on exit. 4856 - REGTEST: add the option to test only a specific set of files 4857 - REGTEST: add a test for connections to a "dispatch" address 4858 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server(). 4859 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set. 4860 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon. 4861 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed. 4862 - MEDIUM: servers: Store the connection in the SI until we have a mux. 4863 - BUG/MEDIUM: h2: wake the processing task up after demuxing 4864 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space 4865 48662018/11/18 : 1.9-dev7 4867 - BUILD: cache: fix a build warning regarding too large an integer for the age 4868 - CLEANUP: fix typos in the comments of the Makefile 4869 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem 4870 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem 4871 - CLEANUP: fix typos in comments for contrib/spoa_example 4872 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors 4873 - DOC: Fix typos in README and CONTRIBUTING 4874 - MINOR: log: slightly improve error message syntax on log failure 4875 - DOC: logs: the format directive was missing from the second log part 4876 - MINOR: log: report the number of dropped logs in the stats 4877 - MEDIUM: log: add support for logging to existing file descriptors 4878 - MEDIUM: log: support a new "short" format 4879 - MEDIUM: log: add a new "raw" format 4880 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int 4881 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty() 4882 - MINOR: namespaces: don't build namespace.c if disabled 4883 - BUILD/MEDIUM: threads/affinity: DragonFly build fix 4884 - MINOR: http: Add new "early-hint" http-request action. 4885 - MINOR: http: Make new "early-hint" http-request action really be parsed. 4886 - MINOR: http: Implement "early-hint" http request rules. 4887 - MINOR: doc: Add information about "early-hint" http-request action. 4888 - DOC: early-hints: fix truncated line. 4889 - MINOR: mworker: only close std{in,out,err} in daemon mode 4890 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs 4891 - BUG/MEDIUM: Make sure stksess is properly aligned. 4892 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv 4893 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in 4894 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice() 4895 - CONTRIB: debug: fix build related to conn_stream flags change 4896 - REGTEST: fix scripts 1 and 3 to accept development version 4897 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri 4898 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end 4899 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end 4900 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses 4901 - MEDIUM: jobs: support unstoppable jobs for soft stop 4902 - MEDIUM: listeners: support unstoppable listener 4903 - MEDIUM: cli: worker socketpair is unstoppable 4904 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish() 4905 - MINOR: stream: move the conn_stream specific calls to the stream-int 4906 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts 4907 - CLEANUP: h2: minimum documentation for recent API changes 4908 - MINOR: mux: implement a get_first_cs() method 4909 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first() 4910 - MINOR: stream-int: relax the forwarding rules in stream_int_notify() 4911 - MINOR: stream-int: expand the flags to 32-bit 4912 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM 4913 - MINOR: stream-int: introduce new SI_FL_RXBLK flags 4914 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}() 4915 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP 4916 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness 4917 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness 4918 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}() 4919 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv() 4920 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv() 4921 - MINOR: stream-int: automatically mark applets as ready if they block on the channel 4922 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness 4923 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness 4924 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed 4925 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify 4926 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel 4927 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}() 4928 - MEDIUM: connections: Wait until the connection is established to try to recv. 4929 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections. 4930 - MINOR: mux: Add a new "avail_streams" method. 4931 - MINOR: mux: Add a destroy() method. 4932 - MINOR: sessions: Start to store the outgoing connection in sessions. 4933 - MAJOR: connections: Detach connections from streams. 4934 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers 4935 - MINOR: htx: Add proto_htx.c file 4936 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve 4937 - MINOR: http: Add standalone functions to parse a start-line or a header 4938 - MINOR: http: Call http_send_name_header with the stream instead of the txn 4939 - MINOR: conn_stream: Add a flag to notify the SI some data were received 4940 - MINOR: http: Add macros to check if a stream uses the HTX representation 4941 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used 4942 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections 4943 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages 4944 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux 4945 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data 4946 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages 4947 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c 4948 - MINOR: proto_htx: Add some functions to handle HTX messages 4949 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation 4950 - MINOR: http_htx: Add functions to replace part of the start-line 4951 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header 4952 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages 4953 - MINOR: proto_htx: Add the internal function htx_del_hdr_value 4954 - MINOR: proto_htx: Add the internal function htx_fmt_res_line 4955 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str 4956 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status 4957 - MINOR: proto_htx: Add function to build and send HTTP 103 responses 4958 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule 4959 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages 4960 - MINOR: proto_htx: Add functions to manage cookies on HTX messages 4961 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages 4962 - MINOR: proto_htx: Add functions htx_send_name_header 4963 - MINOR: proto_htx: Add functions htx_perform_server_redirect 4964 - MINOR: proto_htx: Add functions to handle the stats applet 4965 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages 4966 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages 4967 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages 4968 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages 4969 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages 4970 - MINOR: http_fetch: Add smp_prefetch_htx 4971 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages 4972 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data 4973 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages 4974 - MINOR: stream: Don't reset sov value with HTX messages 4975 - MEDIUM: mux-h1: Handle errors and timeouts in the stream 4976 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy 4977 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy 4978 - CLEANUP: Fix some typos in the haproxy subsystem 4979 - CLEANUP: Fix typos in the dns subsystem 4980 - CLEANUP: Fix typos in the pattern subsystem 4981 - CLEANUP: fix 2 typos in the xxhash subsystem 4982 - CLEANUP: fix a few typos in the comments of the server subsystem 4983 - CLEANUP: fix a misspell in tests/filltab25.c 4984 - CLEANUP: fix a typo found in the stream subsystem 4985 - CLEANUP: fix typos in comments in ebtree 4986 - CLEANUP: fix typos in reg-tests 4987 - CLEANUP: fix typos in the comments of the vars subsystem 4988 - CLEANUP: fix typos in the hlua_fcn subsystem 4989 - CLEANUP: fix typos in the proto_http subsystem 4990 - CLEANUP: fix typos in the proxy subsystem 4991 - CLEANUP: fix typos in the ssl_sock subsystem 4992 - DOC: Fix typos in different subsections of the documentation 4993 - DOC: fix a few typos in the documentation 4994 - MINOR: Fix an error message thrown when we run out of memory 4995 - MINOR: Fix typos in error messages in the proxy subsystem 4996 - MINOR: fix typos in the examples files 4997 - CLEANUP: Fix a typo in the stats subsystem 4998 - CLEANUP: Fix typos in the acl subsystem 4999 - CLEANUP: Fix typos in the cache subsystem 5000 - CLEANUP: Fix typos in the cfgparse subsystem 5001 - CLEANUP: Fix typos in the filters subsystem 5002 - CLEANUP: Fix typos in the http subsystem 5003 - CLEANUP: Fix typos in the log subsystem 5004 - CLEANUP: Fix typos in the peers subsystem 5005 - CLEANUP: Fix typos in the regex subsystem 5006 - CLEANUP: Fix typos in the sample subsystem 5007 - CLEANUP: Fix typos in the spoe subsystem 5008 - CLEANUP: Fix typos in the standard subsystem 5009 - CLEANUP: Fix typos in the stick_table subsystem 5010 - CLEANUP: Fix typos in the task subsystem 5011 - MINOR: Fix typo in error message in the standard subsystem 5012 - CLEANUP: fix typos in the comments of hlua 5013 - MINOR: Fix typo in the error 500 output of hlua 5014 - MINOR: Fix a typo in a warning message in the spoe subsystem 5015 50162018/11/11 : 1.9-dev6 5017 - BUG/MEDIUM: tools: fix direction of my_ffsl() 5018 - BUG/MINOR: cli: forward the whole command on master CLI 5019 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe 5020 - MINOR: compat: automatically detect support for crypt_r() 5021 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it 5022 - DOC: split the http-request actions in their own section 5023 - DOC: split the http-response actions in their own section 5024 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn() 5025 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers 5026 - MINOR: stats: report the number of active jobs and listeners in "show info" 5027 - MINOR: stats: report the number of active peers in "show info" 5028 - MINOR: stats: report the number of currently connected peers 5029 - MINOR: cli: show the number of reload in 'show proc' 5030 - MINOR: cli: can't connect to the target CLI 5031 - MEDIUM: mworker: does not create the CLI proxy when no listener 5032 - MINOR: mworker: displays more information when leaving 5033 - MEDIUM: mworker: exit with the incriminated exit code 5034 - MINOR: mworker: displays a message when a worker is forked 5035 - MEDIUM: mworker: leave when the master die 5036 - CLEANUP: stream-int: retro-document si_cs_io_cb() 5037 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register() 5038 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON 5039 - BUG/MEDIUM: cli: crash when trying to access a worker 5040 - DOC: restore note about "independant" typo 5041 - MEDIUM: stream: implement stream_buf_available() 5042 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks 5043 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put} 5044 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore 5045 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM 5046 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r} 5047 - MINOR: stream-int: make it clear that si_ops cannot be null 5048 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM 5049 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv() 5050 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ 5051 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer 5052 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared 5053 - MINOR: stream-int: replace si_update() with si_update_both() 5054 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers 5055 - CLEANUP: stream-int: remove the now unused si->update() function 5056 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt 5057 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full 5058 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn 5059 50602018/10/28 : 1.9-dev5 5061 - BUILD: Makefile: add the new ERR variable to force -Werror 5062 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples 5063 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed. 5064 - CLEANUP: http: Remove the unused function http_find_header 5065 - MINOR: h1: Export some functions parsing the value of some HTTP headers 5066 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT 5067 - MINOR: proxy: add a new option "http-use-htx" 5068 - BUG/MEDIUM: pools: fix the minimum allocation size 5069 - MINOR: shctx: Shared objects block by block allocation. 5070 - MINOR: cache: Larger HTTP objects caching. 5071 - MINOR: shctx: Add a maximum object size parameter. 5072 - MINOR: cache: Add "max-object-size" option. 5073 - DOC: Update about the cache support for big objects. 5074 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB). 5075 - BUG/MINOR: cache: Wrong usage of shctx_init(). 5076 - BUG/MINOR: ssl: Wrong usage of shctx_init(). 5077 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size". 5078 - MINOR: shctx: Change max. object size type to unsigned int. 5079 - DOC: cache: Missing information about "total-max-size" and "max-object-size" 5080 - CLEANUP: tools: fix misleading comment above function LIM2A 5081 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT 5082 - BUG/MINOR: only mark connections private if NTLM is detected 5083 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic 5084 - MINOR: stream: don't prune variables if the list is empty 5085 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation 5086 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere 5087 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation 5088 - MEDIUM: stream: don't try to send first in process_stream() 5089 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O 5090 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn 5091 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn() 5092 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up 5093 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process() 5094 - MINOR: mworker: number of reload in the life of a worker 5095 - MEDIUM: mworker: each worker socketpair is a CLI listener 5096 - REORG: mworker: move struct mworker_proc to global.h 5097 - MINOR: server: export new_server() function 5098 - MEDIUM: mworker: move proc_list gen before proxies startup 5099 - MEDIUM: mworker: add proc_list in global.h 5100 - MEDIUM: mworker: proxy for the master CLI 5101 - MEDIUM: mworker: create CLI listeners from argv[] 5102 - MEDIUM: cli: disable some keywords in the master 5103 - MEDIUM: mworker: find the server ptr using a CLI prefix 5104 - MEDIUM: cli: 'show proc' displays processus 5105 - MEDIUM: cli: implement 'mode cli' proxy analyzers 5106 - MINOR: cli: displays sockpair@ in "show cli sockets" 5107 - MEDIUM: cli: enable "show cli sockets" for the master 5108 - MINOR: cli: put @master @<relative pid> @!<pid> in the help 5109 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs 5110 - MEDIUM: mworker: stop the master proxy in the workers 5111 - MEDIUM: channel: reorder the channel analyzers for the cli 5112 - MEDIUM: cli: write a prompt for the CLI proxy of the master 5113 - MINOR: cli: helper to write an response message and close 5114 - MINOR: cache: Add "Age" header. 5115 - REGTEST: make the IP+port logging test more reliable 5116 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link 5117 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer 5118 - BUG/MINOR: backend: assign the wait list after the error check 5119 51202018/10/21 : 1.9-dev4 5121 - BUILD: Allow configuration of pcre-config path 5122 - DOC: clarify force-private-cache is an option 5123 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2 5124 - REORG: http: move the code to different files 5125 - REORG: http: move HTTP rules parsing to http_rules.c 5126 - CLEANUP: http: remove some leftovers from recent cleanups 5127 - BUILD: Makefile: add a "make opts" target to simply show the build options 5128 - BUILD: Makefile: speed up compiler options detection 5129 - BUG/MINOR: backend: check that the mux installed properly 5130 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init() 5131 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure 5132 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets 5133 - MINOR: ssl: cleanup old openssl API call 5134 - MINOR: ssl: generate-certificates for BoringSSL 5135 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk. 5136 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3 5137 - CLEANUP: haproxy: Remove unused variable 5138 - CLEANUP: h1: Fix debug warnings for h1 headers 5139 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause 5140 - MEDIUM: task: perform a single tree lookup per run queue batch 5141 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe. 5142 - BUG/MINOR: threads: move declaration of capabilities to config.h 5143 - OPTIM: tools: optimize my_ffsl() for x86_64 5144 - BUG/MINOR: h2: null-deref 5145 - BUG/MINOR: checks: queues null-deref 5146 - MINOR: connections: Introduce an unsubscribe method. 5147 - MEDIUM: connections: Change struct wait_list to wait_event. 5148 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control. 5149 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM. 5150 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint. 5151 - MINOR: http: Move comment about some HTTP macros in the right header file 5152 - MINOR: stats: Add missing include 5153 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring 5154 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend 5155 - MEDIUM: http: Ignore http-tunnel option on backend 5156 - MINOR: http: Use same flag for httpclose and forceclose options 5157 - MINOR: h1: Add EOH marker during headers parsing 5158 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag 5159 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos 5160 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing 5161 - MINOR: log: make sess_log() support sess=NULL 5162 - MINOR: chunk: add chunk_cpy() and chunk_cat() 5163 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED 5164 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings() 5165 - MINOR: h2: don't try to send data before preface 5166 - MINOR: h2: unify the mux init function 5167 - MINOR: h2: retrieve the front proxy from the caller instead of the session 5168 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new() 5169 - MINOR: h2: add a new flag to quickly distinguish front vs back connection 5170 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners 5171 - BUG/MEDIUM: stream: don't crash on out-of-memory 5172 - BUILD: compiler: add a new statement "__unreachable()" 5173 - BUILD: lua: silence some compiler warnings about potential null derefs 5174 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch 5175 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk() 5176 - BUILD: stick-table: make sure not to fail on task_new() during initialization 5177 - BUILD: peers: check allocation error during peers_init_sync() 5178 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit 5179 - MINOR: config: use atleast2() instead of my_popcountl() where relevant 5180 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread 5181 - MAJOR: tasks: create per-thread wait queues 5182 - OPTIM: tasks: group all tree roots per cache line 5183 - DOC: Fix a few typos 5184 - MINOR: pools: allocate most memory pools from an array 5185 - MINOR: pools: split pool_free() in the lockfree variant 5186 - MEDIUM: pools: implement a thread-local cache for pool entries 5187 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point 5188 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs" 5189 - BUILD: lua: silence some compiler warnings about potential null derefs (#2) 5190 - MINOR: lua: all functions calling lua_yieldk() may return 5191 - BUILD: lua: silence some compiler warnings after WILL_LJMP 5192 - BUILD: Makefile: silence an option conflict warning with clang 5193 - MINOR: server: Use memcpy() instead of strncpy(). 5194 - CLEANUP: state-file: make the path concatenation code a bit more consistent 5195 - MINOR: build: Disable -Wstringop-overflow. 5196 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80. 5197 - MINOR: peers: use defines instead of enums to appease clang. 5198 - DOC: fix reference to map files in MAINTAINERS 5199 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout() 5200 - MINOR: poller: move time and date computation out of the pollers 5201 - BUILD: memory: fix pointer declaration for atomic CAS 5202 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends 5203 - MINOR: time: add now_mono_time() and now_cpu_time() 5204 - MEDIUM: time: measure the time stolen by other threads 5205 - BUILD: memory: fix free_list pointer declaration again for atomic CAS 5206 - BUILD: compiler: rename __unreachable() to my_unreachable() 5207 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF. 5208 - BUILD: memory: fix free_list pointer declaration again for atomic CAS 5209 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent. 5210 - BUG/MEDIUM: connections: Remove subscription if going in idle mode. 5211 - BUG/MEDIUM: stream: Make sure polling is right on retry. 5212 - MINOR: h2: Make sure to return 1 in h2_recv() when needed. 5213 - MEDIUM: connections: Don't directly mess with the polling from the upper layers. 5214 - MINOR: streams: Call tasklet_free() after si_release_endpoint(). 5215 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event. 5216 - MINOR: h2: Don't run tasks that are waiting to send if mux in full. 5217 - MINOR: ebtree: save 8 bytes in struct eb32sc_node 5218 52192018/09/29 : 1.9-dev3 5220 - BUG/MINOR: h1: don't consider the status for each header 5221 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above 5222 - MINOR: h1: parse the Connection header field 5223 - DOC: Fix typos in lua documentation 5224 - MINOR: h1: Add H1_MF_XFER_LEN flag 5225 - MINOR: http: add http_hdr_del() to remove a header from a list 5226 - MINOR: h1: add headers to the list after controls, not before 5227 - MEDIUM: h1: better handle transfer-encoding vs content-length 5228 - MEDIUM: h1: deduplicate the content-length header 5229 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list 5230 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed 5231 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings 5232 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4 5233 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections 5234 - MINOR: stktable: provide an unchecked version of stktable_data_ptr() 5235 - MINOR: stream-int: make si_appctx() never fail 5236 - BUILD: ssl_sock: remove build warnings on potential null-derefs 5237 - BUILD: stats: remove build warnings on potential null-derefs 5238 - BUILD: stream: address null-deref build warnings at -Wextra 5239 - BUILD: http: address a couple of null-deref warnings at -Wextra 5240 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet} 5241 - BUILD: dns: fix null-deref build warning at -Wextra 5242 - BUILD: checks: silence a null-deref build warning at -Wextra 5243 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra 5244 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra 5245 - BUILD: sockpair: silence a build warning at -Wextra 5246 - BUILD: build with -Wextra and sort out certain warnings 5247 - BUG/CRITICAL: hpack: fix improper sign check on the header index value 5248 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data 5249 - DOC: Update configuration doc about the maximum number of stick counters. 5250 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream(). 5251 - MINOR: h2/stream_interface: Reintroduce te wake() method. 5252 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process(). 5253 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received. 5254 - MEDIUM: lua: Add stick table support for Lua. 5255 52562018/09/12 : 1.9-dev2 5257 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output 5258 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point 5259 - BUG/MEDIUM: servers: check the queues once enabling a server 5260 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections 5261 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf() 5262 - CLEANUP: backend: Move mux install to call it at only one place 5263 - MINOR: conn_stream: add an tx buffer to the conn_stream 5264 - MINOR: conn_stream: add cs_send() as a default snd_buf() function 5265 - MINOR: backend: Try to find the best mux for outgoing connections 5266 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server() 5267 - MINOR: mux: Add info about the supported side in alpn_mux_list structure 5268 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols 5269 - MINOR: mux: Print the list of existing mux protocols during HA startup 5270 - MEDIUM: checks: use the new rendez-vous point to spread check result 5271 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop 5272 - MINOR: threads: remove the previous synchronization point 5273 - MAJOR: server: make server state changes synchronous again 5274 - CLEANUP: server: remove the update list and the update lock 5275 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK" 5276 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive 5277 - MINOR: mux: Change get_mux_proto to get an ist as parameter 5278 - MINOR: mux: Improve the message with the list of existing mux protocols 5279 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol 5280 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol 5281 - MEDIUM: mux: Use the mux protocol specified on bind/server lines 5282 - BUG/MEDIUM: connection/mux: take care of serverless proxies 5283 - MINOR: queue: make sure the pendconn is released before logging 5284 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos 5285 - MINOR: queue: store the queue index in the stream when enqueuing 5286 - MINOR: queue: replace the linked list with a tree 5287 - MEDIUM: add set-priority-class and set-priority-offset 5288 - MEDIUM: queue: adjust position based on priority-class and priority-offset 5289 - DOC: update the roadmap about priority queues 5290 - BUG/MINOR: ssl: empty connections reported as errors. 5291 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv(). 5292 - MINOR: connections: Move rxbuf from the conn_stream to the h2s. 5293 - MINOR: connections: Get rid of txbuf. 5294 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task. 5295 - MINOR: connections/mux: Add the wait reason(s) to wait_list. 5296 - MINOR: stream_interface: Don't use si_cs_send() as a task handler. 5297 - MINOR: stream_interface: Give stream_interface its own wait_list. 5298 - MINOR: mux_h2: Don't use h2_send() as a callback. 5299 - MINOR: checks: Add event_srv_chk_io(). 5300 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1 5301 - BUG/MEDIUM: sessions: Don't use t->state. 5302 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle. 5303 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error. 5304 - BUG/MINOR: map: fix map_regm with backref 5305 - DOC: dns: explain set server ... fqdn requires resolver 5306 - DOC: add documentation for prio_class and prio_offset sample fetches. 5307 - DOC: ssl: Use consistent naming for TLS protocols 5308 - DOC: update the layering design notes 5309 - MINOR: tasks: Don't special-case when nbthreads == 1 5310 - MINOR: fd cache: And the thread_mask with all_threads_mask. 5311 - BUG/MEDIUM: lua: socket timeouts are not applied 5312 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts 5313 - BUG/MEDIUM: server: update our local state before propagating changes 5314 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates 5315 - DOC: server/threads: document which functions need to be called with/without locks 5316 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations 5317 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list. 5318 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet. 5319 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb. 5320 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf(). 5321 - BUG/MEDIUM: stream_interface: Call the wake callback after sending. 5322 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server 5323 - BUG/MEDIUM: connection: don't forget to always delete the list's head 5324 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations 5325 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates 5326 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error 5327 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length 5328 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length 5329 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length 5330 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length 5331 - BUG/MEDIUM: connection: don't store recv() result into trash.data 5332 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length 5333 - MINOR: chunk: remove impossible tests on negative chunk->data 5334 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data 5335 - DOC: Fix spelling error in configuration doc 5336 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro". 5337 - REGTEST/MINOR: Add a new class of regression testing files. 5338 - BUG/MEDIUM: unix: provide a ->drain() function 5339 - MINOR: connection: make conn_sock_drain() work for all socket families 5340 - BUG/MINOR: lua: Bad HTTP client request duration. 5341 - REGEST/MINOR: Add reg testing files. 5342 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake() 5343 - REGTEST/MINOR: Add a reg testing file for b406b87 commit. 5344 - BUG/MEDIUM: lua: reset lua transaction between http requests 5345 - MINOR: add be_conn_free sample fetch 5346 - MINOR: Add srv_conn_free sample fetch 5347 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done. 5348 - MINOR: checks: Call wake_srv_chk() when we can finally send data. 5349 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier. 5350 - BUG/MAJOR: thread: lua: Wrong SSL context initialization. 5351 - REGTEST/MINOR: Add a reg testing file for 3e60b11. 5352 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0. 5353 - REGTEST/MINOR: lua: Add reg testing files for 70d318c. 5354 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file 5355 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1 5356 - MINOR: tools: make date2str_log() take some consts 5357 - MINOR: thread: implement HA_ATOMIC_XADD() 5358 - BUG/MINOR: stream: use atomic increments for the request counter 5359 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs 5360 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames 5361 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk() 5362 - MINOR: log: move the log code to sess_build_logline() to add extra arguments 5363 - MINOR: log: make the backend fall back to the frontend when there's no stream 5364 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn 5365 - MINOR: log: don't unconditionally pick log info from s->logs 5366 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts 5367 - MINOR: log: keep a copy of the backend connection early in sess_build_logline() 5368 - MINOR: log: do not dereference a null stream to access captures 5369 - MINOR: log: be sure not to dereference a null stream for a target 5370 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL 5371 - MINOR: log: use NULL for the unique_id if there is no stream 5372 - MINOR: log: keep a copy of s->flags early to avoid a dereference 5373 - MINOR: log: use zero as the request counter if there is no stream 5374 - MEDIUM: log: make sess_build_logline() support being called with no stream 5375 - MINOR: log: provide a function to emit a log for a session 5376 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created 5377 - BUG/MINOR: h1: fix buffer shift after realignment 5378 - MINOR: connection: make the initialization more consistent 5379 - MINOR: connection: add new function conn_get_proxy() 5380 - MINOR: connection: add new function conn_is_back() 5381 - MINOR: log: One const should be enough. 5382 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing 5383 - BUG/MINOR: http/threads: atomically increment the error snapshot ID 5384 - MINOR: snapshot: restart on the event ID and not the stream ID 5385 - MINOR: snapshot: split the error snapshots into common and proto-specific parts 5386 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit 5387 - MEDIUM: snapshot: implement a show() callback and use it for HTTP 5388 - MINOR: proxy: add a new generic proxy_capture_error() 5389 - MINOR: http: make the HTTP error capture rely on the generic proxy code 5390 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message() 5391 - REORG: cli: move the "show errors" handler from http to proxy 5392 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors 5393 - MEDIUM: snapshots: dynamically allocate the snapshots 5394 - MEDIUM: snapshot: merge the captured data after the descriptor 5395 - MEDIUM: mworker: remove register/unregister signal functions 5396 - MEDIUM: mworker: use the haproxy poll loop 5397 - BUG/MINOR: mworker: no need to stop peers for each proxy 5398 - MINOR: mworker: mworker_cleanlisteners() delete the listeners 5399 - MEDIUM: mworker: block SIGCHLD until the master is ready 5400 - MEDIUM: mworker: never block SIG{TERM,INT} during reload 5401 - MEDIUM: startup: unify signal init between daemon and mworker mode 5402 - MINOR: mworker: don't deinit the poller fd when in wait mode 5403 - MEDIUM: mworker: master wait mode use its own initialization 5404 - MEDIUM: mworker: replace the master pipe by socketpairs 5405 - MINOR: mworker: keep and clean the listeners 5406 - MEDIUM: threads: close the thread-waker pipe during deinit 5407 - MEDIUM: mworker: call per_thread deinit in mworker_reload() 5408 - REORG: http: move the HTTP semantics definitions to http.h/http.c 5409 - REORG: http: move http_get_path() to http.c 5410 - REORG: http: move error codes production and processing to http.c 5411 - REORG: http: move the log encoding tables to log.c 5412 - REORG: http: move some header value processing functions to http.c 5413 - BUG/MAJOR: kqueue: Don't reset the changes number by accident. 5414 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser 5415 - MEDIUM: protocol: sockpair protocol 5416 - TESTS: add a python wrapper for sockpair@ 5417 - BUG/MINOR: server: Crash when setting FQDN via CLI. 5418 - BUG/MINOR: h2: report asynchronous end of stream on closed connections 5419 - BUILD: fix build without thread 5420 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free(). 5421 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler(). 5422 - MEDIUM: connections/mux: Add a recv and a send+recv wait list. 5423 - MEDIUM: connections: Get rid of the recv() method. 5424 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done. 5425 - MEDIUM: h2: always subscribe to receive if allowed. 5426 - MEDIUM: h2: Don't use a wake() method anymore. 5427 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed. 5428 - MINOR: connections: Add a "handle" field to wait_list. 5429 - MEDIUM: mux_h2: Revamp the send path when blocking. 5430 - MEDIUM: stream_interfaces: Starts receiving from the upper layers. 5431 - MINOR: checks: Give checks their own wait_list. 5432 - MINOR: conn_streams: Remove wait_list from conn_streams. 5433 - REORG: h1: create a new h1m_state 5434 - MINOR: h1: add the restart offsets into struct h1m 5435 - MINOR: h1: remove the unused states from h1m_state 5436 - MINOR: h1: provide a distinct init() function for request and response 5437 - MINOR: h1: add a message flag to indicate that a message carries a response 5438 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error 5439 - MINOR: h1: properly pre-initialize err_pos to -2 5440 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message 5441 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path 5442 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not 5443 - MEDIUM: h1: make the parser support a pointer to a start line 5444 - MEDIUM: h1: let the caller pass the initial parser's state 5445 - MINOR: h1: make the message parser support a null <hdr> argument 5446 - MEDIUM: h1: support partial message parsing 5447 - MEDIUM: h1: remove the useless H1_MSG_BODY state 5448 - MINOR: h2: store the HTTP status into the H2S, not the H1M 5449 - MINOR: h1: remove the HTTP status from the H1M struct 5450 - MEDIUM: h1: implement the request parser as well 5451 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case 5452 - MINOR: connection: pass the proxy when creating a connection 5453 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy. 5454 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach. 5455 - BUG/MAJOR: h2: reset the parser's state on mux buffer full 5456 54572018/08/02 : 1.9-dev1 5458 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork. 5459 - DOC: cache: update sections and fix some typos 5460 - BUILD/MINOR: deviceatlas: enable thread support 5461 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main 5462 - BUG/MEDIUM: ssl: don't allocate shctx several time 5463 - BUG/MEDIUM: cache: bad computation of the remaining size 5464 - BUILD: checks: don't include server.h 5465 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections 5466 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header 5467 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY 5468 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream 5469 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting 5470 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response 5471 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync. 5472 - BUG/MAJOR: thread/peers: fix deadlock on peers sync. 5473 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed 5474 - MINOR: config: report when "monitor fail" rules are misplaced 5475 - BUG/MINOR: mworker: fix validity check for the pipe FDs 5476 - BUG/MINOR: mworker: detach from tty when in daemon mode 5477 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD. 5478 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time 5479 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles 5480 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs. 5481 - BUG/MINOR: hpack: fix debugging output of pseudo header names 5482 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits 5483 - BUG/MINOR: hpack: reject invalid header index 5484 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers 5485 - BUG/MAJOR: h2: correctly check the request length when building an H1 request 5486 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream 5487 - BUG/MINOR: h2: try to abort closed streams as soon as possible 5488 - BUG/MINOR: h2: ":path" must not be empty 5489 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to 5490 - BUG/MINOR: h2: the TE header if present may only contain trailers 5491 - BUG/MEDIUM: h2: enforce the per-connection stream limit 5492 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1 5493 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame 5494 - BUG/MINOR: h2: properly check PRIORITY frames 5495 - BUG/MINOR: h2: reject response pseudo-headers from requests 5496 - BUG/MEDIUM: h2: remove connection-specific headers from request 5497 - BUG/MEDIUM: h2: do not accept upper case letters in request header names 5498 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames 5499 - BUG/MINOR: action: Don't check http capture rules when no id is defined 5500 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table 5501 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again 5502 - BUG/MEDIUM: mworker: also close peers sockets in the master 5503 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically. 5504 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state. 5505 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface 5506 - BUG/MEDIUM: h2: fix handling of end of stream again 5507 - MINOR: mworker: Update messages referencing exit-on-failure 5508 - MINOR: mworker: Improve wording in `void mworker_wait()` 5509 - CONTRIB: halog: Add help text for -s switch in halog program 5510 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task 5511 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name 5512 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET 5513 - DOC: notifications: add precisions about thread usage 5514 - BUG/MEDIUM: lua/notification: memory leak 5515 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data 5516 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE 5517 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full 5518 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible 5519 - BUG/MEDIUM: h2: work around a connection API limitation 5520 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake() 5521 - MINOR: h2: store the demux padding length in the h2c struct 5522 - BUG/MEDIUM: h2: support uploading partial DATA frames 5523 - MINOR: h2: don't demand that a DATA frame is complete before processing it 5524 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame 5525 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses 5526 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses 5527 - BUG/MEDIUM: h2: fix stream limit enforcement 5528 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS 5529 - MINOR: sample: add len converter 5530 - BUG: MAJOR: lb_map: server map calculation broken 5531 - BUG: MINOR: http: don't check http-request capture id when len is provided 5532 - MINOR: sample: rename the "len" converter to "length" 5533 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd 5534 - DOC/MINOR: intro: typo, wording, formatting fixes 5535 - MINOR: netscaler: respect syntax 5536 - MINOR: netscaler: remove the use of cip_magic only used once 5537 - MINOR: netscaler: rename cip_len to clarify its uage 5538 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size 5539 - BUG/MAJOR: netscaler: address truncated CIP header detection 5540 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header 5541 - MEDIUM: netscaler: do not analyze original IP packet size 5542 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol 5543 - MINOR: spoe: add force-set-var option in spoe-agent configuration 5544 - CONTRIB: iprange: Fix compiler warning in iprange.c 5545 - CONTRIB: halog: Fix compiler warnings in halog.c 5546 - BUG/MINOR: h2: properly report a stream error on RST_STREAM 5547 - MINOR: mux: add flags to describe a mux's capabilities 5548 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts 5549 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly 5550 - BUG/MEDIUM: checks: a server passed in maint state was not forced down. 5551 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service() 5552 - MINOR: http: adjust the list of supposedly cacheable methods 5553 - MINOR: http: update the list of cacheable status codes as per RFC7231 5554 - MINOR: http: start to compute the transaction's cacheability from the request 5555 - BUG/MINOR: http: do not ignore cache-control: public 5556 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses 5557 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability 5558 - MINOR: http: add a function to check request's cache-control header field 5559 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache 5560 - BUG/MEDIUM: cache: replace old object on store 5561 - BUG/MEDIUM: cache: respect the request cache-control header 5562 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie" 5563 - BUG/MAJOR: connection: refine the situations where we don't send shutw() 5564 - BUG/MEDIUM: checks: properly set servers to stopping state on 404 5565 - BUG/MEDIUM: h2: properly handle and report some stream errors 5566 - BUG/MEDIUM: h2: improve handling of frames received on closed streams 5567 - DOC/MINOR: configuration: typo, formatting fixes 5568 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset 5569 - BUG/MEDIUM: mworker: don't close stdio several time 5570 - MINOR: don't close stdio anymore 5571 - BUG/MEDIUM: http: don't automatically forward request close 5572 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table 5573 - MINOR: h2: add a function to report pseudo-header names 5574 - DEBUG: hpack: make hpack_dht_dump() expose the output file 5575 - DEBUG: hpack: add more traces to the hpack decoder 5576 - CONTRIB: hpack: add an hpack decoder 5577 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped 5578 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames 5579 - BUILD: ssl: silence a warning when building without NPN nor ALPN support 5580 - CLEANUP: rbtree: remove 5581 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks 5582 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive 5583 - DOC: lua: Fix typos in comments of hlua_socket_receive 5584 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect 5585 - BUG/MINOR: lua: Fix return value of Socket.settimeout 5586 - MINOR: dns: Handle SRV record weight correctly. 5587 - BUG/MEDIUM: mworker: execvp failure depending on argv[0] 5588 - MINOR: hathreads: add support for gcc < 4.7 5589 - BUILD/MINOR: ancient gcc versions atomic fix 5590 - BUG/MEDIUM: stream: properly handle client aborts during redispatch 5591 - MINOR: spoe: add register-var-names directive in spoe-agent configuration 5592 - MINOR: spoe: Don't queue a SPOE context if nothing is sent 5593 - DOC: clarify the scope of ssl_fc_is_resumed 5594 - CONTRIB: debug: fix a few flags definitions 5595 - BUG/MINOR: poll: too large size allocation for FD events 5596 - MINOR: sample: add date_us sample 5597 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely. 5598 - MINOR: servers: Don't report duplicate dyncookies for disabled servers. 5599 - MINOR: global/threads: move cpu_map at the end of the global struct 5600 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS 5601 - MINOR: global: add some global activity counters to help debugging 5602 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache 5603 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num 5604 - BUG/MEDIUM: fd: maintain a per-thread update mask 5605 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller 5606 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread 5607 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread 5608 - BUG/MEDIUM: threads/mworker: fix a race on startup 5609 - BUG/MINOR: mworker: only write to pidfile if it exists 5610 - MINOR: threads: Fix build when we're not compiling with threads. 5611 - BUG/MINOR: threads: always set an owner to the thread_sync pipe 5612 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag 5613 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed 5614 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread 5615 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif 5616 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads 5617 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads 5618 - CLEANUP: sample: Fix comment encoding of sample.c 5619 - CLEANUP: sample: Fix outdated comment about sample casts functions 5620 - BUG/MINOR: sample: Fix output type of c_ipv62ip 5621 - CLEANUP: Fix typo in ARGT_MSK6 comment 5622 - CLEANUP: standard: Use len2mask4 in str2mask 5623 - MINOR: standard: Add str2mask6 function 5624 - MINOR: config: Add support for ARGT_MSK6 5625 - MEDIUM: sample: Add IPv6 support to the ipmask converter 5626 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters. 5627 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs 5628 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore 5629 - MINOR: fd: don't report maxfd in alert messages 5630 - MEDIUM: polling: start to move maxfd computation to the pollers 5631 - CLEANUP: fd/threads: remove the now unused fdtab_lock 5632 - MINOR: poll: more accurately compute the new maxfd in the loop 5633 - CLEANUP: fd: remove the unused "new" field 5634 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h 5635 - MEDIUM: select: make use of hap_fd_* functions 5636 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock 5637 - MEDIUM: select: don't use the old FD state anymore 5638 - MEDIUM: poll: don't use the old FD state anymore 5639 - MINOR: fd: pass the iocb and owner to fd_insert() 5640 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum 5641 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters. 5642 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs 5643 - DOC: don't suggest using http-server-close 5644 - MINOR: introduce proxy-v2-options for send-proxy-v2 5645 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns 5646 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side 5647 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued 5648 - MINOR: spoe: Always link a SPOE context with the applet processing it 5649 - MINOR: spoe: Replace sending_rate by a frequency counter 5650 - MINOR: spoe: Count the number of frames waiting for an ack for each applet 5651 - MEDIUM: spoe: Use an ebtree to manage idle applets 5652 - MINOR: spoa_example: Count the number of frames processed by each worker 5653 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration 5654 - MINOR: init: make stdout unbuffered 5655 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams. 5656 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag. 5657 - MINOR: compiler: introduce offsetoff(). 5658 - MINOR: threads: Introduce double-width CAS on x86_64 and arm. 5659 - MINOR: threads: add test and set/reset operations 5660 - MINOR: pools/threads: Implement lockless memory pools. 5661 - MAJOR: fd/threads: Make the fdcache mostly lockless. 5662 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry. 5663 - MAJOR: fd: compute the new fd polling state out of the fd lock 5664 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status() 5665 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status() 5666 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status() 5667 - MINOR: select: get rid of the now useless fd_compute_new_polled_status() 5668 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function 5669 - MEDIUM: fd: make updt_fd_polling() use atomics 5670 - MEDIUM: poller: use atomic ops to update the fdtab mask 5671 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c 5672 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile 5673 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list 5674 - MINOR: fd: reorder fd_add_to_fd_list() 5675 - BUG/MINOR: time/threads: ensure the adjusted time is always correct 5676 - BUG/MEDIUM: standard: Fix memory leak in str2ip2() 5677 - MINOR: init: emit warning when -sf/-sd cannot parse argument 5678 - BUILD: fd/threads: fix breakage build breakage without threads 5679 - DOC: Describe routing impact of using interface keyword on bind lines 5680 - DOC: Mention -Ws in the list of available options 5681 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured 5682 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache. 5683 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7 5684 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable. 5685 - BUILD/MINOR: memory: stdint is needed for uintptr_t 5686 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st 5687 - DOC: lua: new prototype for function "register_action()" 5688 - DOC: cfgparse: Warn on option (tcp|http)log in backend 5689 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe 5690 - MINOR: sample: add a new "concat" converter 5691 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL 5692 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible 5693 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken. 5694 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword. 5695 - CLEANUP: cfgparse: Remove unused label end 5696 - CLEANUP: spoe: Remove unused label retry 5697 - CLEANUP: h2: Remove unused labels from mux_h2.c 5698 - CLEANUP: pools: Remove unused end label in memory.h 5699 - CLEANUP: standard: Fix typo in IPv6 mask example 5700 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs 5701 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF 5702 - MINOR: debug/pools: make DEBUG_UAF also detect underflows 5703 - MINOR: stats: display the number of threads in the statistics. 5704 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c 5705 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers 5706 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk 5707 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk 5708 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping 5709 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')" 5710 - MINOR: ssl: extract full pkey info in load_certificate 5711 - MINOR: ssl: add ssl_sock_get_pkey_algo function 5712 - MINOR: ssl: add ssl_sock_get_cert_sig function 5713 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key 5714 - MINOR: connection: add proxy-v2-options authority 5715 - MINOR: systemd: Add section for SystemD sandboxing to unit file 5716 - MINOR: systemd: Add SystemD's Protect*= options to the unit file 5717 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file 5718 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close() 5719 - MINOR: h2: provide and use h2s_detach() and h2s_free() 5720 - MEDIUM: h2: use a single buffer allocator 5721 - MINOR/BUILD: fix Lua build on Mac OS X 5722 - BUILD/MINOR: fix Lua build on Mac OS X (again) 5723 - BUG/MINOR: session: Fix tcp-request session failure if handshake. 5724 - CLEANUP: .gitignore: Ignore binaries from the contrib directory 5725 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list. 5726 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers() 5727 - BUG/MEDIUM: h2: also arm the h2 timeout when sending 5728 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd" 5729 - CLEANUP: ssl: Remove a duplicated #include 5730 - CLEANUP: cli: Remove a leftover debug message 5731 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage 5732 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc 5733 - BUG/MINOR: force-persist and ignore-persist only apply to backends 5734 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled 5735 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management 5736 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically 5737 - TESTS: Add a testcase for multi-port + multi-server listener issue 5738 - CLEANUP: dns: remove duplicate code in src/dns.c 5739 - BUG/MINOR: seemless reload: Fix crash when an interface is specified. 5740 - BUG/MINOR: cli: Ensure all command outputs end with a LF 5741 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments 5742 - BUILD: ssl: Fix build with OpenSSL without NPN capability 5743 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args 5744 - BUG/MINOR: lua: return bad error messages 5745 - CLEANUP: lua/syntax: lua is a name and not an acronym 5746 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers 5747 - BUG/MINOR: tcp-check: use the server's service port as a fallback 5748 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue 5749 - MINOR: log: stop emitting alerts when it's not possible to write on the socket 5750 - BUILD/BUG: enable -fno-strict-overflow by default 5751 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents 5752 - DOC: log: more than 2 log servers are allowed 5753 - MINOR: hash: add new function hash_crc32c 5754 - MINOR: proxy-v2-options: add crc32c 5755 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum 5756 - REORG: compact "struct server" 5757 - MINOR: samples: add crc32c converter 5758 - BUG/MEDIUM: h2: properly account for DATA padding in flow control 5759 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM 5760 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected 5761 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c 5762 - BUG/MINOR: lua: the function returns anything 5763 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values 5764 - CLEANUP: lua: typo fix in comments 5765 - BUILD/MINOR: fix build when USE_THREAD is not defined 5766 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles 5767 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert 5768 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown" 5769 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available 5770 - BUILD/MINOR: cli: fix a build warning introduced by last commit 5771 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing 5772 - MINOR: h2: always call h2s_detach() in h2_detach() 5773 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy() 5774 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler 5775 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error 5776 - BUILD/MINOR: threads: always export thread_sync_io_handler() 5777 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd" 5778 - MINOR: h2: implement a basic "show_fd" function 5779 - MINOR: cli: report cache indexes in "show fd" 5780 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function 5781 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked 5782 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection 5783 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert. 5784 - BUG/MINOR: email-alert: Set the mailer port during alert initialization 5785 - BUG/MINOR: cache: fix "show cache" output 5786 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks 5787 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check 5788 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk 5789 - BUG/MINOR: spoe: Register the variable to set when an error occurred 5790 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted 5791 - MINOR: spoe: Add metrics in to know time spent in the SPOE 5792 - MINOR: spoe: Add options to store processing times in variables 5793 - MINOR: log: move 'log' keyword parsing in dedicated function 5794 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries 5795 - MINOR: spoe: Add loggers dedicated to the SPOE agent 5796 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section 5797 - MINOR: spoe: use agent's logger to log SPOE messages 5798 - MINOR: spoe: Add counters to log info about SPOE agents 5799 - BUG/MAJOR: cache: always initialize newly created objects 5800 - MINOR: servers: Support alphanumeric characters for the server templates names 5801 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes 5802 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach(). 5803 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails 5804 - MINOR: proxy: Add fe_defbe fetcher 5805 - MINOR: config: Warn if resolvers has no nameservers 5806 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE 5807 - MINOR: cli: Ensure the CLI always outputs an error when it should 5808 - MEDIUM: sample: Extend functionality for field/word converters 5809 - MINOR: export localpeer as an environment variable 5810 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors. 5811 - BUILD: sample: avoid build warning in sample.c 5812 - BUG/CRITICAL: h2: fix incorrect frame length check 5813 - DOC: lua: update the links to the config and Lua API 5814 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid() 5815 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket 5816 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests 5817 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits 5818 - MINOR: h2: detect presence of CONNECT and/or content-length 5819 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads 5820 - BUG/MINOR: spoe: Fix counters update when processing is interrupted 5821 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option 5822 - MEDIUM: cli: Add payload support 5823 - MINOR: map: Add payload support to "add map" 5824 - MINOR: ssl: Add payload support to "set ssl ocsp-response" 5825 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread 5826 - MINOR: sample: Add strcmp sample converter 5827 - MINOR: http: Add support for 421 Misdirected Request 5828 - BUG/MINOR: config: disable http-reuse on TCP proxies 5829 - MINOR: ssl: disable SSL sample fetches when unsupported 5830 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key' 5831 - BUG/MINOR: checks: Fix check->health computation for flapping servers 5832 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads 5833 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data 5834 - MINOR: backend: implement random-based load balancing 5835 - DOC/MINOR: clean up LUA documentation re: servers & array/table. 5836 - MINOR: lua: Add server name & puid to LUA Server class. 5837 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class. 5838 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped 5839 - BUG/MEDIUM: task: Don't free a task that is about to be run. 5840 - MINOR: fd: Make the lockless fd list work with multiple lists. 5841 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads. 5842 - MINOR: pollers: move polled_mask outside of struct fdtab. 5843 - BUG/MINOR: lua: schedule socket task upon lua connect() 5844 - BUG/MINOR: lua: ensure large proxy IDs can be represented 5845 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list 5846 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL 5847 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR 5848 - BUG/MEDIUM: ssl: properly protect SSL cert generation 5849 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments. 5850 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration 5851 - BUG/MEDIUM: spoe: Flags are not encoded in network order 5852 - CLEANUP: spoe: Remove unused variables the agent structure 5853 - DOC: spoe: fix a typo 5854 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags 5855 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags 5856 - DOC: add some description of the pending rework of the buffer structure 5857 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation 5858 - MINOR: lua: Improve error message 5859 - BUG/MEDIUM: cache: don't cache when an Authorization header is present 5860 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA 5861 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure. 5862 - BUG/BUILD: threads: unbreak build without threads 5863 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file 5864 - BUG/MEDIUM: lua/socket: Length required read doesn't work 5865 - MINOR: tasks: Change the task API so that the callback takes 3 arguments. 5866 - MAJOR: tasks: Create a per-thread runqueue. 5867 - MAJOR: tasks: Introduce tasklets. 5868 - MINOR: tasks: Make the number of tasks to run at once configurable. 5869 - MAJOR: applets: Use tasks, instead of rolling our own scheduler. 5870 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters 5871 - MINOR: http: Log warning if (add|set)-header fails 5872 - DOC: management: add the new wrew stats column 5873 - MINOR: stats: also report the failed header rewrites warnings on the stats page 5874 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue. 5875 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task. 5876 - MINOR: task: Also consider the task list size when getting global tasks. 5877 - MINOR: dns: Implement `parse-resolv-conf` directive 5878 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode 5879 - MINOR: task/notification: Is notifications registered ? 5880 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets 5881 - BUG/MAJOR: lua: Dead lock with sockets 5882 - BUG/MEDIUM: lua/socket: Notification error 5883 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock 5884 - BUG/MEDIUM: lua/socket: Buffer error, may segfault 5885 - DOC: contrib/modsecurity: few typo fixes 5886 - DOC: SPOE.txt: fix a typo 5887 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0 5888 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect 5889 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect 5890 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect 5891 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame 5892 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame 5893 - MINOR: task: Fix a compiler warning by adding a cast. 5894 - MINOR: stats: also report the nice and number of calls for applets 5895 - MINOR: applet: assign the same nice value to a new appctx as its owner task 5896 - MINOR: task: Fix compiler warning. 5897 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads. 5898 - MINOR: tasks: Don't define rqueue if we're building without threads. 5899 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload. 5900 - MINOR: lua: Increase debug information 5901 - BUG/MEDIUM: threads: handle signal queue only in thread 0 5902 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing 5903 - BUG/MINOR: signals: ha_sigmask macro for multithreading 5904 - BUG/MAJOR: map: fix a segfault when using http-request set-map 5905 - DOC: regression testing: Add a short starting guide. 5906 - MINOR: tasks: Make sure we correctly init and deinit a tasklet. 5907 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler. 5908 - BUG/MINOR: lua: Segfaults with wrong usage of types. 5909 - BUG/MAJOR: ssl: Random crash with cipherlist capture 5910 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot 5911 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data 5912 - MINOR: tests: First regression testing file. 5913 - MINOR: reg-tests: Add reg-tests/README file. 5914 - MINOR: reg-tests: Add a few regression testing files. 5915 - DOC: Add new REGTEST tag info about reg testing. 5916 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete(). 5917 - MINOR: Some spelling cleanup in the comments. 5918 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit 5919 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit 5920 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS. 5921 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value. 5922 - REGTEST/MINOR: Add levels to reg-tests target. 5923 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table 5924 - BUG/BUILD: threads: unbreak build without threads 5925 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix 5926 - MINOR: stick-tables: make stktable_release() do nothing on NULL 5927 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers 5928 - MINOR: startup: change session/process group settings 5929 - MINOR: systemd: consider exit status 143 as successful 5930 - REGTEST/MINOR: Wrong URI syntax. 5931 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC 5932 - CLEANUP: dns: inacurate comment about prefered IP score 5933 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response 5934 - MINOR: dns: new DNS options to allow/prevent IP address duplication 5935 - REGTEST/MINOR: Unexpected curl URL globling. 5936 - BUG/MINOR: ssl: properly ref-count the tls_keys entries 5937 - MINOR: h2: keep a count of the number of conn_streams attached to the mux 5938 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess 5939 - MINOR: h2: add the mux and demux buffer lengths on "show fd" 5940 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close 5941 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout 5942 - MINOR: tasklet: Set process to NULL. 5943 - MINOR: buffer: implement a new file for low-level buffer manipulation functions 5944 - MINOR: buffer: switch buffer sizes and offsets to size_t 5945 - MINOR: buffer: add a few basic functions for the new API 5946 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add() 5947 - MINOR: buffer: Add b_set_data(). 5948 - MINOR: buffer: introduce b_realign_if_empty() 5949 - MINOR: compression: pass the channel to http_compression_buffer_end() 5950 - MINOR: channel: add a few basic functions for the new buffer API 5951 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign() 5952 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign() 5953 - MEDIUM: channel: make channel_slow_realign() take a swap buffer 5954 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer 5955 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code 5956 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew} 5957 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps() 5958 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc() 5959 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data() 5960 - MINOR: buffer: remove bi_ptr() 5961 - MINOR: buffer: remove bo_ptr() 5962 - MINOR: buffer: remove bo_end() 5963 - MINOR: buffer: remove bi_end() 5964 - MINOR: buffer: remove bo_contig_data() 5965 - MINOR: buffer: merge b{i,o}_contig_space() 5966 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk() 5967 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset 5968 - MINOR: buffer: replace bi_del() and bo_del() with b_del() 5969 - MINOR: buffer: convert most b_ptr() calls to c_ptr() 5970 - MINOR: h1: make h1_measure_trailers() take the byte count in argument 5971 - MINOR: h2: clarify the fact that the send functions are unsigned 5972 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer 5973 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore 5974 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore 5975 - MINOR: h1: make h1_measure_trailers() use an offset and a count 5976 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop 5977 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore 5978 - MINOR: buffer: get rid of b_end() and b_to_end() 5979 - MINOR: buffer: make b_getblk_nc() take const pointers 5980 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes 5981 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument 5982 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument 5983 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count 5984 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count 5985 - MINOR: connection: add a flags argument to rcv_buf() 5986 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET 5987 - MINOR: buffer: get rid of b_ptr() and convert its last users 5988 - MINOR: buffer: use b_room() to determine available space in a buffer 5989 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data() 5990 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty() 5991 - MINOR: buffer: make bo_putchar() use b_tail() 5992 - MINOR: buffer: replace buffer_full() with channel_full() 5993 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace() 5994 - MINOR: buffer: replace buffer_pending() with ci_data() 5995 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn)) 5996 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o) 5997 - MINOR: buffer: use b_orig() to replace most references to b->data 5998 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o. 5999 - MINOR: channel: remove almost all references to buf->i and buf->o 6000 - MINOR: channel: Add co_set_data(). 6001 - MEDIUM: channel: adapt to the new buffer API 6002 - MINOR: checks: adapt to the new buffer API 6003 - MEDIUM: h2: update to the new buffer API 6004 - MINOR: buffer: remove unused bo_add() 6005 - MEDIUM: spoe: use the new buffer API for the SPOE buffer 6006 - MINOR: stats: adapt to the new buffers API 6007 - MINOR: cli: use the new buffer API 6008 - MINOR: cache: use the new buffer API 6009 - MINOR: stream-int: use the new buffer API 6010 - MINOR: stream: use wrappers instead of directly manipulating buffers 6011 - MINOR: backend: use new buffer API 6012 - MEDIUM: http: use wrappers instead of directly manipulating buffers states 6013 - MINOR: filters: convert to the new buffer API 6014 - MINOR: payload: convert to the new buffer API 6015 - MEDIUM: h1: port to new buffer API. 6016 - MINOR: flt_trace: adapt to the new buffer API 6017 - MEDIUM: compression: start to move to the new buffer API 6018 - MINOR: lua: use the wrappers instead of directly manipulating buffer states 6019 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API 6020 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API 6021 - MAJOR: start to change buffer API 6022 - MINOR: buffer: remove the check for output on b_del() 6023 - MINOR: buffer: b_set_data() doesn't truncate output data anymore 6024 - MINOR: buffer: rename the "data" field to "area" 6025 - MEDIUM: buffers: move "output" from struct buffer to struct channel 6026 - MINOR: buffer: replace bi_fast_delete() with b_del() 6027 - MINOR: buffer: replace b{i,o}_put* with b_put* 6028 - MINOR: buffer: add a new file for ist + buffer manipulation functions 6029 - MINOR: checks: use b_putist() instead of b_putstr() 6030 - MINOR: buffers: remove b_putstr() 6031 - CLEANUP: buffer: minor cleanups to buffer.h 6032 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2() 6033 - MINOR: buffer: replace buffer_replace2() with b_rep_blk() 6034 - MINOR: buffer: rename the data length member to '->data' 6035 - MAJOR: buffer: finalize buffer detachment 6036 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct 6037 - MAJOR: chunks: replace struct chunk with struct buffer 6038 - DOC: buffers: document the new buffers API 6039 - DOC: buffers: remove obsolete docs about buffers 6040 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice. 6041 - MINOR: connections/mux: Add a new "subscribe" method. 6042 - MEDIUM: connections/mux: Revamp the send direction. 6043 - MINOR: connection: simplify subscription by adding a registration function 6044 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place 6045 - BUG/MINOR: build: Fix compilation with debug mode enabled 6046 - BUILD: Generate sha256 checksums in publish-release 6047 - MINOR: debug: Add check for CO_FL_WILL_UPDATE 6048 - MINOR: debug: Add checks for conn_stream flags 6049 - MINOR: ist: Add the function isteqi 6050 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier 6051 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling. 6052 - MINOR: buffers: simplify b_contig_space() 6053 - MINOR: buffers: split b_putblk() into __b_putblk() 6054 - MINOR: buffers: add b_xfer() to transfer data between buffers 6055 - DOC: add some design notes about the new layering model 6056 - MINOR: conn_stream: add a new CS_FL_REOS flag 6057 - MINOR: conn_stream: add an rx buffer to the conn_stream 6058 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function 6059 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake() 6060 - MINOR: h2: make each H2 stream support an intermediary input buffer 6061 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer 6062 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer 6063 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf() 6064 - MEDIUM: h2: move headers and data frame decoding to their respective parsers 6065 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible 6066 - MEDIUM: h2: perform a single call to the data layer in demux() 6067 - MEDIUM: h2: don't call data_cb->recv() anymore 6068 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen 6069 - MEDIUM: h2: use the default conn_stream's receive function 6070 - DOC: add more design feedback on the new layering model 6071 - MINOR: h2: add the error code and the max/last stream IDs to "show fd" 6072 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full 6073 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding 6074 - BUG/MINOR: servers: Don't make "server" in a frontend fatal. 6075 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue 6076 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time. 6077 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask 6078 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive. 6079 - MINOR: signal: don't pass the signal number anymore as the wakeup reason 6080 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason 6081 - MINOR: tasks: Add a flag that tells if we're in the global runqueue. 6082 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size. 6083 - MINOR: queue: centralize dequeuing code a bit better 6084 - MEDIUM: queue: make pendconn_free() work on the stream instead 6085 - DOC: queue: document the expected locking model for the server's queue 6086 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid 6087 - MINOR: queue: use a distinct variable for the assigned server and the queue 6088 - MINOR: queue: implement pendconn queue locking functions 6089 - MEDIUM: queue: get rid of the pendconn lock 6090 - MINOR: tasks: Make active_tasks_mask volatile. 6091 - MINOR: tasks: Make global_tasks_mask volatile. 6092 - MINOR: pollers: Add a way to wake a thread sleeping in the poller. 6093 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code. 6094 - BUG/MEDIUM: threads/sync: use sched_yield when available 6095 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0 6096 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever 6097 - BUG/MINOR: config: stick-table is not supported in defaults section 6098 - BUILD/MINOR: threads: unbreak build with threads disabled 6099 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS. 6100 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS 6101 - MINOR: threads: move "nbthread" parsing to hathreads.c 6102 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number 6103 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed 6104 - BUILD/MINOR: compiler: fix offsetof() on older compilers 6105 - SCRIPTS: git-show-backports: add missing quotes to "echo" 6106 - MINOR: threads: add more consistency between certain variables in no-thread case 6107 - MEDIUM: hathreads: implement a more flexible rendez-vous point 6108 - BUG/MEDIUM: cli: make "show fd" thread-safe 6109 61102017/11/26 : 1.9-dev0 6111 61122017/11/26 : 1.8.0 6113 - BUG/MEDIUM: stream: don't automatically forward connect nor close 6114 - BUG/MAJOR: stream: ensure analysers are always called upon close 6115 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set 6116 - MEDIUM: mworker: Add systemd `Type=notify` support 6117 - BUG/MEDIUM: cache: free callback to remove from tree 6118 - CLEANUP: cache: remove unused struct 6119 - MEDIUM: cache: enable the HTTP analysers 6120 - CLEANUP: cache: remove wrong comment 6121 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts 6122 - MINOR: threads/plock: rename local variables in macros to avoid conflicts 6123 - MINOR: threads/atomic: implement pl_mb() in asm on x86 6124 - MINOR: threads/atomic: implement pl_bts() on non-x86 6125 - MINOR: threads/build: atomic: replace the few inlines with macros 6126 - BUILD: threads/plock: fix a build issue on Clang without optimization 6127 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees 6128 - BUILD: compiler: add a new type modifier __maybe_unused 6129 - BUILD: h2: mark some inlined functions "unused" 6130 - BUILD: server: check->desc always exists 6131 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers 6132 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list 6133 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers 6134 - BUG/MEDIUM: h2: always reassemble the Cookie request header field 6135 - BUG/MINOR: systemd: ignore daemon mode 6136 - CONTRIB: spoa_example: allow to compile outside HAProxy. 6137 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist 6138 - CONTRIB: spoa_example: remove last dependencies on type "sample" 6139 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients 6140 - CLEANUP: cache: reorder includes 6141 - MEDIUM: shctx: use unsigned int for len and block_count 6142 - MEDIUM: cache: "show cache" on the cli 6143 - BUG/MEDIUM: cache: use key=0 as a condition for freeing 6144 - BUG/MEDIUM: cache: refcount forbids to free the objects 6145 - BUG/MEDIUM: cache fix cli_kws structure 6146 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks 6147 - BUG/MINOR: ssl: Always start the handshake if we can't send early data. 6148 - MINOR: ssl: Don't disable early data handling if we could not write. 6149 - MINOR: pools: prepare functions to override malloc/free in pools 6150 - MINOR: pools: implement DEBUG_UAF to detect use after free 6151 - BUG/MEDIUM: threads/time: fix time drift correction 6152 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads 6153 - MINOR: sample: Add "thread" sample fetch 6154 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line 6155 - BUG/MINOR: stream: fix tv_request calculation for applets 6156 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it 6157 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock 6158 - MINOR: ssl: Handle reading early data after writing better. 6159 - MINOR: mux: Make sure every string is woken up after the handshake. 6160 - MEDIUM: cache: store sha1 for hashing the cache key 6161 - MINOR: http: implement the "http-request reject" rule 6162 - MINOR: h2: send RST_STREAM before GOAWAY on reject 6163 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close 6164 - MINOR: h2: make use of client-fin timeout after GOAWAY 6165 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2 6166 - MINOR: ssl: Handle early data with BoringSSL 6167 - BUG/MEDIUM: stream: always release the stream-interface on abort 6168 - BUG/MEDIUM: cache: free ressources in chn_end_analyze 6169 - MINOR: cache: move the refcount decrease in the applet release 6170 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines 6171 - MINOR: config: Support a range to specify processes in "cpu-map" parameter 6172 - MINOR: config: Slightly change how parse_process_number works 6173 - MINOR: config: Export parse_process_number and use it wherever it's applicable 6174 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one 6175 - MINOR: config: Add auto-increment feature for cpu-map 6176 - MINOR: config: Support partial ranges in cpu-map directive 6177 - MINOR:: config: Remove thread-map directive 6178 - MINOR: config: Add the threads support in cpu-map directive 6179 - MINOR: config: Add threads support for "process" option on "bind" lines 6180 - MEDIUM: listener: Bind listeners on a thread subset if specified 6181 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif 6182 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning 6183 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list" 6184 - CLEANUP: pools: rename all pool functions and pointers to remove this "2" 6185 - DOC: update the roadmap file with the latest changes merged in 1.8 6186 - DOC: fix mangled version in peers protocol documentation 6187 - DOC: add initial peers protovol v2.0 documentation. 6188 - DOC: mention William as maintainer of the cache and master-worker 6189 - DOC: add Christopher and Emeric as maintainers of the threads 6190 - MINOR: cache: replace a fprint() by an abort() 6191 - MEDIUM: cache: max-age configuration keyword 6192 - DOC: explain HTTP2 timeout behavior 6193 - DOC: cache: configuration and management 6194 - MAJOR: mworker: exits the master on failure 6195 - BUG/MINOR: threads: don't drop "extern" on the lock in include files 6196 - MINOR: task: keep a pointer to the currently running task 6197 - MINOR: task: align the rq and wq locks 6198 - MINOR: fd: cache-align fdtab and fdcache locks 6199 - MINOR: buffers: cache-align buffer_wq_lock 6200 - CLEANUP: server: reorder some fields in struct server to save 40 bytes 6201 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes 6202 - CLEANUP: checks: remove 16 bytes of holes in struct check 6203 - CLEANUP: cache: more efficiently pack the struct cache 6204 - CLEANUP: fd: place the lock at the beginning of struct fdtab 6205 - CLEANUP: pools: align pools on a cache line 6206 - DOC: config: add a few bits about how to configure HTTP/2 6207 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm() 6208 - BUILD: Makefile: reorder object files by size 6209 62102017/11/19 : 1.8-rc4 6211 - BUG/MEDIUM: cache: does not cache if no Content-Length 6212 - BUILD: thread/pipe: fix build without threads 6213 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it 6214 - MINOR: debug/flags: Add missing flags 6215 - MINOR: threads: Use __decl_hathreads to declare locks 6216 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe 6217 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees 6218 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees 6219 - MINOR: ebtree/scope: add a function to find next node from a parent 6220 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent() 6221 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH 6222 - BUG/MEDIUM: cache: use msg->sov to forward header 6223 - MINOR: cache: forward data with headers 6224 - MINOR: cache: disable cache if shctx_row_data_append fail 6225 - BUG/MINOR: threads: tid_bit must be a unsigned long 6226 - CLEANUP: tasks: Remove useless double test on rq_next 6227 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local 6228 - MINOR: tools: add a function to dump a scope-aware tree to a file 6229 - MINOR: tools: improve the DOT dump of the ebtree 6230 - MINOR: tools: emphasize the node being worked on in the tree dump 6231 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion 6232 - DOC: peers: Add a first version of peers protocol v2.1. 6233 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol. 6234 - MINOR: mworker: display an accurate error when the reexec fail 6235 - BUG/MEDIUM: mworker: wait again for signals when execvp fail 6236 - BUG/MEDIUM: mworker: does not deinit anymore 6237 - BUG/MEDIUM: mworker: does not close inherited FD 6238 - MINOR: tests: add a python wrapper to test inherited fd 6239 - BUG/MINOR: Allocate the log buffers before the proxies startup 6240 - MINOR: tasks: Use a bitfield to track tasks activity per-thread 6241 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue 6242 - MINOR: applets: Use a bitfield to track applets activity per-thread 6243 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue 6244 - MEDIUM: applets: Don't process more than 200 active applets at once 6245 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command 6246 - MINOR: SSL: Store the ASN1 representation of client sessions. 6247 - MINOR: ssl: Make sure we don't shutw the connection before the handshake. 6248 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data 6249 62502017/11/11 : 1.8-rc3 6251 - BUILD: use MAXPATHLEN instead of NAME_MAX. 6252 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions 6253 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser 6254 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port" 6255 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK 6256 - CLEANUP: checks: remove return statements in locked functions 6257 - BUG/MINOR: cli: add severity in "set server addr" parser 6258 - CLEANUP: server: get rid of return statements in the CLI parser 6259 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess" 6260 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path 6261 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB 6262 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB 6263 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired() 6264 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set 6265 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener() 6266 - BUG/MEDIUM: threads: don't try to free build option message on exit 6267 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup() 6268 - MINOR: add master-worker in the warning about nbproc 6269 - MINOR: mworker: allow pidfile in mworker + foreground 6270 - MINOR: mworker: write parent pid in the pidfile 6271 - MINOR: mworker: do not store child pid anymore in the pidfile 6272 - MINOR: ebtree: implement the scope-aware functions for eb32 6273 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc 6274 - MINOR: ebtree: update the eb32sc parent node's scope on delete 6275 - MEDIUM: ebtree: only consider the branches matching the scope in lookups 6276 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first() 6277 - MAJOR: task: make use of the scope-aware ebtree functions 6278 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop 6279 - MEDIUM: task: change the construction of the loop in process_runnable_tasks() 6280 - MINOR: threads: use faster locks for the spin locks 6281 - MINOR: tasks: only visit filled task slots after processing them 6282 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage 6283 - BUG/MINOR: dns: Don't try to get the server lock if it's already held. 6284 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback(). 6285 - DOC: Add note about encrypted password CPU usage 6286 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection 6287 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error 6288 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux 6289 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux 6290 - MEDIUM: h2: remove the H2_SS_RESET intermediate state 6291 - BUG/MEDIUM: h2: fix some wrong error codes on connections 6292 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix 6293 - BUILD: enable USE_THREAD for Solaris build. 6294 - BUG/MEDIUM: h2: don't close the connection is there are data left 6295 - MINOR: h2: don't re-enable the connection's task when we're closing 6296 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame 6297 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing 6298 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA 6299 - BUG/MINOR: h2: don't send GOAWAY on failed response 6300 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected. 6301 - BUG/MINOR: comp: fix compilation warning compiling without compression. 6302 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path 6303 - BUG/MAJOR: threads/tasks: fix the scheduler again 6304 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched. 6305 - MINOR: ssl: Handle session resumption with TLS 1.3 6306 - MINOR: ssl: Spell 0x10101000L correctly. 6307 - MINOR: ssl: Handle sending early data to server. 6308 - BUILD: ssl: fix build of backend without ssl 6309 - BUILD: shctx: do not depend on openssl anymore 6310 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits 6311 - BUG/MEDIUM: h2: reject non-3-digit status codes 6312 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up 6313 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match 6314 - BUG/MEDIUM: h2: split the function to send RST_STREAM 6315 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers 6316 - MINOR: tools: don't use unlikely() in hex2i() 6317 - BUG/MEDIUM: h2: support orphaned streams 6318 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release 6319 - CLEANUP: mux: remove the unused "release()" function 6320 - MINOR: cli: make "show fd" report the fd's thread mask 6321 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore 6322 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid 6323 - MEDIUM: http: always reject the "PRI" method 6324 63252017/11/03 : 1.8-rc2 6326 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call 6327 - BUG/MINOR: send-proxy-v2: string size must include ('\0') 6328 - MINOR: mux: Only define pipe functions on linux. 6329 - MINOR: cache: Remove useless test for nonzero. 6330 - MINOR: cache: Don't confuse act_return and act_parse_ret. 6331 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses 6332 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting 6333 - BUG/MAJOR: fix deadlock on healthchecks. 6334 - BUG/MINOR: thread: fix a typo in the debug code 6335 - BUILD: shctx: allow to be built without openssl 6336 - BUG/MEDIUM: cache: don't try to resolve wrong filters 6337 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer 6338 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period. 6339 - BUG/MINOR: stdarg.h inclusion 6340 - BUG/MINOR: dns: fix missing lock protection on server. 6341 - BUG/MINOR: lua: fix missing lock protection on server. 6342 - BUILD: enable USE_THREAD for OpenBSD build. 6343 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake() 6344 - MINOR: thread: report multi-thread support in haproxy -vv 6345 63462017/10/31 : 1.8-rc1 6347 - BUG/MEDIUM: server: Allocate tmptrash before using it. 6348 - CONTRIB: trace: add the possibility to place trace calls in the code 6349 - CONTRIB: trace: try to display the function's return value on exit 6350 - CONTRIB: trace: report the base name only for file names 6351 - BUILD: ssl: support OPENSSL_NO_ASYNC #define 6352 - MINOR: ssl: build with recent BoringSSL library 6353 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1 6354 - BUG/MINOR: cli: restore "set ssl tls-key" command 6355 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command 6356 - IMPORT: sha1: import SHA1 functions 6357 - MINOR: sample: add the sha1 converter 6358 - MINOR: sample: add the hex2i converter 6359 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn 6360 - MINOR: ssl: don't abort after sending 16kB 6361 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM 6362 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted 6363 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw() 6364 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE 6365 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE 6366 - BUG/MINOR: checks: Don't forget to release the connection on error case. 6367 - MINOR: buffer: add the buffer input manipulation functions 6368 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution 6369 - MEDIUM: cfgparse: post section callback 6370 - MEDIUM: cfgparse: post parsing registration 6371 - MINOR: lua: add uuid to the Class Proxy 6372 - MINOR: hlua: Add regex class 6373 - MINOR: http: Mark the 425 code as "Too Early". 6374 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code 6375 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx 6376 - MINOR: ssl: generated certificate is missing in switchctx early callback 6377 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1 6378 - BUILD: Makefile: disable -Wunused-label 6379 - MINOR: ssl/proto_http: Add keywords to take care of early data. 6380 - BUG/MINOR: lua: const attribute of a string is overridden 6381 - MINOR: ssl: Don't abuse ssl_options. 6382 - MINOR: update proxy-protocol-v2 #define 6383 - MINOR: merge ssl_sock_get calls for log and ppv2 6384 - MINOR: add ALPN information to send-proxy-v2 6385 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body 6386 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures 6387 - MEDIUM: lists: list_for_each_entry{_safe}_from functions 6388 - REORG: shctx: move lock functions and struct 6389 - MEDIUM: shctx: allow the use of multiple shctx 6390 - REORG: shctx: move ssl functions to ssl_sock.c 6391 - MEDIUM: shctx: separate ssl and shctx 6392 - MINOR: shctx: rename lock functions 6393 - MINOR: h1: store the status code in the H1 message 6394 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL 6395 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded 6396 - MINOR: action: Add trk_idx inline function 6397 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx 6398 - MINOR: action: Add a function pointer in act_rule struct to check its validity 6399 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_* 6400 - MINOR: action: Add a functions to check http capture rules 6401 - MINOR: action: Factorize checks on rules calling check_ptr if defined 6402 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond 6403 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages 6404 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing 6405 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file 6406 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules 6407 - MINOR: spoe: Move message encoding in its own function 6408 - MINOR: spoe: Add a type to qualify the message list during encoding 6409 - MINOR: spoe: Add a generic function to encode a list of SPOE message 6410 - MEDIUM: spoe/rules: Process "send-spoe-group" action 6411 - BUG/MINOR: dns: Fix CLI keyword declaration 6412 - MAJOR: dns: Refactor the DNS code 6413 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released 6414 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing 6415 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules 6416 - MINOR: standard: Add memvprintf function 6417 - MINOR: log: Save alerts and warnings emitted during HAProxy startup 6418 - MINOR: cli: Add "show startup-logs" command 6419 - MINOR: startup: Extend the scope the MODE_STARTING flag 6420 - MINOR: threads: Prepare makefile to link with pthread 6421 - MINOR: threads: Add THREAD_LOCAL macro 6422 - MINOR: threads: Add atomic-ops and plock includes in import dir 6423 - MEDIUM: threads: Add hathreads header file 6424 - MINOR: threads: Add mechanism to register per-thread init/deinit functions 6425 - MINOR: threads: Add nbthread parameter 6426 - MEDIUM: threads: Adds a set of functions to handle sync-point 6427 - MAJOR: threads: Start threads to experiment multithreading 6428 - MINOR: threads: Define the sync-point inside run_poll_loop 6429 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions 6430 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables 6431 - MEDIUM: threads/time: Many global variables from time.h are now thread-local 6432 - MEDIUM: threads/logs: Make logs thread-safe 6433 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool 6434 - MAJOR: threads/fd: Make fd stuffs thread-safe 6435 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array 6436 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert 6437 - MINOR: threads/fd: Process cached events of FDs depending on the process mask 6438 - MINOR: threads/polling: pollers now handle FDs depending on the process mask 6439 - WIP: SQUASH WITH SYNC POINT 6440 - MAJOR: threads/task: handle multithread on task scheduler 6441 - MEDIUM: threads/signal: Add a lock to make signals thread-safe 6442 - MEDIUM: threads/listeners: Make listeners thread-safe 6443 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars 6444 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe 6445 - MEDIUM: threads/server: Add a lock per server and atomically update server vars 6446 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list 6447 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe 6448 - MEDIUM: threads/stick-tables: handle multithreads on stick tables 6449 - MINOR: threads/sample: Change temp_smp into a thread local variable 6450 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe 6451 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable 6452 - MAJOR: threads/applet: Handle multithreading for applets 6453 - MAJOR: threads/peers: Make peers thread safe 6454 - MAJOR: threads/buffer: Make buffer wait queue thread safe 6455 - MEDIUM: threads/stream: Make streams list thread safe 6456 - MAJOR: threads/ssl: Make SSL part thread-safe 6457 - MEDIUM: threads/queue: Make queues thread-safe 6458 - MAJOR: threads/map: Make acls/maps thread safe 6459 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe 6460 - MEDIUM: thread/vars: Make vars thread-safe 6461 - MEDIUM: threads/filters: Add init/deinit callback per thread 6462 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks 6463 - MEDIUM: threads/compression: Make HTTP compression thread-safe 6464 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread. 6465 - MEDIUM: threads/lua: Add locks around the Lua execution parts. 6466 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me 6467 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread. 6468 - MEDIUM: threads/xref: Convert xref function to a thread safe model 6469 - MEDIUM: threads/tasks: Add lock around notifications 6470 - MEDIUM: thread/spoe: Make the SPOE thread-safe 6471 - MEDIUM: thread/dns: Make DNS thread-safe 6472 - MINOR: threads: Add thread-map config parameter in the global section 6473 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks 6474 - MINOR: threads/checks: Set the task process_mask when a check is executed 6475 - MINOR: threads/mailers: Add a lock to protect queues of email alerts 6476 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency 6477 - MINOR: threads: Don't start when device a detection module is used 6478 - BUG/MEDIUM: threads: Run the poll loop on the main thread too 6479 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there 6480 - MAJOR: threads: Offically enable the threads support in HAProxy 6481 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters. 6482 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer 6483 - BUILD: stick-tables: silence an uninitialized variable warning 6484 - BUG/MINOR: dns: Fix SRV records with the new thread code. 6485 - MINOR: ssl: Remove the global allow-0rtt option. 6486 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit 6487 - CLEANUP: threads: rename process_mask to thread_mask 6488 - MINOR: h1: add a function to measure the trailers length 6489 - MINOR: threads: add a portable barrier for threads and non-threads 6490 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes 6491 - BUG/MEDIUM: threads: Initialize the sync-point 6492 - MEDIUM: connection: start to introduce a mux layer between xprt and data 6493 - MINOR: connection: implement alpn registration of muxes 6494 - MINOR: mux: register the pass-through mux for any ALPN string 6495 - MEDIUM: session: use the ALPN token and proxy mode to select the mux 6496 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major) 6497 - MINOR: connection: introduce conn_stream 6498 - MINOR: mux: add more methods to mux_ops 6499 - MINOR: connection: introduce the conn_stream manipulation functions 6500 - MINOR: mux_pt: implement remaining mux_ops methods 6501 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream. 6502 - MINOR: connection: make conn_stream users also check for per-stream error flag 6503 - MINOR: conn_stream: new shutr/w status flags 6504 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode 6505 - MEDIUM: connection: make conn_sock_shutw() aware of lingering 6506 - MINOR: connection: add cs_close() to close a conn_stream 6507 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection 6508 - MEDIUM: connection: replace conn_full_close() with cs_close() 6509 - MEDIUM: connection: make mux->detach() release the connection 6510 - MEDIUM: stream: do not forcefully close the client connection anymore 6511 - MEDIUM: checks: exclusively use cs_destroy() to release a connection 6512 - MEDIUM: connection: add a destroy callback 6513 - MINOR: session: release the listener with the session, not the stream 6514 - MEDIUM: session: make use of the connection's destroy callback 6515 - CONTRIB: hpack: implement a reverse huffman table generator for hpack 6516 - MINOR: hpack: implement the HPACK Huffman table decoder 6517 - MINOR: hpack: implement the header tables management 6518 - MINOR: hpack: implement the decoder 6519 - MEDIUM: hpack: implement basic hpack encoding 6520 - MINOR: h2: centralize all HTTP/2 protocol elements and constants 6521 - MINOR: h2: create a very minimalistic h2 mux 6522 - MINOR: h2: expose tune.h2.header-table-size to configure the table size 6523 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size 6524 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams 6525 - MINOR: h2: create the h2c struct and allocate its pool 6526 - MINOR: h2: create the h2s struct and the associated pool 6527 - MINOR: h2: handle two extra stream states for errors 6528 - MINOR: h2: add a frame header descriptor for incoming frames 6529 - MEDIUM: h2: allocate and release the h2c context on connection init/end 6530 - MEDIUM: h2: implement basic recv/send/wake functions 6531 - MEDIUM: h2: dynamically allocate the demux buffer on Rx 6532 - MEDIUM: h2: implement the mux buffer allocator 6533 - MINOR: h2: add the connection and stream flags listing the causes for blocking 6534 - MINOR: h2: add function h2s_id() to report a stream's ID 6535 - MINOR: h2: small function to know when the mux is busy 6536 - MINOR: h2: new function h2c_error to mark an error on the connection 6537 - MINOR: h2: new function h2s_error() to mark an error on a stream 6538 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame 6539 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header 6540 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer 6541 - MINOR: h2: add stream lookup function based on the stream ID 6542 - MINOR: h2: create dummy idle and closed streams 6543 - MINOR: h2: add the function to create a new stream 6544 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability 6545 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling 6546 - MINOR: h2: also terminate the connection on shutr 6547 - MEDIUM: h2: properly consider all conditions for end of connection 6548 - MEDIUM: h2: wake the connection up for send on pending streams 6549 - MEDIUM: h2: start to implement the frames processing loop 6550 - MINOR: h2: add a function to send a GOAWAY error frame 6551 - MINOR: h2: match the H2 connection preface on init 6552 - MEDIUM: h2: enable connection polling for send when a cs wants to emit 6553 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full 6554 - MEDIUM: h2: process streams pending for sending 6555 - MINOR: h2: send a real SETTINGS frame based on the configuration 6556 - MEDIUM: h2: detect the presence of the first settings frame 6557 - MINOR: h2: create a stream parser for the demuxer 6558 - MINOR: h2: implement PING frames 6559 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings 6560 - MINOR: h2: lookup the stream during demuxing 6561 - MEDIUM: h2: honor WINDOW_UPDATE frames 6562 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames 6563 - MINOR: h2: handle CONTINUATION frames 6564 - MEDIUM: h2: partial implementation of h2_detach() 6565 - MEDIUM: h2: unblock a connection when its current stream detaches 6566 - MEDIUM: h2: basic processing of HEADERS frame 6567 - MEDIUM: h2: don't use trash to decode headers! 6568 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response 6569 - MEDIUM: h2: send the H1 response body as DATA frames 6570 - MEDIUM: h2: skip the response trailers if any 6571 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response 6572 - MEDIUM: h2: send WINDOW_UPDATE frames for connection 6573 - MEDIUM: h2: handle request body in DATA frames 6574 - MINOR: h2: handle RST_STREAM frames 6575 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr 6576 - MINOR: h2: use a common function to signal some and all streams. 6577 - MEDIUM: h2: handle GOAWAY frames 6578 - MINOR: h2: centralize the check for the idle streams 6579 - MINOR: h2: centralize the check for the half-closed(remote) streams 6580 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY 6581 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client 6582 - MEDIUM: h2: perform a graceful shutdown on "Connection: close" 6583 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response 6584 - MEDIUM: h2: apply a timeout to h2 connections 6585 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection 6586 - MEDIUM: shctx: forbid shctx to read more than expected 6587 - MEDIUM: cache: configuration parsing and initialization 6588 - MEDIUM: cache: store objects in cache 6589 - MEDIUM: cache: deliver objects from cache 6590 65912017/10/22 : 1.8-dev3 6592 - REORG: ssl: move defines and methodVersions table upper 6593 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table 6594 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list 6595 - MEDIUM: ssl: disable SSLv3 per default for bind 6596 - BUG/MAJOR: ssl: fix segfault on connection close using async engines. 6597 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine 6598 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler 6599 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros 6600 - BUG/MEDIUM: build without openssl broken 6601 - BUG/MINOR: warning: need_resend may be used uninitialized 6602 - BUG/MEDIUM: misplaced exit and wrong exit code 6603 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04 6604 - BUILD: scripts: make publish-release support bare repositories 6605 - BUILD: scripts: add an automatic mode for publish-release 6606 - BUILD: scripts: add a "quiet" mode to publish-release 6607 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer 6608 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers 6609 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO. 6610 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map 6611 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0 6612 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING 6613 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue. 6614 - BUG/MAJOR: server: Segfault after parsing server state file. 6615 - BUG/MEDIUM: unix: never unlink a unix socket from the file system 6616 - scripts: create-release pass -n to tail 6617 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity 6618 - BUG/MEDIUM: fix segfault when no argument to -x option 6619 - MINOR: warning on multiple -x 6620 - MINOR: mworker: don't copy -x argument anymore in copy_argv() 6621 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master 6622 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing. 6623 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767 6624 - BUG/MINOR: log: pin the front connection when front ip/ports are logged 6625 - DOC: fix references to the section about the unix socket 6626 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue 6627 - MAJOR: task: task scheduler rework. 6628 - MINOR: task/stream: tasks related to a stream must be init by the caller. 6629 - MINOR: queue: Change pendconn_get_next_strm into private function 6630 - MINOR: backends: Change get_server_sh/get_server_uh into private function 6631 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions 6632 - MEDIUM: stream: make stream_new() always set the target and analysers 6633 - MINOR: frontend: initialize HTTP layer after the debugging code 6634 - MINOR: connection: add a .get_alpn() method to xprt_ops 6635 - MINOR: ssl: add a get_alpn() method to ssl_sock 6636 - MINOR: frontend: retrieve the ALPN name when available 6637 - MINOR: frontend: report the connection's ALPN in the debug output 6638 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL 6639 - MINOR: connection: send data before receiving 6640 - MAJOR: applet: applet scheduler rework. 6641 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections 6642 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL. 6643 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli. 6644 - BUG/MAJOR: compression: Be sure to release the compression state in all cases 6645 - MINOR: compression: Use a memory pool to allocate compression states 6646 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded. 6647 - DOC: fix references to the section about time format. 6648 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance. 6649 - BUG/MAJOR: http: fix buffer overflow on loguri buffer. 6650 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections 6651 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel 6652 - BUG/MINOR: http: Don't reset the transaction if there are still data to send 6653 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels 6654 - MINOR: peers: Add additional information to stick-table definition messages. 6655 - BUG/MINOR: http: properly handle all 1xx informational responses 6656 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer 6657 - BUG/MINOR: peers: peer synchronization issue (with several peers sections). 6658 - CLEANUP: hdr_idx: make some function arguments const where possible 6659 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x". 6660 - BUG/MINOR: lua: In error case, the safe mode is not removed 6661 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode 6662 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted 6663 - BUG/MEDIUM: lua: bad memory access 6664 - BUG/MINOR: Lua: variable already initialized 6665 - DOC: update CONTRIBUTING regarding optional parts and message format 6666 - DOC: update the list of OpenSSL versions in the README 6667 - BUG/MINOR: http: Set the response error state in http_sync_res_state 6668 - MINOR: http: Reorder/rewrite checks in http_resync_states 6669 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags 6670 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined 6671 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions 6672 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states 6673 - BUG/MINOR: contrib/modsecurity: BSD build fix 6674 - BUG/MINOR: contrib/mod_defender: build fix 6675 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3 6676 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy 6677 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_* 6678 - MINOR: tools: add a portable timegm() alternative 6679 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10 6680 - DOC: Updated 51Degrees git URL to point to a stable version. 6681 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state 6682 - MINOR: memory: remove macros 6683 - BUG/MINOR: lua: Fix Server.get_addr() port values 6684 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr() 6685 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup 6686 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw 6687 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known 6688 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them 6689 - MINOR: task: always preinitialize the task's timeout in task_init() 6690 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new() 6691 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler 6692 - MINOR: lua: Add proxy as member of proxy object. 6693 - DOC: lua: Proxy class doc update 6694 - MINOR: lua: Add lists of frontends and backends 6695 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification 6696 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost 6697 - MINOR: ssl: add a new error codes for wrong server certificates 6698 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check 6699 - MINOR: ssl: add "no-ca-names" parameter for bind 6700 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions. 6701 - DOC: fix alphabetical order of "show commands" in management.txt 6702 - MINOR: listener: add a function to return a listener's state as a string 6703 - MINOR: cli: add a new "show fd" command 6704 - BUG/MEDIUM: ssl: Fix regression about certificates generation 6705 - MINOR: Add server port field to server state file. 6706 - MINOR: ssl: allow to start without certificate if strict-sni is set 6707 - MINOR: dns: Cache previous DNS answers. 6708 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ. 6709 - Add a few functions to do unaligned access. 6710 - MINOR: dns: Handle SRV records. 6711 - MINOR: check: Fix checks when using SRV records. 6712 - MINOR: doc: Document SRV label usage. 6713 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd" 6714 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2 6715 - BUILD/MINOR: build without openssl still broken 6716 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin 6717 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit() 6718 - MINOR: init: Fix CPU affinity setting on FreeBSD. 6719 - MINOR: dns: Update analysis of TRUNCATED response for SRV records 6720 - MINOR: dns: update record dname matching for SRV query types 6721 - MINOR: dns: update dns response buffer reading pointer due to SRV record 6722 - MINOR: dns: duplicate entries in resolution wait queue for SRV records 6723 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records 6724 - MINOR: dns: ability to use a SRV resolution for multiple backends 6725 - MINOR: dns: enable caching of responses for server set by a SRV record 6726 - MINOR: dns: new dns record type (RTYPE) for OPT 6727 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable 6728 - MINOR: dns: default "hold obsolete" timeout set to 0 6729 - MINOR: chunks: add chunk_memcpy() and chunk_memcat() 6730 - MINOR: session: add a streams field to the session struct 6731 - MINOR: stream: link the stream to its session 6732 - MEDIUM: session: do not free a session until no stream references it 6733 - MINOR: ist: implement very simple indirect strings 6734 - TESTS: ist: add a test file for the functions 6735 - MINOR: http: export some of the HTTP parser macros 6736 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer(). 6737 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status 6738 - MINOR: dns: Maximum DNS udp payload set to 8192 6739 - MINOR: dns: automatic reduction of DNS accpeted payload size 6740 - MINOR: dns: make SRV record processing more verbose 6741 - CLEANUP: dns: remove duplicated code in dns_resolve_recv() 6742 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response() 6743 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU 6744 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow 6745 - BUG/MAJOR: lua: fix the impact of the scheduler changes again 6746 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes 6747 - MINOR: lua: properly process the contents of the content-length field 6748 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service 6749 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet 6750 - OPTIM: lua: don't add "Connection: close" on the response 6751 - REORG/MEDIUM: connection: introduce the notion of connection handle 6752 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag 6753 - MEDIUM: connection: get rid of data->init() which was not for data 6754 - MEDIUM: stream: make stream_new() allocate its own task 6755 - CLEANUP: listener: remove the unused handler field 6756 - MEDIUM: session: add a pointer to a struct task in the session 6757 - MINOR: stream: provide a new stream creation function for connections 6758 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH 6759 - CLEANUP: connection: remove the unused conn_sock_shutw_pending() 6760 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH 6761 - DOC: add CLI info on privilege levels 6762 - DOC: Refer to Mozilla TLS info / config generator 6763 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf 6764 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode 6765 - DOC: Add note about "* " prefix in CSV stats 6766 - CLEANUP: memory: Remove unused function pool_destroy 6767 - MINOR: listeners: Change listener_full and limit_listener into private functions 6768 - MINOR: listeners: Change enable_listener and disable_listener into private functions 6769 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed 6770 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab 6771 - MINOR: backends: Make get_server_* functions explicitly static 6772 - MINOR: applet: Check applets_active_queue before processing applets queue 6773 - MINOR: chunks: Use dedicated function to init/deinit trash buffers 6774 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked 6775 - MINOR: logs: Use dedicated function to init/deinit log buffers 6776 - MINOR: logs: Realloc log buffers only after the config is parsed and checked 6777 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function 6778 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer 6779 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header 6780 - MINOR: fd: Add fd_active function 6781 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions 6782 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers 6783 - MINOR: freq_ctr: Return the new value after an update 6784 - MEDIUM: check: server states and weight propagation re-work 6785 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR 6786 - MINOR: fd: Add fd_update_events function 6787 - MINOR: polling: Use fd_update_events to update events seen for a fd 6788 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file 6789 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file" 6790 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use 6791 - BUG/MEDIUM: http: Close streams for connections closed before a redirect 6792 - BUG/MINOR: Lua: The socket may be destroyed when we try to access. 6793 - MINOR: xref: Add a new xref system 6794 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua 6795 - MINOR: tasks: Move Lua notification from Lua to tasks 6796 - MINOR: net_helper: Inline functions meant to be inlined. 6797 - MINOR: cli: add socket commands and config to prepend informational messages with severity 6798 - MINOR: add severity information to cli feedback messages 6799 - BUILD: Makefile: add a function to detect support by the compiler of certain options 6800 - BUILD: Makefile: shut certain gcc/clang stupid warnings 6801 - BUILD: Makefile: improve detection of support for compiler warnings 6802 - MINOR: peers: don't reference the incoming listener on outgoing connections 6803 - MINOR: frontend: don't retrieve ALPN on the critical path 6804 - MINOR: protocols: always pass a "port" argument to the listener creation 6805 - MINOR: protocols: register the ->add function and stop calling them directly 6806 - MINOR: unix: remove the now unused proto_uxst.h file 6807 - MINOR: listeners: new function create_listeners 6808 - MINOR: listeners: make listeners count consistent with reality 6809 - MEDIUM: session: take care of incrementing/decrementing jobs 6810 - MINOR: listener: new function listener_release 6811 - MINOR: session: small cleanup of conn_complete_session() 6812 - MEDIUM: session: factor out duplicated code for conn_complete_session 6813 - MEDIUM: session: count the frontend's connections at a single place 6814 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo 6815 - BUG/MINOR: compression: Check response headers before http-response rules eval 6816 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed 6817 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb 6818 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl 6819 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return 6820 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return 6821 - MINOR: tools: make my_htonll() more efficient on x86_64 6822 - MINOR: buffer: add b_del() to delete a number of characters 6823 - MINOR: buffer: add b_end() and b_to_end() 6824 - MINOR: net_helper: add functions to read from vectors 6825 - MINOR: net_helper: add write functions 6826 - MINOR: net_helper: add 64-bit read/write functions 6827 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags 6828 - MINOR: ist: add a macro to ease const array initialization 6829 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server 6830 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2) 6831 - BUG/MINOR: log: fixing small memory leak in error code path. 6832 - BUG/MINOR: contrib/halog: fixing small memory leak 6833 - BUG/MEDIUM: tcp/http: set-dst-port action broken 6834 - CLEANUUP: checks: don't set conn->handle.fd to -1 6835 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O 6836 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer 6837 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers! 6838 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument 6839 - MINOR: checks: make chk_report_conn_err() take a check, not a connection 6840 - CLEANUP: checks: remove misleading comments and statuses for external process 6841 - CLEANUP: checks: don't report report the fork() error twice 6842 - CLEANUP: checks: do not allocate a connection for process checks 6843 - TESTS: checks: add a simple test config for external checks 6844 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment 6845 - TESTS: checks: add a simple test config for tcp-checks 6846 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection 6847 - MINOR: checks: don't create then kill a dummy connection before tcp-checks 6848 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection 6849 - MEDIUM: checks: do not allocate a permanent connection anymore 6850 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs 6851 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed 6852 - BUG/MAJOR: stream-int: don't re-arm recv if send fails 6853 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12 6854 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12 6855 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files. 6856 - MINOR: compiler: restore the likely() wrapper for gcc 5.x 6857 - MINOR: session: remove the list of streams from struct session 6858 - DOC: fix some typos 6859 - MINOR: server: add the srv_queue() sample fetch method 6860 - MINOR: payload: add new sample fetch functions to process distcc protocol 6861 - MAJOR: servers: propagate server status changes asynchronously. 6862 - BUG/MEDIUM: ssl: fix OCSP expiry calculation 6863 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE 6864 - MINOR: server: Handle weight increase in consistent hash. 6865 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks. 6866 - BUG/MINOR: tools: fix my_htonll() on x86_64 6867 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters(). 6868 - BUG/MAJOR: lua: scheduled task is freezing. 6869 - MINOR: buffer: add bo_del() to delete a number of characters from output 6870 - MINOR: buffer: add a function to match against string patterns 6871 - MINOR: buffer: add two functions to inject data into buffers 6872 - MINOR: buffer: add buffer_space_wraps() 6873 - REORG: channel: finally rename the last bi_* / bo_* functions 6874 - MINOR: buffer: add bo_getblk() and bo_getblk_nc() 6875 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents 6876 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions 6877 - MINOR: ist: add ist0() to add a trailing zero to a string. 6878 - BUG/MEDIUM: log: check result details truncated. 6879 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer 6880 - REORG: http: move some very http1-specific parts to h1.{c,h} 6881 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h} 6882 - REORG: http: move the HTTP/1 header block parser to h1.c 6883 - MEDIUM: http: make the chunk size parser only depend on the buffer 6884 - MEDIUM: http: make the chunk crlf parser only depend on the buffer 6885 - MINOR: h1: add struct h1m for basic HTTP/1 messages 6886 - MINOR: http: add very simple header management based on double strings 6887 - MEDIUM: h1: reimplement the http/1 response parser for the gateway 6888 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_* 6889 - MEDIUM: connection: make conn_sock_shutw() aware of lingering 6890 - MINOR: connection: ensure conn_ctrl_close() also resets the fd 6891 - MINOR: connection: add conn_stop_tracking() to disable tracking 6892 - MINOR: tcp: use conn_full_close() instead of conn_force_close() 6893 - MINOR: unix: use conn_full_close() instead of conn_force_close() 6894 - MINOR: checks: use conn_full_close() instead of conn_force_close() 6895 - MINOR: session: use conn_full_close() instead of conn_force_close() 6896 - MINOR: stream: use conn_full_close() instead of conn_force_close() 6897 - MINOR: stream: use conn_full_close() instead of conn_force_close() 6898 - MINOR: backend: use conn_full_close() instead of conn_force_close() 6899 - MINOR: stream-int: use conn_full_close() instead of conn_force_close() 6900 - MINOR: connection: remove conn_force_close() 6901 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct 6902 69032017/06/02 : 1.8-dev2 6904 - CLEANUP: server: moving netinet/tcp.h inclusion 6905 - DOC: changed "block"(deprecated) examples to http-request deny 6906 - DOC: add few comments to examples. 6907 - DOC: update sample code for PROXY protocol 6908 - DOC: mention lighttpd 1.4.46 implements PROXY 6909 - MINOR server: Restrict dynamic cookie check to the same proxy. 6910 - DOC: stick-table is available in frontend sections 6911 - BUG/MINOR: server : no transparent proxy for DragonflyBSD 6912 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header() 6913 - BUILD/MINOR: tools: fix build warning in debug_hexdump() 6914 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets. 6915 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character 6916 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation 6917 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses 6918 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error 6919 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr() 6920 - BUG/MEDIUM: servers: unbreak server weight propagation 6921 - MINOR: lua: ensure the memory allocator is used all the time 6922 - MINOR: cli: Add a command to send listening sockets. 6923 - MINOR: global: Add an option to get the old listening sockets. 6924 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc. 6925 - MINOR: doc: document the -x flag 6926 - MINOR: proxy: Don't close FDs if not our proxy. 6927 - MINOR: socket transfer: Set a timeout on the socket. 6928 - MINOR: systemd wrapper: add support for passing the -x option. 6929 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing. 6930 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting. 6931 - CLEANUP: logs: typo: simgle => single 6932 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr() 6933 - MEDIUM: config: don't check config validity when there are fatal errors 6934 - BUG/MAJOR: Use -fwrapv. 6935 - BUG/MINOR: server: don't use "proxy" when px is really meant. 6936 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed 6937 - BUG/MINOR: server: missing default server 'resolvers' setting duplication. 6938 - MINOR: server: Extract the code responsible of copying default-server settings. 6939 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing. 6940 - MINOR: server: Add 'server-template' new keyword supported in backend sections. 6941 - MINOR: server: Add server_template_init() function to initialize servers from a templates. 6942 - DOC: Add documentation for new "server-template" keyword. 6943 - DOC: add layer 4 links/cross reference to "block" keyword. 6944 - DOC: errloc/errorloc302/errorloc303 missing status codes. 6945 - BUG/MEDIUM: lua: memory leak 6946 - CLEANUP: lua: remove test 6947 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances 6948 - BUG/MINOR: change header-declared function to static inline 6949 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common 6950 - MINOR: Add binary encoding request header sample fetch 6951 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers 6952 - MINOR: Add ModSecurity wrapper as contrib 6953 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1. 6954 - DOC: update RFC references 6955 - CONTRIB: tcploop: add action "X" to execute a command 6956 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket. 6957 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD 6958 - BUG/MINOR: checks: don't send proxy protocol with agent checks 6959 - MINOR: ssl: add prefer-client-ciphers 6960 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server. 6961 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx 6962 - MEDIUM: ssl: calculate the real min/max TLS version and find holes 6963 - MINOR: ssl: support TLSv1.3 for bind and server 6964 - MINOR: ssl: show methods supported by openssl 6965 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server 6966 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility. 6967 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option 6968 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems). 6969 - MINOR: sample: Add b64dec sample converter 6970 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything 6971 - MINOR: cli: add ACCESS_LVL_MASK to store the access level 6972 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs 6973 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound 6974 - MEDIUM: ssl: add basic support for OpenSSL crypto engine 6975 - MAJOR: ssl: add openssl async mode support 6976 - MEDIUM: ssl: handle multiple async engines 6977 - MINOR: boringssl: basic support for OCSP Stapling 6978 - MEDIUM: mworker: replace systemd mode by master worker mode 6979 - MEDIUM: mworker: handle reload and signals 6980 - MEDIUM: mworker: wait mode on reload failure 6981 - MEDIUM: mworker: try to guess the next stats socket to use with -x 6982 - MEDIUM: mworker: exit-on-failure option 6983 - MEDIUM: mworker: workers exit when the master leaves 6984 - DOC: add documentation for the master-worker mode 6985 - MEDIUM: systemd: Type=forking in unit file 6986 - MAJOR: systemd-wrapper: get rid of the wrapper 6987 - MINOR: log: Add logurilen tunable. 6988 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution 6989 - MINOR: dns: smallest DNS fqdn size 6990 - MINOR: dns: functions to manage memory for a DNS resolution structure 6991 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution() 6992 - REORG: dns: dns_option structure, storage of hostname_dn 6993 - MINOR: dns: new snr_check_ip_callback function 6994 - MAJOR: dns: save a copy of the DNS response in struct resolution 6995 - MINOR: dns: implement a LRU cache for DNS resolutions 6996 - MINOR: dns: make 'ancount' field to match the number of saved records 6997 - MINOR: dns: introduce roundrobin into the internal cache (WIP) 6998 - MAJOR/REORG: dns: DNS resolution task and requester queues 6999 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE 7000 - MINOR: Add Mod Defender integration as contrib 7001 - CLEANUP: str2mask return code comment: non-zero -> zero. 7002 - MINOR: tools: make debug_hexdump() use a const char for the string 7003 - MINOR: tools: make debug_hexdump() take a string prefix 7004 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA 7005 70062017/04/03 : 1.8-dev1 7007 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos 7008 - BUG/MINOR: stats: make field_str() return an empty string on NULL 7009 - DOC: Spelling fixes 7010 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used 7011 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn 7012 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER 7013 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers 7014 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode 7015 - BUG/MAJOR: stream: fix session abort on resource shortage 7016 - OPTIM: stream-int: don't disable polling anymore on DONT_READ 7017 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI 7018 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys" 7019 - DOC: Fix map table's format 7020 - DOC: Added 51Degrees conv and fetch functions to documentation. 7021 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect 7022 - DOC: mention that req_tot is for both frontends and backends 7023 - BUG/MEDIUM: variables: some variable name can hide another ones 7024 - MINOR: lua: Allow argument for actions 7025 - BUILD: rearrange target files by build time 7026 - CLEANUP: hlua: just indent functions 7027 - MINOR: lua: give HAProxy variable access to the applets 7028 - BUG/MINOR: stats: fix be/sessions/max output in html stats 7029 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id 7030 - DOC: lua: Documentation about some entry missing 7031 - DOC: lua: Add documentation about variable manipulation from applet 7032 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set 7033 - DOC: Add undocumented argument of the trace filter 7034 - DOC: Fix some typo in SPOE documentation 7035 - MINOR: cli: Remove useless call to bi_putchk 7036 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full 7037 - MINOR: applet: Count number of (active) applets 7038 - MINOR: task: Rename run_queue and run_queue_cur counters 7039 - BUG/MEDIUM: stream: Save unprocessed events for a stream 7040 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled 7041 - BUILD/MEDIUM: Fixing the build using LibreSSL 7042 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2) 7043 - SCRIPTS: git-show-backports: fix a harmless typo 7044 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message 7045 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW 7046 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context 7047 - CLEANUP: applet/table: add an "action" entry in ->table context 7048 - CLEANUP: applet: remove the now unused appctx->private field 7049 - DOC: lua: documentation about time parser functions 7050 - DOC: lua: improve links 7051 - DOC: lua: section declared twice 7052 - MEDIUM: cli: 'show cli sockets' list the CLI sockets 7053 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes 7054 - BUG/MINOR: cli: "show cli sockets" would always report process 64 7055 - CLEANUP: lua: rename one of the lua appctx union 7056 - BUG/MINOR: lua/cli: bad error message 7057 - MEDIUM: lua: use memory pool for hlua struct in applets 7058 - MINOR: lua/signals: Remove Lua part from signals. 7059 - DOC: cli: show cli sockets 7060 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser 7061 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function 7062 - CLEANUP: applet: group all CLI contexts together 7063 - CLEANUP: stats: move a misplaced stats context initialization 7064 - MINOR: cli: add two general purpose pointers and integers in the CLI struct 7065 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union 7066 - MINOR: appctx/cli: remove the env entry from the appctx union 7067 - MINOR: appctx/cli: remove the "be" entry from the appctx union 7068 - MINOR: appctx/cli: remove the "dns" entry from the appctx union 7069 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union 7070 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union 7071 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers 7072 - MINOR/DOC: lua: just precise one thing 7073 - DOC: fix small typo in fe_id (backend instead of frontend) 7074 - BUG/MINOR: Fix the sending function in Lua's cosocket 7075 - BUG/MINOR: lua: memory leak executing tasks 7076 - BUG/MINOR: lua: bad return code 7077 - BUG/MINOR: lua: memleak when Lua/cli fails 7078 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools 7079 - CLEANUP: haproxy: statify unexported functions 7080 - MINOR: haproxy: add a registration for build options 7081 - CLEANUP: wurfl: use the build options list to report it 7082 - CLEANUP: 51d: use the build options list to report it 7083 - CLEANUP: da: use the build options list to report it 7084 - CLEANUP: namespaces: use the build options list to report it 7085 - CLEANUP: tcp: use the build options list to report transparent modes 7086 - CLEANUP: lua: use the build options list to report it 7087 - CLEANUP: regex: use the build options list to report the regex type 7088 - CLEANUP: ssl: use the build options list to report the SSL details 7089 - CLEANUP: compression: use the build options list to report the algos 7090 - CLEANUP: auth: use the build options list to report its support 7091 - MINOR: haproxy: add a registration for post-check functions 7092 - CLEANUP: checks: make use of the post-init registration to start checks 7093 - CLEANUP: filters: use the function registration to initialize all proxies 7094 - CLEANUP: wurfl: make use of the late init registration 7095 - CLEANUP: 51d: make use of the late init registration 7096 - CLEANUP: da: make use of the late init registration code 7097 - MINOR: haproxy: add a registration for post-deinit functions 7098 - CLEANUP: wurfl: register the deinit function via the dedicated list 7099 - CLEANUP: 51d: register the deinitialization function 7100 - CLEANUP: da: register the deinitialization function 7101 - CLEANUP: wurfl: move global settings out of the global section 7102 - CLEANUP: 51d: move global settings out of the global section 7103 - CLEANUP: da: move global settings out of the global section 7104 - MINOR: cfgparse: add two new functions to check arguments count 7105 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock 7106 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock 7107 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock 7108 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock 7109 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock 7110 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c 7111 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake 7112 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs 7113 - BUG/MINOR: stats: fix be/sessions/current out in typed stats 7114 - MINOR: tcp-rules: check that the listener exists before updating its counters 7115 - MEDIUM: spoe: don't create a dummy listener for outgoing connections 7116 - MINOR: listener: move the transport layer pointer to the bind_conf 7117 - MEDIUM: move listener->frontend to bind_conf->frontend 7118 - MEDIUM: ssl: remote the proxy argument from most functions 7119 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops 7120 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf() 7121 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops 7122 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf() 7123 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL 7124 - MINOR: connection: add a minimal transport layer registration system 7125 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock 7126 - CLEANUP: connection: unexport raw_sock and ssl_sock 7127 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops 7128 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv() 7129 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback 7130 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c 7131 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled 7132 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes 7133 - BUG/MINOR: systemd: potential zombie processes 7134 - DOC: Add timings events schemas 7135 - BUILD: lua: build failed on FreeBSD. 7136 - MINOR: samples: add xx-hash functions 7137 - MEDIUM: regex: pcre2 support 7138 - BUG/MINOR: option prefer-last-server must be ignored in some case 7139 - MINOR: stats: Support "select all" for backend actions 7140 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0 7141 - BUG/MAJOR: channel: Fix the definition order of channel analyzers 7142 - BUG/MINOR: http: report real parser state in error captures 7143 - BUILD: scripts: automatically update the branch in version.h when releasing 7144 - MINOR: tools: add a generic hexdump function for debugging 7145 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests 7146 - MINOR: http: custom status reason. 7147 - MINOR: connection: add sample fetch "fc_rcvd_proxy" 7148 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options 7149 - BUG/MINOR: tools: fix off-by-one in port size check 7150 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family 7151 - MEDIUM: server: split the address and the port into two different fields 7152 - MINOR: tools: make str2sa_range() return the port in a separate argument 7153 - MINOR: server: take the destination port from the port field, not the addr 7154 - MEDIUM: server: disable protocol validations when the server doesn't resolve 7155 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0 7156 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage 7157 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL 7158 - MINOR: Use "500 Internal Server Error" for 500 error/status code message. 7159 - MINOR: proto_http.c 502 error txt typo. 7160 - DOC: add deprecation notice to "block" 7161 - MINOR: compression: fix -vv output without zlib/slz 7162 - BUG/MINOR: Reset errno variable before calling strtol(3) 7163 - MINOR: ssl: don't show prefer-server-ciphers output 7164 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration 7165 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream 7166 - MAJOR: ssl: bind configuration per certificat 7167 - MINOR: ssl: add curve suite for ECDHE negotiation 7168 - MINOR: checks: Add agent-addr config directive 7169 - MINOR: cli: Add possiblity to change agent config via CLI/socket 7170 - MINOR: doc: Add docs for agent-addr configuration variable 7171 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands 7172 - BUILD: ssl: fix to build (again) with boringssl 7173 - BUILD: ssl: fix build on OpenSSL 1.0.0 7174 - BUILD: ssl: silence a warning reported for ERR_remove_state() 7175 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes() 7176 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility 7177 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds 7178 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled 7179 - MINOR: server: extend the flags to 32 bits 7180 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword 7181 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested 7182 - BUG/MAJOR: dns: restart sockets after fork() 7183 - MINOR: chunks: implement a simple dynamic allocator for trash buffers 7184 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer 7185 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined 7186 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer 7187 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response 7188 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested 7189 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw() 7190 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1' 7191 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule 7192 - MINOR: http: don't close when redirect location doesn't start with "/" 7193 - MEDIUM: boringssl: support native multi-cert selection without bundling 7194 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate 7195 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING 7196 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation. 7197 - BUILD: ssl: fix build with -DOPENSSL_NO_DH 7198 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist 7199 - MEDIUM: ssl: remove ssl-options from crt-list 7200 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored. 7201 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls 7202 - MINOR: ssl: improved cipherlist captures 7203 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters 7204 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section 7205 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents 7206 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example 7207 - MINOR: spoe: Remove SPOE details from the appctx structure 7208 - MINOR: spoe: Add status code in error variable instead of hardcoded value 7209 - MINOR: spoe: Send a log message when an error occurred during event processing 7210 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages 7211 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer 7212 - MINOR: spoe: Use the min of all known max_frame_size to encode messages 7213 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames 7214 - MINOR: spoe: Add support for fragmentation capability in the SPOA example 7215 - MAJOR: spoe: refactor the filter to clean up the code 7216 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames 7217 - REORG: spoe: Move struct and enum definitions in dedicated header file 7218 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file 7219 - MINOR: spoe: Improve implementation of the payload fragmentation 7220 - MINOR: spoe: Add support of negation for options in SPOE configuration file 7221 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section 7222 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing 7223 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section 7224 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section 7225 - DOC: spoe: Update SPOE documentation to reflect recent changes 7226 - MINOR: config: warn when some HTTP rules are used in a TCP proxy 7227 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file 7228 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup 7229 - BUG/MINOR: Fix "get map <map> <value>" CLI command 7230 - MINOR: Add nbsrv sample converter 7231 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv() 7232 - MINOR: Add hostname sample fetch 7233 - CLEANUP: Remove comment that's no longer valid 7234 - MEDIUM: http_error_message: txn->status / http_get_status_idx. 7235 - MINOR: http-request tarpit deny_status. 7236 - CLEANUP: http: make http_server_error() not set the status anymore 7237 - MEDIUM: stats: Add JSON output option to show (info|stat) 7238 - MEDIUM: stats: Add show json schema 7239 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer 7240 - MINOR: server: Add dynamic session cookies. 7241 - MINOR: cli: Let configure the dynamic cookies from the cli. 7242 - BUG/MINOR: checks: attempt clean shutw for SSL check 7243 - CONTRIB: tcploop: make it build on FreeBSD 7244 - CONTRIB: tcploop: fix time format to silence build warnings 7245 - CONTRIB: tcploop: report action 'K' (kill) in usage message 7246 - CONTRIB: tcploop: fix connect's address length 7247 - CONTRIB: tcploop: use the trash instead of NULL for recv() 7248 - BUG/MEDIUM: listener: do not try to rebind another process' socket 7249 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided. 7250 - CLEANUP: config: Typo in comment. 7251 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze 7252 - TESTS: add a test configuration to stress handshake combinations 7253 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection 7254 - BUG/MEDIUM: connection: ensure to always report the end of handshakes 7255 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA 7256 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA 7257 - BUG: payload: fix payload not retrieving arbitrary lengths 7258 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility 7259 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl 7260 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule 7261 - MINOR: doc: 2.4. Examples should be 2.5. Examples 7262 - BUG/MEDIUM: stream: fix client-fin/server-fin handling 7263 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller 7264 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available 7265 - OPTIM: poll: enable support for POLLRDHUP 7266 - MINOR: kqueue: exclusively rely on the kqueue returned status 7267 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy 7268 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data 7269 - DOC/MINOR: Fix typos in proxy protocol doc 7270 - DOC: Protocol doc: add checksum, TLV type ranges 7271 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM 7272 - DOC: Protocol doc: add noop TLV 7273 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time 7274 - MINOR: dns: improve DNS response parsing to use as many available records as possible 7275 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity(). 7276 - MINOR: server: irrelevant error message with 'default-server' config file keyword. 7277 - MINOR: server: Make 'default-server' support 'backup' keyword. 7278 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword. 7279 - CLEANUP: server: code alignement. 7280 - MINOR: server: Make 'default-server' support 'non-stick' keyword. 7281 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords. 7282 - MINOR: server: Make 'default-server' support 'check-ssl' keyword. 7283 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords. 7284 - CLEANUP: server: code alignement. 7285 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords. 7286 - MINOR: server: Make 'default-server' support 'ssl' keyword. 7287 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords. 7288 - CLEANUP: server: code alignement. 7289 - MINOR: server: Make 'default-server' support 'verify' keyword. 7290 - MINOR: server: Make 'default-server' support 'verifyhost' setting. 7291 - MINOR: server: Make 'default-server' support 'check' keyword. 7292 - MINOR: server: Make 'default-server' support 'track' setting. 7293 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings. 7294 - MINOR: server: Make 'default-server' support 'redir' keyword. 7295 - MINOR: server: Make 'default-server' support 'observe' keyword. 7296 - MINOR: server: Make 'default-server' support 'cookie' keyword. 7297 - MINOR: server: Make 'default-server' support 'ciphers' keyword. 7298 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword. 7299 - MINOR: server: Make 'default-server' support 'namespace' keyword. 7300 - MINOR: server: Make 'default-server' support 'source' keyword. 7301 - MINOR: server: Make 'default-server' support 'sni' keyword. 7302 - MINOR: server: Make 'default-server' support 'addr' keyword. 7303 - MINOR: server: Make 'default-server' support 'disabled' keyword. 7304 - MINOR: server: Add 'no-agent-check' server keyword. 7305 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings. 7306 - MINOR: doc: fix use-server example (imap vs mail) 7307 - BUG/MEDIUM: tcp: don't require privileges to bind to device 7308 - BUILD: make the release script use shortlog for the final changelog 7309 - BUILD: scripts: fix typo in announce-release error message 7310 - CLEANUP: time: curr_sec_ms doesn't need to be exported 7311 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization. 7312 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode. 7313 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers 7314 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request 7315 - CLEANUP: http: Remove channel_congested function 7316 - CLEANUP: buffers: Remove buffer_bounce_realign function 7317 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions 7318 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request 7319 - MINOR: http: Add debug messages when HTTP body analyzers are called 7320 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled 7321 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze 7322 - DOC: fix parenthesis and add missing "Example" tags 7323 - DOC: update the contributing file 7324 - DOC: log-format/tcplog/httplog update 7325 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections 7326 73272016/11/25 : 1.8-dev0 7328 73292016/11/25 : 1.7.0 7330 - SCRIPTS: make publish-release also copy the new SPOE doc 7331 - BUILD: http: include types/sample.h in proto_http.h 7332 - BUILD: debug/flags: remove test for SF_COMP_READY 7333 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT 7334 - MINOR: lua: add function which return true if the channel is full. 7335 - MINOR: lua: add ip addresses and network manipulation function 7336 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes 7337 - CONTRIB: tcploop: implement fork() 7338 - CONTRIB: tcploop: implement logging when called with -v 7339 - CONTRIB: tcploop: update the usage output 7340 - CONTRIB: tcploop: support sending plain strings 7341 - CONTRIB: tcploop: don't report failed send() or recv() 7342 - CONTRIB: tcploop: add basic loops via a jump instruction 7343 - BUG/MEDIUM: channel: bad unlikely macro 7344 - CLEANUP: lua: move comment 7345 - CLEANUP: lua: control executed twice 7346 - BUG/MEDIUM: ssl: Store certificate filename in a variable 7347 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP 7348 - CLEANUP: ssl: Remove goto after return dead code 7349 - CLEANUP: ssl: Fix bind keywords name in comments 7350 - DOC: ssl: Use correct wording for ca-sign-pass 7351 - CLEANUP: lua: avoid directly calling getsockname/getpeername() 7352 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully 7353 - MINOR: cli: add private pointer and release function 7354 - MEDIUM: lua: Add cli handler for Lua 7355 - BUG/MEDIUM: connection: check the control layer before stopping polling 7356 - DEBUG: connection: mark the closed FDs with a value that is easier to detect 7357 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory 7358 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps 7359 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored 7360 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams 7361 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event 7362 - MINOR: spoe: Remove useless 'timeout ack' option 7363 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section 7364 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements 7365 - MINOR: spoe: Add "option set-on-error" statement 7366 - MINOR: stats: correct documentation of process ID for typed output 7367 - BUILD: contrib: fix ip6range build on Centos 7 7368 - BUILD: fix build on Solaris 10/11 7369 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name 7370 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn 7371 - BUG/MINOR: cli: wake up the CLI's task after a timeout update 7372 - MINOR: connection: add a few functions to report the data and xprt layers' names 7373 - MINOR: connection: add names for transport and data layers 7374 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c 7375 - REORG: cli: split dumpstats.h in stats.h and cli.h 7376 - REORG: cli: move ssl CLI functions to ssl_sock.c 7377 - REORG: cli: move map and acl code to map.c 7378 - REORG: cli: move show stat resolvers to dns.c 7379 - MINOR: cli: create new function cli_has_level() to validate permissions 7380 - MINOR: server: create new function cli_find_server() to find a server 7381 - MINOR: proxy: create new function cli_find_frontend() to find a frontend 7382 - REORG: cli: move 'set server' to server.c 7383 - REORG: cli: move 'show pools' to memory.c 7384 - REORG: cli: move 'show servers' to proxy.c 7385 - REORG: cli: move 'show sess' to stream.c 7386 - REORG: cli: move 'show backend' to proxy.c 7387 - REORG: cli: move get/set weight to server.c 7388 - REORG: cli: move "show stat" to stats.c 7389 - REORG: cli: move "show info" to stats.c 7390 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c 7391 - REORG: cli: move table dump/clear/set to stick_table.c 7392 - REORG: cli: move "show errors" out of cli.c 7393 - REORG: cli: make "show env" also use the generic keyword registration 7394 - REORG: cli: move "set timeout" to its own handler 7395 - REORG: cli: move "clear counters" to stats.c 7396 - REORG: cli: move "set maxconn global" to its own handler 7397 - REORG: cli: move "set maxconn server" to server.c 7398 - REORG: cli: move "set maxconn frontend" to proxy.c 7399 - REORG: cli: move "shutdown sessions server" to stream.c 7400 - REORG: cli: move "shutdown session" to stream.c 7401 - REORG: cli: move "shutdown frontend" to proxy.c 7402 - REORG: cli: move "{enable|disable} frontend" to proxy.c 7403 - REORG: cli: move "{enable|disable} server" to server.c 7404 - REORG: cli: move "{enable|disable} health" to server.c 7405 - REORG: cli: move "{enable|disable} agent" to server.c 7406 - REORG: cli: move the "set rate-limit" functions to their own parser 7407 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_* 7408 - CLEANUP: cli: simplify the request parser a little bit 7409 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers 7410 - BUILD: server: remove a build warning introduced by latest series 7411 - BUG/MINOR: log-format: uncatched memory allocation functions 7412 - CLEANUP: log-format: useless file and line in json converter 7413 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var() 7414 - CLEANUP: log-format: fix return code of the function parse_logformat_var() 7415 - CLEANUP: log-format: fix return code of function parse_logformat_var_args() 7416 - CLEANUP: log-format: remove unused arguments 7417 - MEDIUM: log-format: strict parsing and enable fail 7418 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code 7419 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8 7420 - BUILD: vars: remove a build warning on vars.c 7421 - MINOR: lua: add utility function for check boolean argument 7422 - MINOR: lua: Add tokenize function. 7423 - BUG/MINOR: conf: calloc untested 7424 - MINOR: http/conf: store the use_backend configuration file and line for logs 7425 - MEDIUM: log-format: Use standard HAProxy log system to report errors 7426 - CLEANUP: sample: report "converter" instead of "conv method" in error messages 7427 - BUG: spoe: Fix parsing of SPOE actions in ACK frames 7428 - MINOR: cli: make "show stat" support a proxy name 7429 - MINOR: cli: make "show errors" support a proxy name 7430 - MINOR: cli: make "show errors" capable of dumping only request or response 7431 - BUG/MINOR: freq-ctr: make swrate_add() support larger values 7432 - CLEANUP: counters: move from 3 types to 2 types 7433 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules 7434 - REORG: tcp-rules: move tcp rules processing to their own file 7435 - REORG: stkctr: move all the stick counters processing to stick-tables.c 7436 - DOC: update the roadmap file with the latest changes 7437 74382016/11/09 : 1.7-dev6 7439 - DOC: fix the entry for hash-balance-factor config option 7440 - DOC: Fix typo in description of `-st` parameter in man page 7441 - CLEANUP: cfgparse: Very minor spelling correction 7442 - MINOR: examples: Update haproxy.spec URLs to haproxy.org 7443 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream 7444 - BUG/MEDIUM: peers: fix use after free in peer_session_create() 7445 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream 7446 - MINOR: peers: remove the pointer to the stream 7447 - BUG/MEDIUM: systemd-wrapper: return correct exit codes 7448 - DOC: stats: provide state details for show servers state 7449 - MEDIUM: tools: make str2ip2() preserve existing ports 7450 - CLEANUP: tools: make ipcpy() preserve the original port 7451 - OPTIM: http: move all http character classs tables into a single one 7452 - OPTIM: http: improve parsing performance of long header lines 7453 - OPTIM: http: improve parsing performance of long URIs 7454 - OPTIM: http: optimize lookup of comma and quote in header values 7455 - BUG/MEDIUM: srv-state: properly restore the DRAIN state 7456 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags 7457 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot 7458 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup 7459 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module 7460 - DOC: move the device detection modules documentation to their own files 7461 - CLEANUP: wurfl: reduce exposure in the rest of the code 7462 - MEDIUM: ssl: Add support for OpenSSL 1.1.0 7463 - MINOR: stream: make option contstats usable again 7464 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving 7465 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK 7466 - MAJOR: server: postpone address resolution 7467 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT 7468 - MINOR: server: indicate in the logs when RMAINT is cleared 7469 - MINOR: stats: indicate it when a server is down due to resolution 7470 - MINOR: server: make srv_set_admin_state() capable of telling why this happens 7471 - MINOR: dns: implement extra 'hold' timers. 7472 - MAJOR: dns: runtime resolution can change server admin state 7473 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI 7474 - MEDIUM: server: add a new init-addr server line setting 7475 - MEDIUM: server: make use of init-addr 7476 - MINOR: server: implement init-addr none 7477 - MEDIUM: server: make libc resolution failure non-fatal 7478 - MINOR: server: add support for explicit numeric address in init-addr 7479 - DOC: add some documentation for the "init-addr" server keyword 7480 - MINOR: init: add -dr to ignore server address resolution failures 7481 - MEDIUM: server: do not restrict anymore usage of IP address from the state file 7482 - BUG: vars: Fix 'set-var' converter because of a typo 7483 - CLEANUP: remove last references to 'ruleset' section 7484 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks 7485 - MINOR: filters: Update filters documentation accordingly to recent changes 7486 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats 7487 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams 7488 - MINOR: flt_trace: Add hexdump option to dump forwarded data 7489 - MINOR: cfgparse: Add functions to backup and restore registered sections 7490 - MINOR: cfgparse: Parse scope lines and save the last one parsed 7491 - REORG: sample: move code to release a sample expression in sample.c 7492 - MINOR: vars: Allow '.' in variable names 7493 - MINOR: vars: Add vars_set_by_name_ifexist function 7494 - MEDIUM: vars: Add a per-process scope for variables 7495 - MINOR: vars: Add 'unset-var' action/converter 7496 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine 7497 - MINOR: spoe: add random ip-reputation service as SPOA example 7498 - MINOR: spoe/checks: Add support for SPOP health checks 7499 - DOC: update ROADMAP file 7500 75012016/10/25 : 1.7-dev5 7502 - MINOR: cfgparse: few memory leaks fixes. 7503 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR 7504 - CLEANUP: logs: remove unused log format field definitions 7505 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c 7506 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry 7507 - CLEANUP: proto_http: Removing useless variable assignation 7508 - CLEANUP: dumpstats: Removing useless variables allocation 7509 - CLEANUP: dns: Removing usless variable & assignation 7510 - BUG/MINOR: payload: fix SSLv2 version parser 7511 - MINOR: cli: allow the semi-colon to be escaped on the CLI 7512 - MINOR: cli: change a server health check port through the stats socket 7513 - BUG/MINOR: Fix OSX compilation errors 7514 - MAJOR: check: find out which port to use for health check at run time 7515 - MINOR: server: introduction of 3 new server flags 7516 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT 7517 - MINOR: cli: ability to change a server's port 7518 - CLEANUP/MINOR dns: comment do not follow up code update 7519 - MINOR: chunk: new strncat function 7520 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value 7521 - MINOR: dns: new MAX values 7522 - MINOR: dns: new macro to compute DNS header size 7523 - MINOR: dns: new DNS structures to store received packets 7524 - MEDIUM: dns: new DNS response parser 7525 - MINOR: dns: query type change when last record is a CNAME 7526 - MINOR: dns: proper domain name validation when receiving DNS response 7527 - MINOR: dns: comments in types/dns.h about structures endianness 7528 - BUG/MINOR: displayed PCRE version is running release 7529 - MINOR: show Built with PCRE version 7530 - MINOR: show Running on zlib version 7531 - MEDIUM: make SO_REUSEPORT configurable 7532 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections 7533 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing 7534 - BUG/MINOR: stats: report the correct conn_time in backend's html output 7535 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory 7536 - MINOR: Add fe_req_rate sample fetch 7537 - MEDIUM: peers: Fix a peer stick-tables synchronization issue. 7538 - MEDIUM: cli: register CLI keywords with cli_register_kw() 7539 - BUILD: Make use of accept4() on OpenBSD. 7540 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative 7541 - DOC: fix missed entry for "set-{src,dst}{,-port}" 7542 - BUG/MINOR: vars: use sess and not s->sess in action_store() 7543 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses 7544 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session 7545 - MINOR: stats: output dcon 7546 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4 7547 - MINOR: counters: add new fields for denied_sess 7548 - MEDIUM: tcp: add registration and processing of TCP L5 rules 7549 - MINOR: stats: emit dses 7550 - DOC: document tcp-request session 7551 - MINOR: ssl: add debug traces 7552 - BUILD/CLEANUP: ssl: Check BIO_reset() return code 7553 - BUG/MINOR: ssl: Check malloc return code 7554 - BUG/MINOR: ssl: prevent multiple entries for the same certificate 7555 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error 7556 - BUG/MINOR: systemd: always restore signals before execve() 7557 - BUG/MINOR: systemd: check return value of calloc() 7558 - MINOR: systemd: report it when execve() fails 7559 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed 7560 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers' 7561 - MINOR: backend: add hash-balance-factor option for hash-type consistent 7562 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target 7563 - MEDIUM: server: Implement bounded-load hash algorithm 7564 - SCRIPTS: make git-show-backports also dump a "git show" command 7565 - MINOR: build: Allow linking to device-atlas library file 7566 - MINOR: stats: Escape equals sign on socket dump 7567 75682016/08/14 : 1.7-dev4 7569 - MINOR: add list_append_word function 7570 - MEDIUM: init: use list_append_word in haproxy.c 7571 - MEDIUM: init: allow directory as argument of -f 7572 - CLEANUP: config: detect double registration of a config section 7573 - MINOR: log: add the %Td log-format specifier 7574 - MEDIUM: filters: Move HTTP headers filtering in its own callback 7575 - MINOR: filters: Simplify calls to analyzers using 2 new macros 7576 - MEDIUM: filters: Add pre and post analyzer callbacks 7577 - DOC: filters: Update the filters documentation accordingly to recent changes 7578 - BUG/MEDIUM: init: don't use environment locale 7579 - SCRIPTS: teach git-show-backports how to report upstream commits 7580 - SCRIPTS: make git-show-backports capable of limiting its history 7581 - BUG/MAJOR: fix listening IP address storage for frontends 7582 - BUG/MINOR: fix listening IP address storage for frontends (cont) 7583 - DOC: Fix typo so fetch is properly parsed by Cyril's converter 7584 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes 7585 - BUG/MEDIUM: stick-tables: fix breakage in table converters 7586 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY 7587 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix 7588 - BUILD: fix build on Solaris 11 7589 - BUG/MEDIUM: config: fix multiple declaration of section parsers 7590 - BUG/MEDIUM: stats: show servers state may show an servers from another backend 7591 - BUG/MEDIUM: fix risk of segfault with "show tls-keys" 7592 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets 7593 - DOC: update doc about tls-tickets-keys dump 7594 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection' 7595 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src' 7596 - MEDIUM: tcp/http: add 'set-src-port' action 7597 - MEDIUM: tcp/http: new set-dst/set-dst-port actions 7598 - BUG/MEDIUM: sticktables: segfault in some configuration error cases 7599 - BUILD/MEDIUM: rebuild everything when an include file is changed 7600 - BUILD/MEDIUM: force a full rebuild if some build options change 7601 - BUG/MEDIUM: lua: converters doesn't work 7602 - BUG/MINOR: http: add-header: header name copied twice 7603 - BUG/MEDIUM: http: add-header: buffer overwritten 7604 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params() 7605 - MINOR: stream: export the function 'smp_create_src_stkctr' 7606 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list() 7607 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump 7608 - BUG/MINOR: http: url32+src should use the big endian version of url32 7609 - BUG/MINOR: http: url32+src should check cli_conn before using it 7610 - DOC: http: add documentation for url32 and url32+src 7611 - BUG/MINOR: fix http-response set-log-level parsing error 7612 - MINOR: systemd: Use variable for config and pidfile paths 7613 - MINOR: systemd: Perform sanity check on config before reload 7614 - MEDIUM: ssl: support SNI filters with multicerts 7615 - MINOR: ssl: crt-list parsing factor 7616 - BUILD: ssl: fix typo causing a build failure in the multicert patch 7617 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword 7618 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4" 7619 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits 7620 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed 7621 - BUG/MEDIUM: external-checks: close all FDs right after the fork() 7622 - BUG/MAJOR: external-checks: use asynchronous signal delivery 7623 - BUG/MINOR: external-checks: do not unblock undesired signals 7624 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list 7625 - BUG/MEDIUM: filters: Fix data filtering when data are modified 7626 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding 7627 - BUG/MINOR: srv-state: fix incorrect output of state file 7628 - BUG/MINOR: ssl: close ssl key file on error 7629 - BUG/MINOR: http: fix misleading error message for response captures 7630 - BUG/BUILD: don't automatically run "make" on "make install" 7631 - DOC: add missing doc for http-request deny [deny_status <status>] 7632 - CLEANUP: dumpstats: u64 field is an unsigned type. 7633 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing 7634 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes 7635 - MINOR: new function my_realloc2 = realloc + free upon failure 7636 - CLEANUP: fixed some usages of realloc leading to memory leak 7637 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()" 7638 - CLEANUP: connection: using internal struct to hold source and dest port. 7639 - DOC: spelling fixes 7640 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params() 7641 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser 7642 - BUG/MINOR: Fix endiness issue in DNS header creation code 7643 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash 7644 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash 7645 - MEDIUM: http: implement http-response track-sc* directive 7646 - BUG/MINOR: peers: Fix peers data decoding issue 7647 - BUG/MINOR: peers: don't count track-sc multiple times on errors 7648 - MINOR: standard: add function "escape_string" 7649 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk" 7650 - MINOR: tcp: Return TCP statistics like RTT and RTT variance 7651 - DOC: lua: remove old functions 7652 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests 7653 - DOC: fix json converter example and error message 7654 - BUG/MEDIUM: stream-int: completely detach connection on connect error 7655 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv 7656 - BUILD: make proto_tcp.c compatible with musl library 7657 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush 7658 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample 7659 - MINOR: sample: implement smp_is_safe() and smp_make_safe() 7660 - MINOR: sample: provide smp_is_rw() and smp_make_rw() 7661 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble 7662 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size 7663 - BUG/MEDIUM: stick-table: properly convert binary samples to keys 7664 - MINOR: sample: use smp_make_rw() in upper/lower converters 7665 - MINOR: tcp: add dst_is_local and src_is_local 7666 - BUG/MINOR: peers: some updates are pushed twice after a resync. 7667 - BUILD: protocol: fix some build errors on OpenBSD 7668 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD 7669 - BUILD: tcp: do not include netinet/ip.h for IP_TTL 7670 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h 7671 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD 7672 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists 7673 - BUILD: compression: remove a warning when no compression lib is used 7674 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang 7675 - MINOR: tcp: add further tcp info fetchers 7676 - BUG/MINOR: peers: empty chunks after a resync. 7677 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table 7678 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage 7679 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one 7680 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided 7681 76822016/05/10 : 1.7-dev3 7683 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits. 7684 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted 7685 - BUILD: namespaces: fix a potential build warning in namespaces.c 7686 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor. 7687 - DOC: add encoding to json converter example 7688 - BUG/MINOR: conf: "listener id" expects integer, but its not checked 7689 - DOC: Clarify tunes.vars.xxx-max-size settings 7690 - CLEANUP: chunk: adding NULL check to chunk_dup allocation. 7691 - CLEANUP: connection: fix double negation on memcmp() 7692 - BUG/MEDIUM: peers: fix incorrect age in frequency counters 7693 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present 7694 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers 7695 - BUG/MINOR: lua: can't load external libraries 7696 - BUG/MINOR: prevent the dump of uninitialized vars 7697 - CLEANUP: map: it seems that the map were planed to be chained 7698 - MINOR: lua: move class registration facilities 7699 - MINOR: lua: remove some useless checks 7700 - CLEANUP: lua: Remove two same functions 7701 - MINOR: lua: refactor the Lua object registration 7702 - MINOR: lua: precise message when a critical error is catched 7703 - MINOR: lua: post initialization 7704 - MINOR: lua: Add internal function which strip spaces 7705 - MINOR: lua: convert field to lua type 7706 - DOC: "addr" parameter applies to both health and agent checks 7707 - DOC: timeout client: pointers to timeout http-request 7708 - DOC: typo on stick-store response 7709 - DOC: stick-table: amend paragraph blaming the loss of table upon reload 7710 - DOC: typo: ACL subdir match 7711 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size 7712 - DOC: regsub: parser limitation about the inability to use closing square brackets 7713 - DOC: typo: req.uri is now replaced by capture.req.uri 7714 - DOC: name set-gpt0 mismatch with the expected keyword 7715 - MINOR: http: sample fetch which returns unique-id 7716 - MINOR: dumpstats: extract stats fields enum and names 7717 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts 7718 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts 7719 - MINOR: dumpstats: split stats_dump_li_stats() in two parts 7720 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts 7721 - MINOR: dumpstats: split stats_dump_be_stats() in two parts 7722 - MINOR: lua: dump general info 7723 - MINOR: lua: add class proxy 7724 - MINOR: lua: add class server 7725 - MINOR: lua: add class listener 7726 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state. 7727 - MEDIUM: proxy: use dynamic allocation for error dumps 7728 - CLEANUP: remove unneeded casts 7729 - CLEANUP: uniformize last argument of malloc/calloc 7730 - DOC: fix "needed" typo 7731 - BUG/MINOR: dumpstats: fix write to global chunk 7732 - BUG/MINOR: dns: inapropriate way out after a resolution timeout 7733 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout 7734 - CLEANUP: proto_http: few corrections for gcc warnings. 7735 - BUG/MINOR: DNS: resolution structure change 7736 - BUG/MINOR : allow to log cookie for tarpit and denied request 7737 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates 7738 - OPTIM/MINOR: session: abort if possible before connecting to the backend 7739 - DOC: http: rename the unique-id sample and add the documentation 7740 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files 7741 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try) 7742 - BUG/MINOR: server: risk of over reading the pref_net array. 7743 - BUG/MINOR: cfgparse: couple of small memory leaks. 7744 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call. 7745 - DOC: fix discrepancy in the example for http-request redirect 7746 - MINOR: acl: Add predefined METH_DELETE, METH_PUT 7747 - CLEANUP: .gitignore cleanup 7748 - DOC: Clarify IPv4 address / mask notation rules 7749 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept() 7750 - BUG/MEDIUM: fix maxaccept computation on per-process listeners 7751 - BUG/MINOR: listener: stop unbound listeners on startup 7752 - BUG/MINOR: fix maxaccept computation according to the frontend process range 7753 - TESTS: add blocksig.c to run tests with all signals blocked 7754 - MEDIUM: unblock signals on startup. 7755 - MINOR: filters: Print the list of existing filters during HA startup 7756 - MINOR: filters: Typo in an error message 7757 - MINOR: filters: Filters must define the callbacks struct during config parsing 7758 - DOC: filters: Add filters documentation 7759 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected 7760 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery 7761 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try) 7762 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode 7763 - MINOR: Add ability for agent-check to set server maxconn 7764 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates 7765 - MINOR: filters: add opaque data 7766 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches. 7767 - MINOR: lua: migrate the argument mask to 64 bits type. 7768 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats 7769 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ> 7770 - BUG/MEDIUM: http: fix incorrect reporting of server errors 7771 - MINOR: channel: add new function channel_congested() 7772 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client 7773 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try) 7774 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared 7775 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers 7776 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result 7777 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result 7778 - MINOR: stats: fix typo in help messages 7779 - MINOR: stats: show stat resolvers missing in the help message 7780 - BUG/MINOR: dns: fix DNS header definition 7781 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries 7782 - CLEANUP: don't ignore scripts in .gitignore 7783 - BUILD: add a few release and backport scripts in scripts/ 7784 77852016/03/14 : 1.7-dev2 7786 - DOC: lua: fix lua API 7787 - DOC: mailers: typo in 'hostname' description 7788 - DOC: compression: missing mention of libslz for compression algorithm 7789 - BUILD/MINOR: regex: missing header 7790 - BUG/MINOR: stream: bad return code 7791 - DOC: lua: fix somme errors and add implicit types 7792 - MINOR: lua: add set/get priv for applets 7793 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser 7794 - BUG/MINOR: http: Be sure to process all the data received from a server 7795 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose 7796 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size 7797 - DOC: ssl: fixed some formatting errors in crt tag 7798 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero 7799 - MINOR: chunks: add chunk_strcat() and chunk_newstr() 7800 - MINOR: chunk: make chunk_initstr() take a const string 7801 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk 7802 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk 7803 - MINOR: lru: new function to delete <nb> least recently used keys 7804 - DOC: add Ben Shillito as the maintainer of 51d 7805 - BUG/MINOR: 51d: Ensures a unique domain for each configuration 7806 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices. 7807 - BUG/MINOR: 51d: Releases workset back to pool. 7808 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees. 7809 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc. 7810 - MINOR: rename master process name in -Ds (systemd mode) 7811 - DOC: fix a few spelling mistakes 7812 - DOC: fix "workaround" spelling 7813 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files 7814 - MINOR: fix the return type for dns_response_get_query_id() function 7815 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file 7816 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver 7817 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server 7818 - BUG/MEDIUM: servers state: server port is used uninitialized 7819 - BUG/MEDIUM: config: Adding validation to stick-table expire value. 7820 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week 7821 - BUG/MEDIUM: channel: fix miscalculation of available buffer space. 7822 - MEDIUM: pools: add a new flag to avoid rounding pool size up 7823 - BUG/MEDIUM: buffers: do not round up buffer size during allocation 7824 - BUG/MINOR: stream: don't force retries if the server is DOWN 7825 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table 7826 - MINOR: unix: don't mention free ports on EAGAIN 7827 - BUG/CLEANUP: CLI: report the proper field states in "show sess" 7828 - MINOR: stats: send content-length with the redirect to allow keep-alive 7829 - BUG: stream_interface: Reuse connection even if the output channel is empty 7830 - DOC: remove old tunnel mode assumptions 7831 - BUG/MAJOR: http-reuse: fix risk of orphaned connections 7832 - BUG/MEDIUM: http-reuse: do not share private connections across backends 7833 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates 7834 - BUG/MINOR: stats: fix missing comma in stats on agent drain 7835 - MAJOR: filters: Add filters support 7836 - MINOR: filters: Do not reset stream analyzers if the client is gone 7837 - REORG: filters: Prepare creation of the HTTP compression filter 7838 - MAJOR: filters/http: Rewrite the HTTP compression as a filter 7839 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing 7840 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end 7841 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer 7842 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions 7843 - MINOR: filters: Add stream_filters structure to hide filters info 7844 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data 7845 - MINOR: filters: Remove unused or useless stuff and do small optimizations 7846 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response 7847 - MINOR: filters/http: Slightly update the parsing of chunks 7848 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters 7849 - MINOR: filters: Add an filter example 7850 - MINOR: filters: Extract proxy stuff from the struct filter 7851 - MINOR: map: Add regex matching replacement 7852 - BUG/MINOR: lua: unsafe initialization 7853 - DOC: lua: fix somme errors 7854 - MINOR: lua: file dedicated to unsafe functions 7855 - MINOR: lua: add "now" time function 7856 - MINOR: standard: add RFC HTTP date parser 7857 - MINOR: lua: Add date functions 7858 - MINOR: lua: move common function 7859 - MINOR: lua: merge function 7860 - MINOR: lua: Add concat class 7861 - MINOR: standard: add function "escape_chunk" 7862 - MEDIUM: log: add a new log format flag "E" 7863 - DOC: add server name at rate-limit sessions example 7864 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation 7865 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation 7866 - DOC: LUA: fix some typos and syntax errors 7867 - MINOR: cli: add a new "show env" command 7868 - MEDIUM: config: allow to manipulate environment variables in the global section 7869 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers 7870 - MINOR: mailers: increase default timeout to 10 seconds 7871 - MINOR: mailers: use <CRLF> for all line endings 7872 - BUG/MAJOR: lua: segfault using Concat object 7873 - DOC: lua: copyrights 7874 - MINOR: common: mask conversion 7875 - MEDIUM: dns: extract options 7876 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network 7877 - MINOR: mailers: make it possible to configure the connection timeout 7878 - BUG/MAJOR: lua: applets can't sleep. 7879 - BUG/MINOR: server: some prototypes are renamed 7880 - BUG/MINOR: lua: Useless copy 7881 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly 7882 - BUG/MINOR: server: fix the format of the warning on address change 7883 - CLEANUP: server: add "const" to some message strings 7884 - MINOR: server: generalize the "updater" source 7885 - BUG/MEDIUM: chunks: always reject negative-length chunks 7886 - BUG/MINOR: systemd: ensure we don't miss signals 7887 - BUG/MINOR: systemd: report the correct signal in debug message output 7888 - BUG/MINOR: systemd: propagate the correct signal to haproxy 7889 - MINOR: systemd: ensure a reload doesn't mask a stop 7890 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword 7891 - CLEANUP: stats: Avoid computation with uninitialized bits. 7892 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip(). 7893 - CLEANUP: map: Avoid memory leak in out-of-memory condition. 7894 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs 7895 - BUG/MAJOR: samples: check smp->strm before using it 7896 - MINOR: sample: add a new helper to initialize the owner of a sample 7897 - MINOR: sample: always set a new sample's owner before evaluating it 7898 - BUG/MAJOR: vars: always retrieve the stream and session from the sample 7899 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer 7900 - BUG/MINOR: ssl: fix usage of the various sample fetch functions 7901 - MINOR: stats: create fields types suitable for all CSV output data 7902 - MINOR: stats: add all the "show info" fields in a table 7903 - MEDIUM: stats: fill all the show info elements prior to displaying them 7904 - MINOR: stats: add a function to emit fields into a chunk 7905 - MINOR: stats: add stats_dump_info_fields() to dump one field per line 7906 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info" 7907 - MINOR: stats: add a declaration of all stats fields 7908 - MINOR: stats: don't hard-code the CSV fields list anymore 7909 - MINOR: stats: create stats fields storage and CSV dump function 7910 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv() 7911 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump 7912 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv() 7913 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump 7914 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv() 7915 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump 7916 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv() 7917 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML 7918 - MEDIUM: stats: move the server state coloring logic to the server dump function 7919 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps 7920 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps 7921 - MINOR: stats: make CSV report server check status only when enabled 7922 - MINOR: stats: only report backend's down time if it has servers 7923 - MINOR: stats: prepend '*' in front of the check status when in progress 7924 - MINOR: stats: make HTML stats dump rely on the table for the check status 7925 - MINOR: stats: add agent_status, agent_code, agent_duration to output 7926 - MINOR: stats: add check_desc and agent_desc to the output fields 7927 - MINOR: stats: add check and agent's health values in the output 7928 - MEDIUM: stats: make the HTML server state dump use the CSV states 7929 - MEDIUM: stats: only report observe errors when observe is set 7930 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses 7931 - MEDIUM: stats: report server's address in the CSV output 7932 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps 7933 - MEDIUM: stats: compute the color code only in the HTML form 7934 - MEDIUM: stats: report the listeners' address in the CSV output 7935 - MEDIUM: stats: make it possible to report the WAITING state for listeners 7936 - REORG: stats: dump the frontend's HTML stats via a generic function 7937 - REORG: stats: dump the socket stats via the generic function 7938 - REORG: stats: dump the server stats via the generic function 7939 - REORG: stats: dump the backend stats via the generic function 7940 - MEDIUM: stats: add a new "mode" column to report the proxy mode 7941 - MINOR: stats: report the load balancing algorithm in CSV output 7942 - MINOR: stats: add 3 fields to report the frontend-specific connection stats 7943 - MINOR: stats: report number of intercepted requests for frontend and backends 7944 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line 7945 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore 7946 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags 7947 - MINOR: stats: make stats_dump_fields_html() not use &trash by default 7948 - MINOR: stats: add functions to emit typed fields into a chunk 7949 - MEDIUM: stats: support "show info typed" on the CLI 7950 - MEDIUM: stats: implement a typed output format for stats 7951 - DOC: document the "show info typed" and "show stat typed" output formats 7952 - MINOR: cfgparse: warn when uid parameter is not a number 7953 - MINOR: cfgparse: warn when gid parameter is not a number 7954 - BUG/MINOR: standard: Avoid free of non-allocated pointer 7955 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition 7956 - CLEANUP: http: fix a build warning introduced by a recent fix 7957 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST 7958 79592015/12/20 : 1.7-dev1 7960 - DOC: specify that stats socket doc (section 9.2) is in management 7961 - BUILD: install only relevant and existing documentation 7962 - CLEANUP: don't ignore debian/ directory if present 7963 - BUG/MINOR: dns: parsing error of some DNS response 7964 - BUG/MEDIUM: namespaces: don't fail if no namespace is used 7965 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled 7966 - MEDIUM: dns: Don't use the ANY query type 7967 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0 7968 - DOC: fix a typo for a "deviceatlas" keyword 7969 - FIX: small typo in an example using the "Referer" header 7970 - MINOR: cli: ability to set per-server maxconn 7971 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing 7972 - DEBUG/MEDIUM: memory: optionally protect free data in pools 7973 - DEBUG/MEDIUM: memory: add optional control pool memory operations 7974 - MEDIUM: memory: add accounting for failed allocations 7975 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32 7976 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop 7977 - BUG/MINOR: dns: unable to parse CNAMEs response 7978 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check() 7979 - DOC: deviceatlas: more example use cases. 7980 - MINOR: config: allow IPv6 bracketed literals 7981 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin. 7982 - BUILD: add Haiku as supported target. 7983 - BUG/MAJOR: http: don't requeue an idle connection that is already queued 7984 - DOC: typo on capture.res.hdr and capture.req.hdr 7985 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing 7986 - CLEANUP: use direction names in place of numeric values 7987 - BUG/MEDIUM: lua: sample fetches based on response doesn't work 7988 - MINOR: check: add agent-send server parameter 7989 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id 7990 - BUG/MINOR: server: check return value of fgets() in apply_server_state() 7991 - BUG/MINOR: acl: don't use record layer in req_ssl_ver 7992 - BUILD: freebsd: double declaration 7993 - BUG/MEDIUM: lua: clean output buffer 7994 - BUILD: check for libressl to be able to build against it 7995 - DOC: lua-api/index.rst small example fixes, spelling correction. 7996 - DOC: lua: architecture and first steps 7997 - DOC: relation between timeout http-request and option http-buffer-request 7998 - BUILD: Make deviceatlas require PCRE 7999 - BUG: http: do not abort keep-alive connections on server timeout 8000 - BUG/MEDIUM: http: switch the request channel to no-delay once done. 8001 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket 8002 - BUILD/MINOR: http: proto_http.h needs sample.h 8003 - BUG/MEDIUM: http: don't enable auto-close on the response side 8004 - BUG/MEDIUM: stream: fix half-closed timeout handling 8005 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB 8006 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level 8007 - BUG/MEDIUM: sample: urlp can't match an empty value 8008 - BUILD: dumpstats: silencing warning for printf format specifier / time_t 8009 - CLEANUP: proxy: calloc call inverted arguments 8010 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built. 8011 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input. 8012 - DOC: Edited 51Degrees section of README/ 8013 - BUG/MEDIUM: checks: email-alert not working when declared in defaults 8014 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured 8015 - BUG/MINOR: checks: typo in an email-alert error message 8016 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port 8017 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT 8018 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ 8019 - DOC: prefer using http-request/response over reqXXX/rspXXX directives 8020 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro. 8021 - MINOR: ssl: Added cert_key_and_chain struct 8022 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs 8023 - MINOR: ssl: Added multi cert support for crt-list config keyword 8024 - MEDIUM: ssl: Added multi cert support for loading crt directories 8025 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling 8026 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2 8027 - MINOR: config: make tune.recv_enough configurable 8028 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced 8029 - DOC: ssl: Adding docs for Multi-Cert bundling 8030 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay. 8031 - BUG/MEDIUM: peers: old stick table updates could be repushed. 8032 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received 8033 - REORG/MINOR: lua: convert boolean "int" to bitfield 8034 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn 8035 - BUG/MINOR: lua: Lua applets must not use http_txn 8036 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets 8037 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services 8038 - CLEANUP: lua: bad error messages 8039 - CONTRIB: initiate a debugging suite to make debugging easier 8040 80412015/10/13 : 1.7-dev0 8042 - exact copy of 1.6.0 8043 80442015/10/13 : 1.6.0 8045 - BUG/MINOR: Handle interactive mode in cli handler 8046 - DOC: global section missing parameters 8047 - DOC: backend section missing parameters 8048 - DOC: stats paramaters available in frontend 8049 - MINOR: lru: do not allocate useless memory in lru64_lookup 8050 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth) 8051 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored 8052 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down 8053 - MINOR: ssl: Read the file used to generate certificates in any order 8054 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates 8055 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates 8056 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424 8057 - BUILD: Fix the build on OSX (htonll/ntohll) 8058 - BUILD: enable build on Linux/s390x 8059 - BUG/MEDIUM: lua: direction test failed 8060 - MINOR: lua: fix a spelling error in some error messages 8061 - CLEANUP: cli: ensure we can never double-free error messages 8062 - BUG/MEDIUM: lua: force server-close mode on Lua services 8063 - MEDIUM: init: support more command line arguments after pid list 8064 - MEDIUM: init: support a list of files on the command line 8065 - MINOR: debug: enable memory poisonning to use byte 0 8066 - BUILD: ssl: fix build error introduced by recent commit 8067 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers 8068 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server 8069 - DOC: mention the "namespace" options for bind and server lines 8070 - DOC: add the "management" documentation 8071 - DOC: move the stats socket documentation from config to management 8072 - MINOR: examples: update haproxy.spec to mention new docs 8073 - DOC: mention management.txt in README 8074 - DOC: remove haproxy-{en,fr}.txt 8075 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together 8076 - MINOR: init: report use of libslz instead of "no compression" 8077 - CLEANUP: examples: remove some obsolete and confusing files 8078 - CLEANUP: examples: remove obsolete configuration file samples 8079 - CLEANUP: examples: fix the example file content-sw-sample.cfg 8080 - CLEANUP: examples: update sample file option-http_proxy.cfg 8081 - CLEANUP: examples: update sample file ssl.cfg 8082 - CLEANUP: tests: move a test file from examples/ to tests/ 8083 - CLEANUP: examples: shut up warnings in transparent proxy example 8084 - CLEANUP: tests: removed completely obsolete test files 8085 - DOC: update ROADMAP to remove what was done in 1.6 8086 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id 8087 80882015/10/06 : 1.6-dev7 8089 - MINOR: cli: Dump all resolvers stats if no resolver section is given 8090 - BUG: config: external-check command validation is checking for incorrect arguments. 8091 - DOC: documentation format cleanups 8092 - DOC: lua: few typos. 8093 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy 8094 - BUG/MEDIUM: logs: segfault writing to log from Lua 8095 - DOC: fix lua use-service example 8096 - MINOR: payload: add support for tls session ticket ext 8097 - MINOR: lua: remove the run flag 8098 - MEDIUM: lua: change the timeout execution 8099 - MINOR: lua: rename the tune.lua.applet-timeout 8100 - DOC: lua: update Lua doc 8101 - DOC: lua: update doc according with the last Lua changes 8102 - MINOR: http/tcp: fill the avalaible actions 8103 - DOC: reorder misplaced res.ssl_hello_type in the doc 8104 - BUG/MINOR: tcp: make silent-drop always force a TCP reset 8105 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled 8106 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available 8107 - BUILD: server: fix build warnings introduced by load-server-state 8108 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings 8109 81102015/09/28 : 1.6-dev6 8111 - BUG/MAJOR: can't enable a server through the stat socket 8112 - MINOR: server: Macro definition for server-state 8113 - MINOR: cli: new stats socket command: show servers state 8114 - DOC: stats socket command: show servers state 8115 - MINOR: config: new global directive server-state-base 8116 - DOC: global directive server-state-base 8117 - MINOR: config: new global section directive: server-state-file 8118 - DOC: new global directive: server-state-file 8119 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name 8120 - DOC: load-server-state-from-file 8121 - MINOR: init: server state loaded from file 8122 - MINOR: server: startup slowstart task when using seamless reload of HAProxy 8123 - MINOR: cli: new stats socket command: show backend 8124 - DOC: servers state seamless reload example 8125 - BUG: dns: can't connect UDP socket on FreeBSD 8126 - MINOR: cfgparse: New function cfg_unregister_sections() 8127 - MINOR: chunk: New function free_trash_buffers() 8128 - BUG/MEDIUM: main: Freeing a bunch of static pointers 8129 - MINOR: proto_http: Externalisation of previously internal functions 8130 - MINOR: global: Few new struct fields for da module 8131 - MAJOR: da: Update of the DeviceAtlas API module 8132 - DOC: DeviceAtlas new keywords 8133 - DOC: README: DeviceAtlas sample configuration updates 8134 - MEDIUM: log: replace sendto() with sendmsg() in __send_log() 8135 - MEDIUM: log: use a separate buffer for the header and for the message 8136 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader 8137 - MEDIUM: logs: add support for RFC5424 header format per logger 8138 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data 8139 - DOC: mention support for the RFC5424 syslog message format 8140 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space 8141 - MEDIUM: logs: pass the trailing "\n" as an iovec 8142 - BUG/MEDIUM: peers: some table updates are randomly not pushed. 8143 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect 8144 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash. 8145 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions 8146 - MINOR: global: Added new fields for 51Degrees device detection 8147 - DOC: Added more explanation for 51Degrees V3.2 8148 - BUILD: Changed 51Degrees option to support V3.2 8149 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features 8150 - MINOR: 51d: Improved string handling for LRU cache 8151 - DOC: add references to rise/fall for the fastinter explanation 8152 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD 8153 - BUG/MAJOR: lua: potential unexpected aborts() 8154 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer 8155 - MINOR: action: add private configuration 8156 - MINOR: action: add reference to the original keywork matched for the called parser. 8157 - MINOR: lua: change actions registration 8158 - MEDIUM: proto_http: smp_prefetch_http initialize txn 8159 - MINOR: channel: rename function chn_sess to chn_strm 8160 - CLEANUP: lua: align defines 8161 - MINOR: http: export http_get_path() function 8162 - MINOR: http: export the get_reason() function 8163 - MINOR: http: export function http_msg_analyzer() 8164 - MINOR: http: split initialization 8165 - MINOR: lua: reset pointer after use 8166 - MINOR: lua: identify userdata objects 8167 - MEDIUM: lua: use the function lua_rawset in place of lua_settable 8168 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action. 8169 - CLEANUP: lua: use calloc in place of malloc 8170 - BUG/MEDIUM: lua: longjmp function must be unregistered 8171 - BUG/MEDIUM: lua: forces a garbage collection 8172 - BUG/MEDIUM: lua: wakeup task on bad conditions 8173 - MINOR: standard: avoid DNS resolution from the function str2sa_range() 8174 - MINOR: lua: extend socket address to support non-IP families 8175 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup 8176 - BUG/MEDIUM: lua: socket destroy before reading pending data 8177 - MEDIUM: lua: change the GC policy 8178 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket 8179 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume 8180 - MINOR: applet: add init function 8181 - MINOR: applet: add an execution timeout 8182 - MINOR: stream/applet: add use-service action 8183 - MINOR: lua: add AppletTCP class and service 8184 - MINOR: lua: add AppletHTTP class and service 8185 - DOC: lua: some documentation update 8186 - DOC: add the documentation about internal circular lists 8187 - DOC: add a CONTRIBUTING file 8188 - DOC: add a MAINTAINERS file 8189 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes 8190 - DOC: update coding-style to reference checkpatch.pl 8191 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries 8192 - BUG/MINOR: args: add name for ARGT_VAR 8193 - DOC: add more entries to MAINTAINERS 8194 - DOC: add more entries to MAINTAINERS 8195 - CLEANUP: stream-int: remove obsolete function si_applet_call() 8196 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name 8197 - BUG/MEDIUM: http: do not dereference strm_li(stream) 8198 - BUG/MEDIUM: proxy: do not dereference strm_li(stream) 8199 - BUG/MEDIUM: stream: do not dereference strm_li(stream) 8200 - MINOR: stream-int: use si_release_endpoint() to close idle conns 8201 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers 8202 - BUG/MEDIUM: acl: always accept match "found" 8203 - MINOR: applet: rename applet_runq to applet_active_queue 8204 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity 8205 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts 8206 - MINOR: stream-int: implement a new stream_int_update() function 8207 - MEDIUM: stream-int: factor out the stream update functions 8208 - MEDIUM: stream-int: call stream_int_update() from si_update() 8209 - MINOR: stream-int: export stream_int_update_* 8210 - MINOR: stream-int: move the applet_pause call out of the stream updates 8211 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb 8212 - MINOR: stream-int: implement the stream_int_notify() function 8213 - MEDIUM: stream-int: use the same stream notification function for applets and conns 8214 - MEDIUM: stream-int: completely remove stream_int_update_embedded() 8215 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb() 8216 - BUG/MEDIUM: applet: fix reporting of broken write situation 8217 - BUG/MINOR: stats: do not call cli_release_handler 3 times 8218 - BUG/MEDIUM: cli: properly handle closed output 8219 - MINOR: cli: do not call the release handler on internal error. 8220 - BUG/MEDIUM: stream-int: avoid double-call to applet->release 8221 - DEBUG: add p_malloc() to return a poisonned memory area 8222 - CLEANUP: lua: remove unneeded memset(0) after calloc() 8223 - MINOR: lua: use the proper applet wakeup mechanism 8224 - BUG/MEDIUM: lua: better fix for the protocol check 8225 - BUG/MEDIUM: lua: properly set the target on the connection 8226 - MEDIUM: actions: pass a new "flags" argument to custom actions 8227 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call 8228 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions 8229 - MEDIUM: lua: only allow actions to yield if not in a final call 8230 - DOC: clarify how to make use of abstract sockets in socat 8231 - CLEANUP: config: make the errorloc/errorfile messages less confusing 8232 - MEDIUM: action: add a new flag ACT_FLAG_FIRST 8233 - BUG/MINOR: config: check that tune.bufsize is always positive 8234 - MEDIUM: config: set tune.maxrewrite to 1024 by default 8235 - DOC: add David Carlier as maintainer of da.c 8236 - DOC: fix some broken unexpected unicode chars in the Lua doc. 8237 - BUG/MEDIUM: proxy: ignore stopped peers 8238 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop() 8239 - MEDIUM: init: completely deallocate unused peers 8240 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions 8241 - DOC: remove outdated actions lists on tcp-request/response 8242 - MEDIUM: tcp: add new tcp action "silent-drop" 8243 - DOC: add URLs to optional libraries in the README 8244 82452015/09/14 : 1.6-dev5 8246 - MINOR: dns: dns_resolution structure update: time_t to unsigned int 8247 - BUG/MEDIUM: dns: DNS resolution doesn't start 8248 - BUG/MAJOR: dns: dns client resolution infinite loop 8249 - MINOR: dns: coding style update 8250 - MINOR: dns: new bitmasks to use against DNS flags 8251 - MINOR: dns: dns_nameserver structure update: new counter for truncated response 8252 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED 8253 - MEDIUM: dns: handling of truncated response 8254 - MINOR: DNS client query type failover management 8255 - MINOR: dns: no expected DNS record type found 8256 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet 8257 - BUG/MINOR: DNS request retry counter used for retry only 8258 - DOC: DNS documentation updated 8259 - MEDIUM: actions: remove ACTION_STOP 8260 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis) 8261 - BUG/MINOR: lua: last log character truncated. 8262 - CLEANUP: typo: bad indent 8263 - CLEANUP: actions: missplaced includes 8264 - MINOR: build: missing header 8265 - CLEANUP: lua: Merge log functions 8266 - BUG/MAJOR: http: don't manipulate the server connection if it's killed 8267 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry 8268 - BUG/MAJOR: http: don't call http_send_name_header() after an error 8269 - MEDIUM: tools: make str2sa_range() optionally return the FQDN 8270 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses 8271 - BUG/MEDIUM: dns: use the correct server hostname when resolving 8272 82732015/08/30 : 1.6-dev4 8274 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings 8275 - DOC: typo in 'redirect', 302 code meaning 8276 - DOC: typos in tcp-check expect examples 8277 - DOC: resolve-prefer default value and default-server update 8278 - MINOR: DNS counters: increment valid counter 8279 - BUG/MEDIUM: DNS resolution response parsing broken 8280 - MINOR: server: add new SRV_ADMF_CMAINT flag 8281 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT 8282 - BUG/MEDIUM: dns: wrong first time DNS resolution 8283 - BUG/MEDIUM: lua: Lua tasks fail to start. 8284 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used 8285 - DOC/MINOR: fix OpenBSD versions where haproxy works 8286 - MINOR: 51d: unable to start haproxy without "51degrees-data-file" 8287 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement. 8288 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release. 8289 - BUILD: ssl: Allow building against libssl without SSLv3. 8290 - DOC: clarify some points about SSL and the proxy protocol 8291 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide 8292 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF> 8293 - DOC: match several lua configuration option names to those implemented in code 8294 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user 8295 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command 8296 - MINOR: stream: initialize the current_rule field to NULL on stream init 8297 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions. 8298 - CLEANUP: proto_http: remove useless initialisation 8299 - CLEANUP: http/tcp actions: remove the scope member 8300 - BUG/MINOR: proto_tcp: custom action continue is ignored 8301 - MINOR: proto_tcp: add session in the action prototype 8302 - MINOR: vars: reduce the code size of some wrappers 8303 - MINOR: Move http method enum from proto_http to sample 8304 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts 8305 - MINOR: sample/proto_tcp: export "smp_fetch_src" 8306 - MEDIUM: cli: rely on the map's output type instead of the sample type 8307 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session 8308 - BUG/MEDIUM: vars: segfault during the configuration parsing 8309 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream 8310 - BUG/MEDIUM: lua: bad error processing 8311 - MINOR: samples: rename a struct from sample_storage to sample_data 8312 - MINOR: samples: rename some struct member from "smp" to "data" 8313 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample" 8314 - MINOR: samples: extract the anonymous union and create the union sample_value 8315 - MINOR: samples: rename union from "data" to "u" 8316 - MEDIUM: 51degrees: Adapt the 51Degrees library 8317 - MINOR: samples: data assignation simplification 8318 - MEDIUM: pattern/map: Maps can returns various types 8319 - MINOR: map: The map can return IPv4 and IPv6 8320 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs 8321 - MINOR: actions: Remove the data opaque pointer 8322 - MINOR: lua: use the hlua_rule type in place of opaque type 8323 - MINOR: vars: use the vars types as argument in place of opaque type 8324 - MINOR: proto_http: use an "expr" type in place of generic opaque type. 8325 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line 8326 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" 8327 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id 8328 - MEDIUM: track-sc: Move the track-sc configuration storage in the union 8329 - MEDIUM: capture: Move the capture configuration storage in the union 8330 - MINOR: actions: add "from" information 8331 - MINOR: actions: remove the mark indicating the last entry in enum 8332 - MINOR: actions: Declare all the embedded actions in the same header file 8333 - MINOR: actions: change actions names 8334 - MEDIUM: actions: Add standard return code for the action API 8335 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs 8336 - MINOR: proto_tcp: proto_tcp.h is now useles 8337 - MINOR: actions: mutualise the action keyword lookup 8338 - MEDIUM: actions: Normalize the return code of the configuration parsers 8339 - MINOR: actions: Remove wrappers 8340 - MAJOR: stick-tables: use sample types in place of dedicated types 8341 - MEDIUM: stick-tables: use the sample type names 8342 - MAJOR: stick-tables: remove key storage from the key struct 8343 - MEDIUM: stick-tables: Add GPT0 in the stick tables 8344 - MINOR: stick-tables: Add GPT0 access 8345 - MINOR: stick-tables: Add GPC0 actions 8346 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault 8347 - DOC: ssl: missing LF 8348 - MINOR: lua: add core.done() function 8349 - DOC: fix function name 8350 - BUG/MINOR: lua: in some case a sample may remain undefined 8351 - DOC: fix "http_action_set_req_line()" comments 8352 - MINOR: http: Action for manipulating the returned status code. 8353 - MEDIUM: lua: turns txn:close into txn:done 8354 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call 8355 - BUILD: link with libdl if needed for Lua support 8356 - CLEANUP: backend: factor out objt_server() in connect_server() 8357 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection 8358 - MEDIUM: stream-int: simplify si_alloc_conn() 8359 - MINOR: stream-int: add new function si_detach_endpoint() 8360 - MINOR: server: add a list of private idle connections 8361 - MINOR: connection: add a new list member in the connection struct 8362 - MEDIUM: stream-int: queue idle connections at the server 8363 - MINOR: stream-int: make si_idle_conn() only accept valid connections 8364 - MINOR: server: add a list of already used idle connections 8365 - MINOR: connection: add a new flag CO_FL_PRIVATE 8366 - MINOR: config: add new setting "http-reuse" 8367 - MAJOR: backend: initial work towards connection reuse 8368 - MAJOR: backend: improve the connection reuse mechanism 8369 - MEDIUM: backend: implement "http-reuse safe" 8370 - MINOR: server: add a list of safe, already reused idle connections 8371 - MEDIUM: backend: add the "http-reuse aggressive" strategy 8372 - DOC: document the new http-reuse directive 8373 - DOC: internals: document next steps for HTTP connection reuse 8374 - DOC: mention that %ms is left-padded with zeroes. 8375 - MINOR: init: indicate to check 'bind' lines when no listeners were found. 8376 - MAJOR: http: remove references to appsession 8377 - CLEANUP: config: remove appsession initialization 8378 - CLEANUP: appsession: remove appsession.c and sessionhash.c 8379 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg 8380 - CLEANUP: proxy: remove last references to appsession 8381 - CLEANUP: appsession: remove the last include files 8382 - DOC: remove documentation about appsession 8383 - CLEANUP: .gitignore: ignore more test files 8384 - CLEANUP: .gitignore: finally ignore everything but what is known. 8385 - MEDIUM: config: emit a warning on a frontend without listener 8386 - DOC: add doc/internals/entities-v2.txt 8387 - DOC: add doc/linux-syn-cookies.txt 8388 - DOC: add design thoughts on HTTP/2 8389 - DOC: add some thoughts on connection sharing for HTTP/2 8390 - DOC: add design thoughts on dynamic buffer allocation 8391 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry 8392 - DOC: add new file intro.txt 8393 - MAJOR: tproxy: remove support for cttproxy 8394 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 8395 - DOC: lua: replace txn:close with txn:done in lua-api 8396 - DOC: intro: minor updates and fixes 8397 - DOC: intro: fix too long line. 8398 - DOC: fix example of http-request using ssl_fc_session_id 8399 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode 8400 - CLEANUP: lua: fix some indent issues 8401 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice 8402 - DOC: lua: mention than txn:close was renamed txn:done. 8403 84042015/07/22 : 1.6-dev3 8405 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type() 8406 - MEDIUM: http: Add new 'set-src' option to http-request 8407 - DOC usesrc root privileges requirments 8408 - BUG/MINOR: dns: wrong time unit for some DNS default parameters 8409 - MINOR: proxy: bit field for proxy_find_best_match diff status 8410 - MINOR: server: new server flag: SRV_F_FORCED_ID 8411 - MINOR: server: server_find functions: id, name, best_match 8412 - DOC: dns: fix chapters syntax 8413 - BUILD/MINOR: tools: rename popcount to my_popcountl 8414 - BUILD: add netbsd TARGET 8415 - MEDIUM: 51Degrees code refactoring and cleanup 8416 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection 8417 - DOC: add notes about the "51degrees-cache-size" parameter 8418 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str 8419 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing 8420 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension 8421 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext 8422 - BUG/MINOR: lua: type error in the arguments wrapper 8423 - CLEANUP: vars: remove unused struct 8424 - BUG/MINOR: http/sample: gmtime/localtime can fail 8425 - MINOR: standard: add 64 bits conversion functions 8426 - MAJOR: sample: converts uint and sint in 64 bits signed integer 8427 - MAJOR: arg: converts uint and sint in sint 8428 - MEDIUM: sample: switch to saturated arithmetic 8429 - MINOR: vars: returns variable content 8430 - MEDIUM: vars/sample: operators can use variables as parameter 8431 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id 8432 - BUILD/MINOR: lua: fix a harmless build warning 8433 - BUILD/MINOR: stats: fix build warning due to condition always true 8434 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon 8435 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags 8436 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined 8437 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used 8438 - MINOR: vars: make the accounting not depend on the stream 8439 - MEDIUM: vars: move the session variables to the session, not the stream 8440 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched 8441 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data 8442 - BUG/MAJOR: tcp: tcp rulesets were still broken 8443 - MINOR: stats: improve compression stats reporting 8444 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses 8445 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const 8446 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial() 8447 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives() 8448 - MINOR: args: add new context for servers 8449 - MINOR: stream: maintain consistence between channel_forward and HTTP forward 8450 - MINOR: ssl: provide ia function to set the SNI extension on a connection 8451 - MEDIUM: ssl: add sni support on the server lines 8452 - CLEANUP: stream: remove a useless call to si_detach() 8453 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler() 8454 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach() 8455 - MINOR: stream-int: only use si_release_endpoint() to release a connection 8456 - MINOR: standard: provide htonll() and ntohll() 8457 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char 8458 - BUG/MAJOR: dns: fix the length of the string to be copied 8459 84602015/06/17 : 1.6-dev2 8461 - BUG/MINOR: ssl: Display correct filename in error message 8462 - MEDIUM: logs: Add HTTP request-line log format directives 8463 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f 8464 - BUG/MINOR: check: fix tcpcheck error message 8465 - MINOR: use an int instead of calling tcpcheck_get_step_id 8466 - MINOR: tcpcheck_rule structure update 8467 - MINOR: include comment in tcpcheck error log 8468 - DOC: tcpcheck comment documentation 8469 - MEDIUM: server: add support for changing a server's address 8470 - MEDIUM: server: change server ip address from stats socket 8471 - MEDIUM: protocol: add minimalist UDP protocol client 8472 - MEDIUM: dns: implement a DNS resolver 8473 - MAJOR: server: add DNS-based server name resolution 8474 - DOC: server name resolution + proto DNS 8475 - MINOR: dns: add DNS statistics 8476 - MEDIUM: http: configurable http result codes for http-request deny 8477 - BUILD: Compile clean when debug options defined 8478 - MINOR: lru: Add the possibility to free data when an item is removed 8479 - MINOR: lru: Add lru64_lookup function 8480 - MEDIUM: ssl: Add options to forge SSL certificates 8481 - MINOR: ssl: Export functions to manipulate generated certificates 8482 - MEDIUM: config: add DeviceAtlas global keywords 8483 - MEDIUM: global: add the DeviceAtlas required elements to struct global 8484 - MEDIUM: sample: add the da-csv converter 8485 - MEDIUM: init: DeviceAtlas initialization 8486 - BUILD: Makefile: add options to build with DeviceAtlas 8487 - DOC: README: explain how to build with DeviceAtlas 8488 - BUG/MEDIUM: http: fix the url_param fetch 8489 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized 8490 - MAJOR: peers: peers protocol version 2.0 8491 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed. 8492 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified. 8493 - MEDIUM: peers: support of any stick-table data-types for sync 8494 - BUG/MAJOR: sample: regression on sample cast to stick table types. 8495 - CLEANUP: deinit: remove codes for cleaning p->block_rules 8496 - DOC: Fix L4TOUT typo in documentation 8497 - DOC: set-log-level in Logging section preamble 8498 - BUG/MEDIUM: compat: fix segfault on FreeBSD 8499 - MEDIUM: check: include server address and port in the send-state header 8500 - MEDIUM: backend: Allow redispatch on retry intervals 8501 - MINOR: Add TLS ticket keys reference and use it in the listener struct 8502 - MEDIUM: Add support for updating TLS ticket keys via socket 8503 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key" 8504 - MINOR: Add sample fetch which identifies if the SSL session has been resumed 8505 - DOC: Update doc about weight, act and bck fields in the statistics 8506 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten 8507 - MINOR: ssl: add a destructor to free allocated SSL ressources 8508 - MEDIUM: ssl: add the possibility to use a global DH parameters file 8509 - MEDIUM: ssl: replace standards DH groups with custom ones 8510 - MEDIUM: stats: Add enum srv_stats_state 8511 - MEDIUM: stats: Separate server state and colour in stats 8512 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set 8513 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent) 8514 - MEDIUM: Lower priority of email alerts for log-health-checks messages 8515 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state 8516 - MEDIUM: Document when email-alerts are sent 8517 - BUG/MEDIUM: lua: bad argument number in analyser and in error message 8518 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip 8519 - BUG/MINOR: utf8: remove compilator warning 8520 - MEDIUM: map: uses HAProxy facilities to store default value 8521 - BUG/MINOR: lua: error in detection of mandatory arguments 8522 - BUG/MINOR: lua: set current proxy as default value if it is possible 8523 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run. 8524 - BUG/MEDIUM: lua: undetected infinite loop 8525 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value 8526 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax 8527 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype 8528 - BUILD: lua: it miss the '-ldl' directive 8529 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet 8530 - MINOR: http: split the function http_action_set_req_line() in two parts 8531 - MINOR: http: split http_transform_header() function in two parts. 8532 - MINOR: http: export function inet_set_tos() 8533 - MINOR: lua: txn: add function set_(loglevel|tos|mark) 8534 - MINOR: lua: create and register HTTP class 8535 - DOC: lua: fix some typos 8536 - MINOR: lua: add log functions 8537 - BUG/MINOR: lua: Fix SSL initialisation 8538 - DOC: lua: some fixes 8539 - MINOR: lua: (req|res)_get_headers return more than one header value 8540 - MINOR: lua: map system integration in Lua 8541 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser 8542 - MINOR: sample: add url_dec converter 8543 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers 8544 - MEDIUM: sample change the prototype of sample-fetches and converters functions 8545 - MINOR: sample: fill the struct sample with the options. 8546 - MEDIUM: sample: change the prototype of sample-fetches functions 8547 - MINOR: http: split the url_param in two parts 8548 - CLEANUP: http: bad indentation 8549 - MINOR: http: add body_param fetch 8550 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer 8551 - DOC: http: req.body_param documentation 8552 - MINOR: proxy: custom capture declaration 8553 - MINOR: capture: add two "capture" converters 8554 - MEDIUM: capture: Allow capture with slot identifier 8555 - MINOR: http: add array of generic pointers in http_res_rules 8556 - MEDIUM: capture: adds http-response capture 8557 - MINOR: common: escape CSV strings 8558 - MEDIUM: stats: escape some strings in the CSV dump 8559 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing 8560 - MINOR: lua: Lua tcp action are not final action 8561 - DOC: lua: schematics about lua socket organization 8562 - BUG/MINOR: debug: display (null) in place of "meth" 8563 - DOC: mention the "lua action" in documentation 8564 - MINOR: standard: add function that converts signed int to a string 8565 - BUG/MINOR: sample: wrong conversion of signed values 8566 - MEDIUM: sample: Add type any 8567 - MINOR: debug: add a special converter which display its input sample content. 8568 - MINOR: tcp: increase the opaque data array 8569 - MINOR: tcp/http/conf: extends the keyword registration options 8570 - MINOR: build: fix build dependency 8571 - MEDIUM: vars: adds support of variables 8572 - MINOR: vars: adds get and set functions 8573 - MINOR: lua: Variable access 8574 - MINOR: samples: add samples which returns constants 8575 - BUG/MINOR: vars/compil: fix some warnings 8576 - BUILD: add 51degrees options to makefile. 8577 - MINOR: global: add several 51Degrees members to global 8578 - MINOR: config: add 51Degrees config parsing. 8579 - MINOR: init: add 51Degrees initialisation code 8580 - MEDIUM: sample: add fiftyone_degrees converter. 8581 - MEDIUM: deinit: add cleanup for 51Degrees to deinit 8582 - MEDIUM: sample: add trie support to 51Degrees 8583 - DOC: add 51Degrees notes to configuration.txt. 8584 - DOC: add build indications for 51Degrees to README. 8585 - MEDIUM: cfgparse: introduce weak and strong quoting 8586 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management 8587 - MINOR: cfgparse: remove line size limitation 8588 - MEDIUM: cfgparse: expand environment variables 8589 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message 8590 - BUG/MEDIUM: cfgparse: segfault when userlist is misused 8591 - CLEANUP: cfgparse: remove reference to 'ruleset' section 8592 - MEDIUM: cfgparse: check section maximum number of arguments 8593 - MEDIUM: cfgparse: max arguments check in the global section 8594 - MEDIUM: cfgparse: check max arguments in the proxies sections 8595 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag 8596 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call 8597 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection 8598 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw() 8599 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw() 8600 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt 8601 - MINOR: connection: implement conn_sock_send() 8602 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send() 8603 - MEDIUM: connection: make conn_drain() perform more controls 8604 - REORG: connection: move conn_drain() to connection.c and rename it 8605 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore 8606 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put* 8607 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints 8608 - BUG/MEDIUM: peers: correctly configure the client timeout 8609 - MINOR: peers: centralize configuration of the peers frontend 8610 - MINOR: proxy: store the default target into the frontend's configuration 8611 - MEDIUM: stats: use frontend_accept() as the accept function 8612 - MEDIUM: peers: use frontend_accept() instead of peer_accept() 8613 - CLEANUP: listeners: remove unused timeout 8614 - MEDIUM: listener: store the default target per listener 8615 - BUILD: fix automatic inclusion of libdl. 8616 - MEDIUM: lua: implement a simple memory allocator 8617 - MEDIUM: compression: postpone buffer adjustments after compression 8618 - MEDIUM: compression: don't send leading zeroes with chunk size 8619 - BUG/MINOR: compression: consider the expansion factor in init 8620 - MINOR: http: check the algo name "identity" instead of the function pointer 8621 - CLEANUP: compression: statify all algo-specific functions 8622 - MEDIUM: compression: add a distinction between UA- and config- algorithms 8623 - MEDIUM: compression: add new "raw-deflate" compression algorithm 8624 - MEDIUM: compression: split deflate_flush() into flush and finish 8625 - CLEANUP: compression: remove unused reset functions 8626 - MAJOR: compression: integrate support for libslz 8627 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name 8628 - BUG/MAJOR: http: null-terminate the http actions keywords list 8629 - CLEANUP: lua: remove the unused hlua_sleep memory pool 8630 - BUG/MAJOR: lua: use correct object size when initializing a new converter 8631 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs 8632 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new() 8633 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp 8634 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn. 8635 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn 8636 - CLEANUP: lua: rename variable "sc" for struct hlua_smp 8637 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp 8638 - REORG/MAJOR: session: rename the "session" entity to "stream" 8639 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_* 8640 - MINOR: session: start to reintroduce struct session 8641 - MEDIUM: stream: allocate the session when a stream is created 8642 - MEDIUM: stream: move the listener's pointer to the session 8643 - MEDIUM: stream: move the frontend's pointer to the session 8644 - MINOR: session: add a pointer to the session's origin 8645 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end 8646 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL 8647 - MEDIUM: http: move header captures from http_txn to struct stream 8648 - MINOR: http: create a dedicated pool for http_txn 8649 - MAJOR: http: move http_txn out of struct stream 8650 - MAJOR: sample: don't pass l7 anymore to sample fetch functions 8651 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7 8652 - MEDIUM: http: remove the now useless http_txn from {req/res} rules 8653 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper() 8654 - MAJOR: sample: pass a pointer to the session to each sample fetch function 8655 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin 8656 - CLEANUP: stream: don't set ->target to the incoming connection anymore 8657 - MINOR: stream: move session initialization before the stream's 8658 - MINOR: session: store the session's accept date 8659 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions 8660 - MINOR: session: implement session_free() and use it everywhere 8661 - MINOR: session: add stick counters to the struct session 8662 - REORG: stktable: move the stkctr_* functions from stream to sticktable 8663 - MEDIUM: streams: support looking up stkctr in the session 8664 - MEDIUM: session: update the session's stick counters upon session_free() 8665 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset 8666 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session 8667 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept() 8668 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier 8669 - MAJOR: stream: don't initialize the stream anymore in stream_accept 8670 - MEDIUM: session: remove the task pointer from the session 8671 - REORG: session: move the session parts out of stream.c 8672 - MINOR: stream-int: make appctx_new() take the applet in argument 8673 - MEDIUM: peers: move the appctx initialization earlier 8674 - MINOR: session: introduce session_new() 8675 - MINOR: session: make use of session_new() when creating a new session 8676 - MINOR: peers: make use of session_new() when creating a new session 8677 - MEDIUM: peers: initialize the task before the stream 8678 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready 8679 - CLEANUP: stream.c: do not re-attach the connection to the stream 8680 - MEDIUM: stream: isolate connection-specific initialization code 8681 - MEDIUM: stream: also accept appctx as origin in stream_accept_session() 8682 - MEDIUM: peers: make use of stream_accept_session() 8683 - MEDIUM: frontend: make ->accept only return +/-1 8684 - MEDIUM: stream: return the stream upon accept() 8685 - MEDIUM: frontend: move some stream initialisation to stream_new() 8686 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd() 8687 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore 8688 - MEDIUM: frontend: move some remaining stream settings to stream_new() 8689 - CLEANUP: frontend: remove one useless local variable 8690 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new() 8691 - MEDIUM: lua: make use of stream_new() to create an outgoing connection 8692 - MINOR: lua: minor cleanup in hlua_socket_new() 8693 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new() 8694 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create() 8695 - CLEANUP: stream-int: swap stream-int and appctx declarations 8696 - CLEANUP: namespaces: fix protection against multiple inclusions 8697 - MINOR: session: maintain the session count stats in the session, not the stream 8698 - MEDIUM: session: adjust the connection flags before stream_new() 8699 - MINOR: stream: pass the pointer to the origin explicitly to stream_new() 8700 - CLEANUP: poll: move the conditions for waiting out of the poll functions 8701 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners 8702 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only 8703 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset 8704 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified 8705 - DOC: update the entities diagrams 8706 - BUG/MEDIUM: http: properly retrieve the front connection 8707 - MINOR: applet: add a new "owner" pointer in the appctx 8708 - MEDIUM: applet: make the applet not depend on a stream interface anymore 8709 - REORG: applet: move the applet definitions out of stream_interface 8710 - CLEANUP: applet: rename struct si_applet to applet 8711 - REORG: stream-int: create si_applet_ops dedicated to applets 8712 - MEDIUM: applet: add basic support for an applet run queue 8713 - MEDIUM: applet: implement a run queue for active appctx 8714 - MEDIUM: stream-int: add a new function si_applet_done() 8715 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers 8716 - MAJOR: stream: use a regular ->update for all stream interfaces 8717 - MEDIUM: dumpstats: don't unregister the applet anymore 8718 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler 8719 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet 8720 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O 8721 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put} 8722 - MEDIUM: stream-int: pause the appctx if the task is woken up 8723 - BUG/MAJOR: tcp: only call registered actions when they're registered 8724 - BUG/MEDIUM: peers: fix applet scheduling 8725 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling 8726 - MINOR: tools: provide an rdtsc() function for time comparisons 8727 - IMPORT: lru: import simple ebtree-based LRU functions 8728 - IMPORT: hash: import xxhash-r39 8729 - MEDIUM: pattern: add a revision to all pattern expressions 8730 - MAJOR: pattern: add LRU-based cache on pattern matching 8731 - BUG/MEDIUM: http: remove content-length from chunked messages 8732 - DOC: http: update the comments about the rules for determining transfer-length 8733 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1 8734 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request 8735 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding 8736 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230 8737 - MEDIUM: http: disable support for HTTP/0.9 by default 8738 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408 8739 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies 8740 - MEDIUM: init: don't stop proxies in parent process when exiting 8741 - MINOR: stick-table: don't attach to peers in stopped state 8742 - MEDIUM: config: initialize stick-tables after peers, not before 8743 - MEDIUM: peers: add the ability to disable a peers section 8744 - MINOR: peers: store the pointer to the signal handler 8745 - MEDIUM: peers: unregister peers that were never started 8746 - MEDIUM: config: propagate the table's process list to the peers sections 8747 - MEDIUM: init: stop any peers section not bound to the correct process 8748 - MEDIUM: config: validate that peers sections are bound to exactly one process 8749 - MAJOR: peers: allow peers section to be used with nbproc > 1 8750 - DOC: relax the peers restriction to single-process 8751 - DOC: document option http-ignore-probes 8752 - DOC: fix the comments about the meaning of msg->sol in HTTP 8753 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body 8754 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param 8755 - MEDIUM: stream: move HTTP request body analyser before process_common 8756 - MEDIUM: http: add a new option http-buffer-request 8757 - MEDIUM: http: provide 3 fetches for the body 8758 - DOC: update the doc on the proxy protocol 8759 - BUILD: pattern: fix build warnings introduced in the LRU cache 8760 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats 8761 - CLEANUP: config: fix misleading information in error message. 8762 - MINOR: config: report the number of processes using a peers section in the error case 8763 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy 8764 - MEDIUM: http: add new "capture" action for http-request 8765 - BUG/MEDIUM: http: fix the http-request capture parser 8766 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels 8767 - BUILD/MINOR: ssl: fix build failure introduced by recent patch 8768 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules 8769 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks 8770 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end 8771 - CLEANUP: checks: simplify the loop processing of tcp-checks 8772 - BUG/MAJOR: checks: always check for end of list before proceeding 8773 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct 8774 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment 8775 - MEDIUM: http: make url_param iterate over multiple occurrences 8776 - BUG/MEDIUM: peers: apply a random reconnection timeout 8777 - MEDIUM: config: reject invalid config with name duplicates 8778 - MEDIUM: config: reject conflicts in table names 8779 - CLEANUP: proxy: make the proxy lookup functions more user-friendly 8780 - MINOR: proxy: simply ignore duplicates in proxy name lookups 8781 - MINOR: config: don't open-code proxy name lookups 8782 - MEDIUM: config: clarify the conflicting modes detection for backend rules 8783 - CLEANUP: proxy: remove now unused function findproxy_mode() 8784 - MEDIUM: stick-table: remove the now duplicate find_stktable() function 8785 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions 8786 - MINOR: proxy: add a new function proxy_find_by_id() 8787 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced 8788 - MEDIUM: proxy: add a new proxy_find_best_match() function 8789 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules() 8790 - MINOR: http: prepare support for parsing redirect actions on responses 8791 - MEDIUM: http: implement http-response redirect rules 8792 - MEDIUM: http: no need to close the request on redirect if data was parsed 8793 - BUG/MEDIUM: http: fix body processing for the stats applet 8794 - BUG/MINOR: da: fix log-level comparison to emove annoying warning 8795 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS 8796 - CLEANUP: da: move the converter registration to da.c 8797 - CLEANUP: da: register the config keywords in da.c 8798 - CLEANUP: adjust the envelope name in da.h to reflect the file name 8799 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c 8800 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC 8801 - BUILD: fix build warning when not using 51degrees 8802 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC 8803 - BUILD: ssl: fix recent build breakage on older SSL libs 8804 88052015/03/11 : 1.6-dev1 8806 - CLEANUP: extract temporary $CFG to eliminate duplication 8807 - CLEANUP: extract temporary $BIN to eliminate duplication 8808 - CLEANUP: extract temporary $PIDFILE to eliminate duplication 8809 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication 8810 - CLEANUP: extract quiet_check() to avoid duplication 8811 - BUG/MINOR: don't start haproxy on reload 8812 - DOC: Address issue where documentation is excluded due to a gitignore rule. 8813 - BUG/MEDIUM: systemd: set KillMode to 'mixed' 8814 - BUILD: fix "make install" to support spaces in the install dirs 8815 - BUG/MINOR: config: http-request replace-header arg typo 8816 - BUG: config: error in http-response replace-header number of arguments 8817 - DOC: missing track-sc* in http-request rules 8818 - BUILD: lua: missing ifdef related to SSL when enabling LUA 8819 - BUG/MEDIUM: regex: fix pcre_study error handling 8820 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT 8821 - BUG/MINOR: Fix search for -p argument in systemd wrapper. 8822 - MEDIUM: Improve signal handling in systemd wrapper. 8823 - DOC: fix typo in Unix Socket commands 8824 - BUG/MEDIUM: checks: external checks can't change server status to UP 8825 - BUG/MEDIUM: checks: segfault with external checks in a backend section 8826 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result 8827 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm 8828 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported 8829 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend 8830 - BUG/MINOR: log: fix request flags when keep-alive is enabled 8831 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks 8832 - MINOR: checks: allow external checks in backend sections 8833 - MEDIUM: checks: provide environment variables to the external checks 8834 - MINOR: checks: update dynamic environment variables in external checks 8835 - DOC: checks: environment variables used by "external-check command" 8836 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used 8837 - MINOR: ssl: load certificates in alphabetical order 8838 - BUG/MINOR: checks: prevent http keep-alive with http-check expect 8839 - MINOR: lua: typo in an error message 8840 - MINOR: report the Lua version in -vv 8841 - MINOR: lua: add a compilation error message when compiled with an incompatible version 8842 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua 8843 - BUILD: try to automatically detect the Lua library name 8844 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration 8845 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout 8846 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header 8847 - MEDIUM: connection: add new bit in Proxy Protocol V2 8848 - BUG/MINOR: ssl: rejects OCSP response without nextupdate. 8849 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses. 8850 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice. 8851 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer. 8852 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs 8853 - MINOR: ssl: add statement to force some ssl options in global. 8854 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates 8855 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM. 8856 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string. 8857 - MINOR: samples: adds the bytes converter. 8858 - MINOR: samples: adds the field converter. 8859 - MINOR: samples: add the word converter. 8860 - BUG/MINOR: server: move the directive #endif to the end of file 8861 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped 8862 - DOC: fix a few typos 8863 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents 8864 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized" 8865 - BUG/MINOR: parse: refer curproxy instead of proxy 8866 - BUG/MINOR: parse: check the validity of size string in a more strict way 8867 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS 8868 - DOC: expand the docs for the provided stats. 8869 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure. 8870 - MEDIUM: ssl: Certificate Transparency support 8871 - MEDIUM: stats: proxied stats admin forms fix 8872 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200 8873 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information 8874 - MAJOR: namespace: add Linux network namespace support 8875 - MINOR: systemd: Check configuration before start 8876 - BUILD: ssl: handle boringssl in openssl version detection 8877 - BUILD: ssl: disable OCSP when using boringssl 8878 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl 8879 - MINOR: ssl: don't use boringssl's cipher_list 8880 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support 8881 - MINOR: stats: fix minor typo in HTML page 8882 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper 8883 - MEDIUM: Add support for configurable TLS ticket keys 8884 - DOC: Document the new tls-ticket-keys bind keyword 8885 - DOC: clearly state that the "show sess" output format is not fixed 8886 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer() 8887 - DOC: httplog does not support 'no' 8888 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange 8889 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list. 8890 - BUG/MEDIUM: Consistently use 'check' in process_chk 8891 - MEDIUM: Add external check 8892 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config 8893 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero 8894 - MEDIUM: Remove connect_chk 8895 - MEDIUM: Refactor init_check and move to checks.c 8896 - MEDIUM: Add free_check() helper 8897 - MEDIUM: Move proto and addr fields struct check 8898 - MEDIUM: Attach tcpcheck_rules to check 8899 - MEDIUM: Add parsing of mailers section 8900 - MEDIUM: Allow configuration of email alerts 8901 - MEDIUM: Support sending email alerts 8902 - DOC: Document email alerts 8903 - MINOR: Remove trailing '.' from email alert messages 8904 - MEDIUM: Allow suppression of email alerts by log level 8905 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error 8906 - MINOR: deinit: fix memory leak 8907 - MINOR: http: export the function 'smp_fetch_base32' 8908 - BUG/MEDIUM: http: tarpit timeout is reset 8909 - MINOR: sample: add "json" converter 8910 - BUG/MEDIUM: pattern: don't load more than once a pattern list. 8911 - MINOR: map/acl/dumpstats: remove the "Done." message 8912 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection 8913 - BUG/MINOR: pattern: error message missing 8914 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match 8915 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word 8916 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay 8917 - MEDIUM: task: call session analyzers if the task is woken by a message. 8918 - MEDIUM: protocol: automatically pick the proto associated to the connection. 8919 - MEDIUM: channel: wake up any request analyzer on response activity 8920 - MINOR: converters: add a "void *private" argument to converters 8921 - MINOR: converters: give the session pointer as converter argument 8922 - MINOR: sample: add private argument to the struct sample_fetch 8923 - MINOR: global: export function and permits to not resolve DNS names 8924 - MINOR: sample: add function for browsing samples. 8925 - MINOR: global: export many symbols. 8926 - MINOR: includes: fix a lot of missing or useless includes 8927 - MEDIUM: tcp: add register keyword system. 8928 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied. 8929 - MEDIUM: http: change the code returned by the response processing rule functions 8930 - MEDIUM: http/tcp: permit to resume http and tcp custom actions 8931 - MINOR: channel: functions to get data from a buffer without copy 8932 - MEDIUM: lua: lua integration in the build and init system. 8933 - MINOR: lua: add ease functions 8934 - MINOR: lua: add runtime execution context 8935 - MEDIUM: lua: "com" signals 8936 - MINOR: lua: add the configuration directive "lua-load" 8937 - MINOR: lua: core: create "core" class and object 8938 - MINOR: lua: post initialisation bindings 8939 - MEDIUM: lua: add coroutine as tasks. 8940 - MINOR: lua: add sample and args type converters 8941 - MINOR: lua: txn: create class TXN associated with the transaction. 8942 - MINOR: lua: add shared context in the lua stack 8943 - MINOR: lua: txn: import existing sample-fetches in the class TXN 8944 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers 8945 - MINOR: lua: register and execute sample-fetches in LUA 8946 - MINOR: lua: register and execute converters in LUA 8947 - MINOR: lua: add bindings for tcp and http actions 8948 - MINOR: lua: core: add sleep functions 8949 - MEDIUM: lua: socket: add "socket" class for TCP I/O 8950 - MINOR: lua: core: pattern and acl manipulation 8951 - MINOR: lua: channel: add "channel" class 8952 - MINOR: lua: txn: object "txn" provides two objects "channel" 8953 - MINOR: lua: core: can set the nice of the current task 8954 - MINOR: lua: core: can yield an execution stack 8955 - MINOR: lua: txn: add binding for closing the client connection. 8956 - MEDIUM: lua: Lua initialisation "on demand" 8957 - BUG/MAJOR: lua: send function fails and return bad bytes 8958 - MINOR: remove unused declaration. 8959 - MINOR: lua: remove some #define 8960 - MINOR: lua: use bitfield and macro in place of integer and enum 8961 - MINOR: lua: set skeleton for Lua execution expiration 8962 - MEDIUM: lua: each yielding function returns a wake up time. 8963 - MINOR: lua: adds "forced yield" flag 8964 - MEDIUM: lua: interrupt the Lua execution for running other process 8965 - MEDIUM: lua: change the sleep function core 8966 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case 8967 - DOC: lua: Lua configuration documentation 8968 - MINOR: lua: add the struct session in the lua channel struct 8969 - BUG/MINOR: lua: set buffer if it is nnot avalaible. 8970 - BUG/MEDIUM: lua: reset flags before resuming execution 8971 - BUG/MEDIUM: lua: fix infinite loop about channel 8972 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side 8973 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API 8974 - MEDIUM: lua: use the Lua-5.3 version of the library 8975 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors 8976 - BUG/MEDIUM: lua: can't handle the response bytes 8977 - BUG/MEDIUM: lua: segfault with buffer_replace2 8978 - BUG/MINOR: lua: check buffers before initializing socket 8979 - BUG/MINOR: log: segfault if there are no proxy reference 8980 - BUG/MEDIUM: lua: sockets don't have buffer to write data 8981 - BUG/MEDIUM: lua: cannot connect socket 8982 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs 8983 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done. 8984 - BUG/MEDIUM: buffer: one byte miss in buffer free space check 8985 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster 8986 - MINOR: replace the Core object by a simple model. 8987 - MEDIUM: lua: change the objects configuration 8988 - MEDIUM: lua: create a namespace for the fetches 8989 - MINOR: converters: add function to browse converters 8990 - MINOR: lua: wrapper for converters 8991 - MINOR: lua: replace function (req|get)_channel by a variable 8992 - MINOR: lua: fetches and converters can return an empty string in place of nil 8993 - DOC: lua api 8994 - BUG/MEDIUM: sample: fix random number upper-bound 8995 - BUG/MINOR: stats:Fix incorrect printf type. 8996 - BUG/MAJOR: session: revert all the crappy client-side timeout changes 8997 - BUG/MINOR: logs: properly initialize and count log sockets 8998 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header 8999 - BUG/MINOR: counters: do not untrack counters before logging 9000 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process() 9001 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed 9002 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents 9003 - BUILD: remove TODO from the spec file and add README 9004 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time 9005 - MEDIUM: log: support a user-configurable max log line length 9006 - DOC: provide an example of how to use ssl_c_sha1 9007 - BUILD: checks: external checker needs signal.h 9008 - BUILD: checks: kill a minor warning on Solaris in external checks 9009 - BUILD: http: fix isdigit & isspace warnings on Solaris 9010 - BUG/MINOR: listener: set the listener's fd to -1 after deletion 9011 - BUG/MEDIUM: unix: failed abstract socket binding is retryable 9012 - MEDIUM: listener: implement a per-protocol pause() function 9013 - MEDIUM: listener: support rebinding during resume() 9014 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause() 9015 - DOC: explicitly mention the limits of abstract namespace sockets 9016 - DOC: minor fix on {sc,src}_kbytes_{in,out} 9017 - DOC: fix alphabetical sort of converters 9018 - MEDIUM: stick-table: implement lookup from a sample fetch 9019 - MEDIUM: stick-table: add new converters to fetch table data 9020 - MINOR: samples: add two converters for the date format 9021 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding 9022 - DOC: remove references to CPU=native in the README 9023 - DOC: mention that "compression offload" is ignored in defaults section 9024 - DOC: mention that Squid correctly responds 400 to PPv2 header 9025 - BUILD: fix dependencies between config and compat.h 9026 - MINOR: session: export the function 'smp_fetch_sc_stkctr' 9027 - MEDIUM: stick-table: make it easier to register extra data types 9028 - BUG/MINOR: http: base32+src should use the big endian version of base32 9029 - MINOR: sample: allow IP address to cast to binary 9030 - MINOR: sample: add new converters to hash input 9031 - MINOR: sample: allow integers to cast to binary 9032 - BUILD: report commit ID in git versions as well 9033 - CLEANUP: session: move the stick counters declarations to stick_table.h 9034 - MEDIUM: http: add the track-sc* actions to http-request rules 9035 - BUG/MEDIUM: connection: fix proxy v2 header again! 9036 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc* 9037 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs 9038 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter 9039 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth() 9040 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs 9041 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg() 9042 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used 9043 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix 9044 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer 9045 - MEDIUM: http: enable header manipulation for 101 responses 9046 - BUG/MEDIUM: config: propagate frontend to backend process binding again. 9047 - MEDIUM: config: properly propagate process binding between proxies 9048 - MEDIUM: config: make the frontends automatically bind to the listeners' processes 9049 - MEDIUM: config: compute the exact bind-process before listener's maxaccept 9050 - MEDIUM: config: only warn if stats are attached to multi-process bind directives 9051 - MEDIUM: config: report it when tcp-request rules are misplaced 9052 - DOC: indicate in the doc that track-sc* can wait if data are missing 9053 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay 9054 - MEDIUM: systemd-wrapper: support multiple executable versions and names 9055 - BUG/MEDIUM: remove debugging code from systemd-wrapper 9056 - BUG/MEDIUM: http: adjust close mode when switching to backend 9057 - BUG/MINOR: config: don't propagate process binding on fatal errors. 9058 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures 9059 - BUG/MINOR: tcp-check: report the correct failed step in the status 9060 - DOC: indicate that weight zero is reported as DRAIN 9061 - BUG/MEDIUM: config: avoid skipping disabled proxies 9062 - BUG/MINOR: config: do not accept more track-sc than configured 9063 - BUG/MEDIUM: backend: fix URI hash when a query string is present 9064 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR 9065 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error 9066 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol 9067 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8 9068 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets 9069 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix 9070 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage 9071 - MEDIUM: ssl: add support for smaller SSL records 9072 - MINOR: session: release a few other pools when stopping 9073 - MINOR: task: release the task pool when stopping 9074 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends 9075 - BUG/MAJOR: frontend: initialize capture pointers earlier 9076 - BUG/MINOR: stats: correctly set the request/response analysers 9077 - MAJOR: polling: centralize calls to I/O callbacks 9078 - DOC: fix typo in the body parser documentation for msg.sov 9079 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size 9080 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping) 9081 - DEBUG: pools: apply poisonning on every allocated pool 9082 - BUG/MAJOR: sessions: unlink session from list on out of memory 9083 - BUG/MEDIUM: patterns: previous fix was incomplete 9084 - BUG/MEDIUM: payload: ensure that a request channel is available 9085 - BUG/MINOR: tcp-check: don't condition data polling on check type 9086 - BUG/MEDIUM: tcp-check: don't rely on random memory contents 9087 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect 9088 - BUG/MINOR: config: fix typo in condition when propagating process binding 9089 - BUG/MEDIUM: config: do not propagate processes between stopped processes 9090 - BUG/MAJOR: stream-int: properly check the memory allocation return 9091 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2() 9092 - BUG/MAJOR: namespaces: conn->target is not necessarily a server 9093 - BUG/MEDIUM: compression: correctly report zlib_mem 9094 - CLEANUP: lists: remove dead code 9095 - CLEANUP: memory: remove dead code 9096 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions 9097 - MINOR: memory: cut pool allocator in 3 layers 9098 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count 9099 - MINOR: stream-int: retrieve session pointer from stream-int 9100 - MINOR: buffer: reset a buffer in b_reset() and not channel_init() 9101 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer 9102 - MINOR: buffer: move buffer initialization after channel initialization 9103 - MINOR: buffer: only use b_free to release buffers 9104 - MEDIUM: buffer: always assign a dummy empty buffer to channels 9105 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations 9106 - MEDIUM: channel: do not report full when buf_empty is present on a channel 9107 - MINOR: session: group buffer allocations together 9108 - MINOR: buffer: implement b_alloc_fast() 9109 - MEDIUM: buffer: implement b_alloc_margin() 9110 - MEDIUM: session: implement a basic atomic buffer allocator 9111 - MAJOR: session: implement a wait-queue for sessions who need a buffer 9112 - MAJOR: session: only allocate buffers when needed 9113 - MINOR: stats: report a "waiting" flags for sessions 9114 - MAJOR: session: only wake up as many sessions as available buffers permit 9115 - MINOR: config: implement global setting tune.buffers.reserve 9116 - MINOR: config: implement global setting tune.buffers.limit 9117 - MEDIUM: channel: implement a zero-copy buffer transfer 9118 - MEDIUM: stream-int: support splicing from applets 9119 - OPTIM: stream-int: try to send pending spliced data 9120 - CLEANUP: session: remove session_from_task() 9121 - DOC: add missing entry for log-format and clarify the text 9122 - MINOR: logs: add a new per-proxy "log-tag" directive 9123 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF 9124 - MINOR: config: extend the default max hostname length to 64 and beyond 9125 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation 9126 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size 9127 - MINOR: channel: add channel_in_transit() 9128 - MEDIUM: channel: make buffer_reserved() use channel_in_transit() 9129 - MEDIUM: channel: make bi_avail() use channel_in_transit() 9130 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected 9131 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable 9132 - MINOR: channel: rename channel_full() to !channel_may_recv() 9133 - MINOR: channel: rename buffer_reserved() to channel_reserved() 9134 - MINOR: channel: rename buffer_max_len() to channel_recv_limit() 9135 - MINOR: channel: rename bi_avail() to channel_recv_max() 9136 - MINOR: channel: rename bi_erase() to channel_truncate() 9137 - BUG/MAJOR: log: don't try to emit a log if no logger is set 9138 - MINOR: tools: add new round_2dig() function to round integers 9139 - MINOR: global: always export some SSL-specific metrics 9140 - MINOR: global: report information about the cost of SSL connections 9141 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible 9142 - MINOR: http: add a new fetch "query" to extract the request's query string 9143 - MINOR: hash: add new function hash_crc32 9144 - MINOR: samples: provide a "crc32" converter 9145 - MEDIUM: backend: add the crc32 hash algorithm for load balancing 9146 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names 9147 - BUG/MEDIUM: http: make http-request set-header compute the string before removal 9148 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts 9149 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5 9150 - MINOR: args: add type-specific flags for each arg in a list 9151 - MINOR: args: implement a new arg type for regex : ARGT_REG 9152 - MEDIUM: regex: add support for passing regex flags to regex_exec_match() 9153 - MEDIUM: samples: add a regsub converter to perform regex-based transformations 9154 - BUG/MINOR: sample: fix case sensitivity for the regsub converter 9155 - MEDIUM: http: implement http-request set-{method,path,query,uri} 9156 - DOC: fix missing closing brackend on regsub 9157 - MEDIUM: samples: provide basic arithmetic and bitwise operators 9158 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set 9159 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value 9160 - BUG/MINOR: http: abort request processing on filter failure 9161 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT 9162 - MINOR: ssl/server: add the "no-ssl-reuse" server option 9163 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session 9164 - MINOR: http: add a new function to iterate over each header line 9165 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names 9166 - MEDIUM: task: always ensure that the run queue is consistent 9167 - BUILD: Makefile: add -Wdeclaration-after-statement 9168 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration 9169 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code 9170 - MEDIUM: protocol: use a family array to index the protocol handlers 9171 - BUILD: lua: cleanup many mixed occurrences declarations & code 9172 - BUG/MEDIUM: task: fix recently introduced scheduler skew 9173 - BUG/MINOR: lua: report the correct function name in an error message 9174 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD 9175 - Revert "BUG/MEDIUM: lua: can't handle the response bytes" 9176 - MINOR: lua: convert IP addresses to type string 9177 - CLEANUP: lua: use the same function names in C and Lua 9178 - REORG/MAJOR: move session's req and resp channels back into the session 9179 - CLEANUP: remove now unused channel pool 9180 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels 9181 - MEDIUM: stream-int: add a flag indicating which side the SI is on 9182 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel 9183 - MEDIUM: stream-interface: remove now unused pointers to channels 9184 - MEDIUM: stream-int: make si_sess() use the stream int's side 9185 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int 9186 - MEDIUM: stream-int: remove any reference to the owner 9187 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers 9188 - CLEANUP: stream-int: add si_opposite() to find the other stream interface 9189 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces 9190 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel 9191 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI 9192 - MEDIUM: channel: remove now unused ->prod and ->cons pointers 9193 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res}) 9194 - CLEANUP: session: use local variables to access channels / stream ints 9195 - CLEANUP: session: don't needlessly pass a pointer to the stream-int 9196 - CLEANUP: session: don't use si_{ic,oc} when we know the session. 9197 - CLEANUP: stream-int: limit usage of si_ic/si_oc 9198 - CLEANUP: lua: limit usage of si_ic/si_oc 9199 - MINOR: channel: add chn_sess() helper to retrieve session from channel 9200 - MEDIUM: session: simplify receive buffer allocator to only use the channel 9201 - MEDIUM: lua: use CF_ISRESP to detect the channel's side 9202 - CLEANUP: lua: remove the session pointer from hlua_channel 9203 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore 9204 - MEDIUM: lua: remove struct hlua_channel 9205 - MEDIUM: lua: remove hlua_sample_fetch 9206 92072014/06/19 : 1.6-dev0 9208 - exact copy of 1.5.0 9209 92102014/06/19 : 1.5.0 9211 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'. 9212 - MEDIUM: ssl: basic OCSP stapling support. 9213 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response' 9214 - MEDIUM: ssl: add 300s supported time skew on OCSP response update. 9215 - MINOR: checks: mysql-check: Add support for v4.1+ authentication 9216 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits 9217 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description. 9218 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp 9219 - MEDIUM: Break out check establishment into connect_chk() 9220 - MEDIUM: Add port_to_str helper 9221 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section. 9222 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT. 9223 - MINOR: regex: fix a little configuration memory leak. 9224 - MINOR: regex: Create JIT compatible function that return match strings 9225 - MEDIUM: regex: replace all standard regex function by own functions 9226 - MEDIUM: regex: Remove null terminated strings. 9227 - MINOR: regex: Use native PCRE API. 9228 - MINOR: missing regex.h include 9229 - DOC: Add Exim as Proxy Protocol implementer. 9230 - BUILD: don't use type "uint" which is not portable 9231 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour 9232 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction 9233 - CLEANUP: http: don't clear CF_READ_NOEXP twice 9234 - DOC: fix proxy protocol v2 decoder example 9235 - DOC: fix remaining occurrences of "pattern extraction" 9236 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends 9237 - MINOR: logs: don't limit HTTP header captures to HTTP frontends 9238 - MINOR: sample: improve sample_fetch_string() to report partial contents 9239 - MINOR: capture: extend the captures to support non-header keys 9240 - MINOR: tcp: prepare support for the "capture" action 9241 - MEDIUM: tcp: add a new tcp-request capture directive 9242 - MEDIUM: session: allow shorter retry delay if timeout connect is small 9243 - MEDIUM: session: don't apply the retry delay when redispatching 9244 - MEDIUM: session: redispatch earlier when possible 9245 - MINOR: config: warn when tcp-check rules are used without option tcp-check 9246 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol 9247 - DOC: proxy protocol example parser was still wrong 9248 - DOC: minor updates to the proxy protocol doc 9249 - CLEANUP: connection: merge proxy proto v2 header and address block 9250 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy 9251 - MINOR: tools: add new functions to quote-encode strings 9252 - DOC: clarify the CSV format 9253 - MEDIUM: stats: report the last check and last agent's output on the CSV status 9254 - MINOR: freq_ctr: introduce a new averaging method 9255 - MEDIUM: session: maintain per-backend and per-server time statistics 9256 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs 9257 - BUG/MINOR: http: fix typos in previous patch 9258 - DOC: remove the ultra-obsolete TODO file 9259 - DOC: update roadmap 9260 - DOC: minor updates to the README 9261 - DOC: mention the maxconn limitations with the select poller 9262 - DOC: commit a few old design thoughts files 9263 92642014/05/28 : 1.5-dev26 9265 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1. 9266 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one 9267 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance 9268 - MINOR: fix a few memory usage errors 9269 - CONTRIB: halog: Filter input lines by date and time through timestamp 9270 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int 9271 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace() 9272 - MINOR: acl: set "str" as default match for strings 9273 - DOC: Add some precisions about acl default matching method 9274 - MEDIUM: acl: strenghten the option parser to report invalid options 9275 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25 9276 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks 9277 - MINOR: stats: improve alignment of color codes to save one line of header 9278 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks 9279 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced 9280 - MINOR: server: use functions to detect state changes and to update them 9281 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer 9282 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining 9283 - BUG/MAJOR: config: don't free valid regex memory 9284 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called 9285 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status 9286 - MEDIUM: proxy: make timeout parser a bit stricter 9287 - REORG/MEDIUM: server: split server state and flags in two different variables 9288 - REORG/MEDIUM: server: move the maintenance bits out of the server state 9289 - MAJOR: server: use states instead of flags to store the server state 9290 - REORG: checks: put the functions in the appropriate files ! 9291 - MEDIUM: server: properly support and propagate the maintenance status 9292 - MEDIUM: server: allow multi-level server tracking 9293 - CLEANUP: checks: rename the server_status_printf function 9294 - MEDIUM: checks: simplify server up/down/nolb transitions 9295 - MAJOR: checks: move health checks changes to set_server_check_status() 9296 - MINOR: server: make the status reporting function support a reason 9297 - MINOR: checks: simplify health check reporting functions 9298 - MINOR: server: implement srv_set_stopped() 9299 - MINOR: server: implement srv_set_running() 9300 - MINOR: server: implement srv_set_stopping() 9301 - MEDIUM: checks: simplify failure notification using srv_set_stopped() 9302 - MEDIUM: checks: simplify success notification using srv_set_running() 9303 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping() 9304 - MEDIUM: stats: report a server's own state instead of the tracked one's 9305 - MINOR: server: make use of srv_is_usable() instead of checking eweight 9306 - MAJOR: checks: add support for a new "drain" administrative mode 9307 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page 9308 - MEDIUM: stats: introduce new actions to simplify admin status management 9309 - MINOR: cli: introduce a new "set server" command 9310 - MINOR: stats: report a distinct output for DOWN caused by agent 9311 - MINOR: checks: support specific check reporting for the agent 9312 - MINOR: checks: support a neutral check result 9313 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message 9314 - MEDIUM: cli: add support for enabling/disabling health checks. 9315 - MEDIUM: stats: report down caused by agent prior to reporting up 9316 - MAJOR: agent: rework the response processing and support additional actions 9317 - MINOR: stats: improve the stats web page to support more actions 9318 - CONTRIB: halog: avoid calling time/localtime/mktime for each line 9319 - DOC: document the workarouds for Google Chrome's bogus pre-connect 9320 - MINOR: stats: report SSL key computations per second 9321 - MINOR: stats: add counters for SSL cache lookups and misses 9322 93232014/05/10 : 1.5-dev25 9324 - MEDIUM: connection: Implement and extented PROXY Protocol V2 9325 - MINOR: ssl: clean unused ACLs declarations 9326 - MINOR: ssl: adds fetchs and ACLs for ssl back connection. 9327 - MINOR: ssl: merge client's and frontend's certificate functions. 9328 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint 9329 - MINOR: ssl: adds sample converter base64 for binary type. 9330 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id. 9331 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported. 9332 - MAJOR: ssl: Change default locks on ssl session cache. 9333 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring. 9334 - MINOR: ssl: add global statement tune.ssl.force-private-cache. 9335 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails. 9336 - BUG/MEDIUM: patterns: last fix was still not enough 9337 - MINOR: http: export the smp_fetch_cookie function 9338 - MINOR: http: generic pointer to rule argument 9339 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering 9340 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns 9341 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend 9342 - BUG/MINOR: http: log 407 in case of proxy auth 9343 - MINOR: http: rely on the message body parser to send 100-continue 9344 - MEDIUM: http: move reqadd after execution of http_request redirect 9345 - MEDIUM: http: jump to dedicated labels after http-request processing 9346 - BUG/MINOR: http: block rules forgot to increment the denied_req counter 9347 - BUG/MINOR: http: block rules forgot to increment the session's request counter 9348 - MEDIUM: http: move Connection header processing earlier 9349 - MEDIUM: http: remove even more of the spaghetti in the request path 9350 - MINOR: http: silently support the "block" action for http-request 9351 - CLEANUP: proxy: rename "block_cond" to "block_rules" 9352 - MEDIUM: http: emulate "block" rules using "http-request" rules 9353 - MINOR: http: remove the now unused loop over "block" rules 9354 - MEDIUM: http: factorize the "auth" action of http-request and stats 9355 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule 9356 - MINOR: config: add minimum support for emitting warnings only once 9357 - MEDIUM: config: inform the user about the deprecatedness of "block" rules 9358 - MEDIUM: config: inform the user that "reqsetbe" is deprecated 9359 - MEDIUM: config: inform the user only once that "redispatch" is deprecated 9360 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated 9361 - BUG/MINOR: auth: fix wrong return type in pat_match_auth() 9362 - BUILD: config: remove a warning with clang 9363 - BUG/MAJOR: http: connection setup may stall on balance url_param 9364 - BUG/MEDIUM: http/session: disable client-side expiration only after body 9365 - BUG/MEDIUM: http: correctly report request body timeouts 9366 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body 9367 - MEDIUM: listener: make the accept function more robust against pauses 9368 - BUILD: syscalls: remove improper inline statement in front of syscalls 9369 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7 9370 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions 9371 - DOC: add some explanation on the shared cache build options in the readme. 9372 - MEDIUM: proxy: only adjust the backend's bind-process when already set 9373 - MEDIUM: config: limit nbproc to the machine's word size 9374 - MEDIUM: config: check the bind-process settings according to nbproc 9375 - MEDIUM: listener: parse the new "process" bind keyword 9376 - MEDIUM: listener: inherit the process mask from the proxy 9377 - MAJOR: listener: only start listeners bound to the same processes 9378 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process 9379 - CLEANUP: config: set the maxaccept value for peers listeners earlier 9380 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies 9381 - BUG/MINOR: checks: correctly configure the address family and protocol 9382 - MINOR: tools: split is_addr() and is_inet_addr() 9383 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired 9384 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets 9385 - MEDIUM: checks: only complain about the missing port when the check uses TCP 9386 - MEDIUM: unix: implement support for Linux abstract namespace sockets 9387 - DOC: map_beg was missing from the table of map_* converters 9388 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings 9389 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning 9390 - BUILD: remove the obsolete BSD and OSX makefiles 9391 - MEDIUM: unix: avoid a double connect probe when no data are sent 9392 - DOC: stop referencing the slow git repository in the README 9393 - BUILD: only build the systemd wrapper on Linux 2.6 and above 9394 - DOC: update roadmap with completed tasks 9395 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin) 9396 93972014/04/26 : 1.5-dev24 9398 - MINOR: pattern: find element in a reference 9399 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules 9400 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat 9401 - DOC: Full section dedicated to the converters 9402 - MEDIUM: http: register http-request and http-response keywords 9403 - BUG/MINOR: compression: correctly report incoming byte count 9404 - BUG/MINOR: http: don't report server aborts as client aborts 9405 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer 9406 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res() 9407 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page 9408 - BUG/MAJOR: http: fix timeouts during data forwarding 9409 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately 9410 - MEDIUM: http: move skipping of 100-continue earlier 9411 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized... 9412 - CLEANUP: general: get rid of all old occurrences of "session *t" 9413 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4 9414 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back 9415 - MEDIUM: http: enable analysers to have keep-alive on stats 9416 - REORG: http: move HTTP Connection response header parsing earlier 9417 - MINOR: stats: always emit HTTP/1.1 in responses 9418 - MINOR: http: add capture.req.ver and capture.res.ver 9419 - MINOR: checks: add a new global max-spread-checks directive 9420 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect 9421 - MINOR: http: implement the max-keep-alive-queue setting 9422 - DOC: fix alphabetic order of tcp-check 9423 - MINOR: connection: add a new error code for SSL with heartbeat 9424 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack 9425 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits" 9426 - BUILD: http: remove a warning on strndup 9427 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1 9428 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack 9429 - MINOR: ssl: finally catch the heartbeats missing the padding 9430 94312014/04/23 : 1.5-dev23 9432 - BUG/MINOR: reject malformed HTTP/0.9 requests 9433 - MINOR: systemd wrapper: re-execute on SIGUSR2 9434 - MINOR: systemd wrapper: improve logging 9435 - MINOR: systemd wrapper: propagate exit status 9436 - BUG/MINOR: tcpcheck connect wrong behavior 9437 - MEDIUM: proxy: support use_backend with dynamic names 9438 - MINOR: stats: Enhancement to stats page to provide information of last session time. 9439 - BUG/MEDIUM: peers: fix key consistency for integer stick tables 9440 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes 9441 - DOC: fix fetching samples syntax 9442 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID 9443 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2 9444 - DOC: fix typo 9445 - CLEANUP: code style: use tabs to indent codes instead of spaces 9446 - DOC: fix a few config typos. 9447 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv() 9448 - DOC: lowercase format string in unique-id 9449 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode 9450 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version 9451 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles 9452 - BUG/MINOR: build: handle whitespaces in wc -l output 9453 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO 9454 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits 9455 - BUG/MEDIUM: map: The map parser includes blank lines. 9456 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes. 9457 - MINOR: standard: add function "encode_chunk" 9458 - BUG/MINOR: http: fix encoding of samples used in http headers 9459 - MINOR: sample: add hex converter 9460 - MEDIUM: sample: change the behavior of the bin2str cast 9461 - MAJOR: auth: Change the internal authentication system. 9462 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()" 9463 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string. 9464 - MEDIUM: pattern: Change the prototype of the function pattern_register(). 9465 - CONTRIB: ip6range: add a network IPv6 range to mask converter 9466 - MINOR: pattern: separe list element from the data part. 9467 - MEDIUM: pattern: add indexation function. 9468 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation 9469 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree" 9470 - MINOR: sample: dont call the sample cast function "c_none" 9471 - MINOR: standard: Add function for converting cidr to network mask. 9472 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags 9473 - MEDIUM: sample/http_proto: Add new type called method 9474 - MINOR: dumpstats: Group map inline help 9475 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match. 9476 - MINOR: dumpstats: change map inline sentences 9477 - MINOR: dumpstats: change the "get map" display management 9478 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format. 9479 - MEDIUM: pattern: The match function browse itself the list or the tree. 9480 - MEDIUM: pattern: Index IPv6 addresses in a tree. 9481 - MEDIUM: pattern: add delete functions 9482 - MEDIUM: pattern: add prune function 9483 - MEDIUM: pattern: add sample lookup function. 9484 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used 9485 - MINOR: map/pattern: The sample parser is stored in the pattern 9486 - MAJOR: pattern/map: Extends the map edition system in the patterns 9487 - MEDIUM: pattern: merge same pattern 9488 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once. 9489 - MINOR: pattern: Each pattern is identified by unique id. 9490 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id 9491 - MINOR: pattern: The function "pattern_register()" is no longer used. 9492 - MINOR: pattern: Merge function pattern_add() with pat_ref_push(). 9493 - MINOR: pattern: store configuration reference for each acl or map pattern. 9494 - MINOR: pattern: Each pattern expression element store the reference struct. 9495 - MINOR: dumpstats: display the reference for th key/pattern and value. 9496 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed 9497 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed 9498 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped 9499 - MINOR: pattern/map/acl: Centralization of the file parsers 9500 - MINOR: pattern: Check if the file reference is not used with acl and map 9501 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns 9502 - MEDIUM: dumpstats: Display error message during add of values. 9503 - MINOR: pattern: The function pat_ref_set() have now atomic behavior 9504 - MINOR: regex: The pointer regstr in the struc regex is no longer used. 9505 - MINOR: cli: Block the usage of the command "acl add" in many cases. 9506 - MINOR: doc: Update the documentation about the map and acl 9507 - MINOR: pattern: index duplicates 9508 - MINOR: configuration: File and line propagation 9509 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference 9510 - MINOR: standard: Disable ip resolution during the runtime 9511 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE". 9512 - MINOR: pattern: forbid dns resolutions 9513 - DOC: document "get map" / "get acl" on the CLI 9514 - MEDIUM: acl: Change the acl register struct 9515 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes 9516 - DOC: pattern: pattern organisation schematics 9517 - MINOR: pattern/cli: Update used terms in documentation and cli 9518 - MINOR: cli: remove information about acl or map owner. 9519 - MINOR: session: don't always assume there's a listener 9520 - MINOR: pattern: Add function to prune and reload pattern list. 9521 - MINOR: standard: Add ipv6 support in the function url2sa(). 9522 - MEDIUM: config: Dynamic sections. 9523 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches 9524 - MINOR: http: Add the "language" converter to for use with accept-language 9525 - BUG/MINOR: log: Don't dump empty unique-id 9526 - BUG/MAJOR: session: fix a possible crash with src_tracked 9527 - DOC: Update "language" documentation 9528 - MINOR: http: add the function "del-header" to the directives http-request and http-response 9529 - DOC: add some information on capture.(req|res).hdr 9530 - MINOR: http: capture.req.method and capture.req.uri 9531 - MINOR: http: optimize capture.req.method and capture.req.uri 9532 - MINOR: session: clean up the connection free code 9533 - BUG/MEDIUM: checks: immediately report a connection success 9534 - MEDIUM: connection: don't use real send() flags in snd_buf() 9535 - OPTIM: ssl: implement dynamic record size adjustment 9536 - MINOR: stats: report exact last session time in backend too 9537 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV. 9538 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL 9539 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers 9540 - MINOR: channel: add the date of last read in the channel 9541 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle 9542 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time 9543 - MINOR: config: make the stream interface idle timer user-configurable 9544 - MINOR: config: add global directives to set default SSL ciphers 9545 - MINOR: sample: add a rand() sample fetch to return a sample. 9546 - BUG/MEDIUM: config: immediately abort if peers section has no name 9547 - BUG/MINOR: ssl: fix syntax in config error message 9548 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN 9549 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server 9550 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch 9551 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server 9552 - MEDIUM: acl: fix pattern type for payload / payload_lv 9553 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer 9554 - BUG/MEDIUM: compression: fix the output type of the compressor name 9555 - BUG/MEDIUM: http: don't start to forward request data before the connect 9556 - MINOR: http: release compression context only in http_end_txn() 9557 - MINOR: protect ebimtree/ebistree against multiple inclusions 9558 - MEDIUM: proxy: create a tree to store proxies by name 9559 - MEDIUM: proxy: make findproxy() use trees to look up proxies 9560 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies 9561 - MEDIUM: stick-table: lookup table names using trees. 9562 - MEDIUM: config: faster lookup for duplicated proxy name 9563 - CLEANUP: acl: remove obsolete test in parse_acl_expr() 9564 - MINOR: sample: move smp_to_type to sample.c 9565 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding 9566 - REORG: cfgparse: move server keyword parsing to server.c 9567 - BUILD: adjust makefile for AIX 5.1 9568 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array 9569 - CLEANUP: pattern: move array definitions to proto/ and not types/ 9570 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table 9571 - BUILD: ssl: previous patch failed 9572 - BUILD/MEDIUM: standard: get rid of the last strcpy() 9573 - BUILD/MEDIUM: standard: get rid of sprintf() 9574 - BUILD/MEDIUM: cfgparse: get rid of sprintf() 9575 - BUILD/MEDIUM: checks: get rid of sprintf() 9576 - BUILD/MEDIUM: http: remove calls to sprintf() 9577 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary 9578 - BUILD/MINOR: ssl: remove one call to sprintf() 9579 - MEDIUM: http: don't reject anymore message bodies not containing the url param 9580 - MEDIUM: http: wait for the first chunk or message body length in http_process_body 9581 - CLEANUP: http: rename http_process_request_body() 9582 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies 9583 - MINOR: http: make msg->eol carry the last CRLF length 9584 - MAJOR: http: do not use msg->sol while processing messages or forwarding data 9585 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer 9586 - MAJOR: http: don't update msg->sov anymore while processing the body 9587 - MINOR: http: add a small helper to compute the amount of body bytes present 9588 - MEDIUM: http: add a small helper to compute how far to rewind to find headers 9589 - MINOR: http: add a small helper to compute how far to rewind to find URI 9590 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA 9591 - MAJOR: http: reset msg->sov after headers are forwarded 9592 - MEDIUM: http: forward headers again while waiting for connection to complete 9593 - BUG/MINOR: http: deinitialize compression after a parsing error 9594 - BUG/MINOR: http: deinitialize compression after a compression error 9595 - MEDIUM: http: headers must be forwarded even if data was already inspected 9596 - MAJOR: http: re-enable compression on chunked encoding 9597 - MAJOR: http/compression: fix chunked-encoded response processing 9598 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end 9599 - MEDIUM: http: start to centralize the forwarding code 9600 - MINOR: http: further cleanups of response forwarding function 9601 - MEDIUM: http: only allocate the temporary compression buffer when needed 9602 - MAJOR: http: centralize data forwarding in the request path 9603 - CLEANUP: http: document the response forwarding states 9604 - CLEANUP: http: remove all calls to http_silent_debug() 9605 - DOC: internal: add some reminders about HTTP parsing and pointer states 9606 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo 9607 - BUG/MINOR: stats: last session was not always set 9608 - DOC: add pointer to the Cyril's HTML doc in the README 9609 - MEDIUM: config: relax use_backend check to make the condition optional 9610 - MEDIUM: config: report misplaced http-request rules 9611 - MEDIUM: config: report misplaced use-server rules 9612 - DOC: update roadmap with what was done. 9613 96142014/02/03 : 1.5-dev22 9615 - MEDIUM: tcp-check new feature: connect 9616 - MEDIUM: ssl: Set verify 'required' as global default for servers side. 9617 - MINOR: ssl: handshake optim for long certificate chains. 9618 - BUG/MINOR: pattern: pattern comparison executed twice 9619 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..." 9620 - BUG/MEDIUM: pattern: Segfault in binary parser 9621 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation. 9622 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated 9623 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function. 9624 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type. 9625 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer 9626 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests 9627 - MINOR: doc: Bad cli function name. 9628 - MINOR: http: smp_fetch_capture_header_* fetch captured headers 9629 - BUILD: last release inadvertently prepended a "+" in front of the date 9630 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler 9631 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse 9632 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes" 9633 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers 9634 - MINOR: http: try to stick to same server after status 401/407 9635 - BUG/MINOR: http: always disable compression on HTTP/1.0 9636 - OPTIM: poll: restore polling after a poll/stop/want sequence 9637 - OPTIM: http: don't stop polling for read on the client side after a request 9638 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore 9639 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling 9640 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned 9641 - BUG/MINOR: stream-int: do not clear the owner upon unregister 9642 - MEDIUM: stats: add support for HTTP keep-alive on the stats page 9643 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch 9644 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page" 9645 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes 9646 - OPTIM: session: set the READ_DONTWAIT flag when connecting 9647 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests 9648 - MINOR: session: factor out the connect time measurement 9649 - MEDIUM: session: prepare to support earlier transitions to the established state 9650 - MEDIUM: stream-int: make si_connect() return an established state when possible 9651 - MINOR: checks: use an inline function for health_adjust() 9652 - OPTIM: session: put unlikely() around the freewheeling code 9653 - MEDIUM: config: report a warning when multiple servers have the same name 9654 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence" 9655 - BUILD/MINOR: listener: remove a glibc warning on accept4() 9656 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage 9657 - BUILD: listener: fix recent accept4() again 9658 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9 9659 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity 9660 - MEDIUM: listener: fix polling management in the accept loop 9661 - MINOR: protocol: improve the proto->drain() API 9662 - MINOR: connection: add a new conn_drain() function 9663 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close 9664 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain() 9665 - MINOR: connection: add more error codes to report connection errors 9666 - MEDIUM: tcp: report connection error at the connection level 9667 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors 9668 - BUG/MEDIUM: unique_id: HTTP request counter is not stable 9669 - DOC: fix misleading information about SIGQUIT 9670 - BUG/MAJOR: fix freezes during compression 9671 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer 9672 - BUILD: fix VERDATE exclusion regex 9673 - CLEANUP: polling: rename "spec_e" to "state" 9674 - DOC: add a diagram showing polling state transitions 9675 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache" 9676 - REORG: polling: rename "fd_spec" to "fd_cache" 9677 - REORG: polling: rename the cache allocation functions 9678 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()" 9679 - MAJOR: polling: rework the whole polling system 9680 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags 9681 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send} 9682 - MEDIUM: connection: add check for readiness in I/O handlers 9683 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn 9684 - MINOR: stream-interface: no need to call fd_stop_both() on error 9685 - MEDIUM: connection: no need to recheck FD state 9686 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag 9687 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag 9688 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour. 9689 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled 9690 - MEDIUM: polling: centralize polled events processing 9691 - MINOR: polling: create function fd_compute_new_polled_status() 9692 - MINOR: cli: add more information to the "show info" output 9693 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate 9694 - MEDIUM: listener: apply a limit on the session rate submitted to SSL 9695 - REORG: stats: move the stats socket states to dumpstats.c 9696 - MINOR: cli: add the new "show pools" command 9697 - BUG/MEDIUM: counters: flush content counters after each request 9698 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection 9699 - MINOR: tools: add very basic support for composite pointers 9700 - MEDIUM: counters: stop relying on session flags at all 9701 - BUG/MINOR: cli: fix missing break in command line parser 9702 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode 9703 - MAJOR: http: update connection mode configuration 9704 - MEDIUM: http: make keep-alive + httpclose be passive mode 9705 - MAJOR: http: switch to keep-alive mode by default 9706 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default 9707 - BUG/MEDIUM: listener: improve detection of non-working accept4() 9708 - BUILD: listener: add fcntl.h and unistd.h 9709 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag 9710 97112013/12/17 : 1.5-dev21 9712 - MINOR: stats: don't use a monospace font to report numbers 9713 - MINOR: session: remove debugging code 9714 - BUG/MAJOR: patterns: fix double free caused by loading strings from files 9715 - MEDIUM: http: make option http_proxy automatically rewrite the URL 9716 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type 9717 - BUG/MINOR: stats: correctly report throttle rate of low weight servers 9718 - BUG/MEDIUM: checks: servers must not start in slowstart mode 9719 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords 9720 - MEDIUM: stream-int: implement a very simplistic idle connection manager 9721 - DOC: update the ROADMAP file 9722 97232013/12/16 : 1.5-dev20 9724 - DOC: add missing options to the manpage 9725 - DOC: add manpage references to all system calls 9726 - DOC: update manpage reference to haproxy-en.txt 9727 - DOC: remove -s and -l options from the manpage 9728 - DOC: missing information for the "description" keyword 9729 - DOC: missing http-send-name-header keyword in keyword table 9730 - MINOR: tools: function my_memmem() to lookup binary contents 9731 - MEDIUM: checks: add send/expect tcp based check 9732 - MEDIUM: backend: Enhance hash-type directive with an algorithm options 9733 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions. 9734 - DOC: Documentation for hashing function, with test results. 9735 - BUG/MEDIUM: ssl: potential memory leak using verifyhost 9736 - BUILD: ssl: compilation issue with openssl v0.9.6. 9737 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg. 9738 - MINOR: ssl: optimization of verifyhost on wildcard certificates. 9739 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard. 9740 - MINOR: ssl: Add statement 'verifyhost' to "server" statements 9741 - CLEANUP: session: remove event_accept() which was not used anymore 9742 - BUG/MINOR: deinit: free fdinfo while doing cleanup 9743 - DOC: minor typo fix in documentation 9744 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE 9745 - BUG/MINOR: use the same check condition for server as other algorithms 9746 - DOC: fix typo in comments 9747 - BUG/MINOR: deinit: free server map which is allocated in init_server_map() 9748 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop() 9749 - MINOR: buffer: align the last output line of buffer_dump() 9750 - MINOR: buffer: align the last output line if there are less than 8 characters left 9751 - DOC: stick-table: modify the description 9752 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set 9753 - CLEANUP: code style: use tabs to indent codes 9754 - DOC: checkcache: block responses with cacheable cookies 9755 - BUG/MINOR: check_config_validity: check the returned value of stktable_init() 9756 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory 9757 - MEDIUM: systemd-wrapper: Kill child processes when interrupted 9758 - LOW: systemd-wrapper: Write debug information to stdout 9759 - BUG/MINOR: http: fix "set-tos" not working in certain configurations 9760 - MEDIUM: http: add IPv6 support for "set-tos" 9761 - DOC: ssl: update build instructions to use new SSL_* variables 9762 - BUILD/MINOR: systemd: fix compiler warning about unused result 9763 - url32+src - like base32+src but whole url including parameters 9764 - BUG/MINOR: fix forcing fastinter in "on-error" 9765 - CLEANUP: Make parameters of srv_downtime and srv_getinter const 9766 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer 9767 - MEDIUM: Split up struct server's check element 9768 - MEDIUM: Move result element to struct check 9769 - MEDIUM: Paramatise functions over the check of a server 9770 - MEDIUM: cfgparse: Factor out check initialisation 9771 - MEDIUM: Add state to struct check 9772 - MEDIUM: Move health element to struct check 9773 - MEDIUM: Add helper for task creation for checks 9774 - MEDIUM: Add helper function for failed checks 9775 - MEDIUM: Log agent fail, stopped or down as info 9776 - MEDIUM: Remove option lb-agent-chk 9777 - MEDIUM: checks: Add supplementary agent checks 9778 - MEDIUM: Do not mark a server as down if the agent is unavailable 9779 - MEDIUM: Set rise and fall of agent checks to 1 9780 - MEDIUM: Add enable and disable agent unix socket commands 9781 - MEDIUM: Add DRAIN state and report it on the stats page 9782 - BUILD/MINOR: missing header file 9783 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options 9784 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char. 9785 - MINOR: http: some exported functions were not in the header file 9786 - MINOR: http: change url_decode to return the size of the decoded string. 9787 - BUILD/MINOR: missing header file 9788 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap 9789 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments 9790 - MINOR: sample: export the generic sample conversion parser 9791 - MINOR: sample: export sample_casts 9792 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword 9793 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr" 9794 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function. 9795 - MINOR: tools: Add a function to convert buffer to an ipv6 address 9796 - MINOR: acl: export acl arrays 9797 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function 9798 - MINOR: acl: Extract the pattern matching function 9799 - MINOR: sample: Define new struct sample_storage 9800 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern" 9801 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c 9802 - MEDIUM: pattern: create pattern expression 9803 - MEDIUM: pattern: rename "acl" prefix to "pat" 9804 - MEDIUM: sample: let the cast functions set their output type 9805 - MINOR: sample: add a private field to the struct sample_conv 9806 - MINOR: map: Define map types 9807 - MEDIUM: sample: add the "map" converter 9808 - MEDIUM: http: The redirect strings follows the log format rules. 9809 - BUG/MINOR: acl: acl parser does not recognize empty converter list 9810 - BUG/MINOR: map: The map list was declared in the map.h file 9811 - MINOR: map: Cleanup the initialisation of map descriptors. 9812 - MEDIUM: map: merge identical maps 9813 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node" 9814 - BUG/MEDIUM: map: Bad map file parser 9815 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN 9816 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end 9817 - MINOR: map: export map_get_reference() function 9818 - MINOR: pattern: Each pattern sets the expected input type 9819 - MEDIUM: acl: Last patch change the output type 9820 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions 9821 - MINOR: standard: The function parse_binary() can use preallocated buffer 9822 - MINOR: regex: Change the struct containing regex 9823 - MINOR: regex: Copy the original regex expression into string. 9824 - MINOR: pattern: add support for compiling patterns for lookups 9825 - MINOR: pattern: make the pattern matching function return a pointer to the matched element 9826 - MINOR: map: export parse output sample functions 9827 - MINOR: pattern: add function to lookup a specific entry in pattern list 9828 - MINOR: pattern/map: Each pattern must free the associated sample 9829 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char 9830 - MEDIUM: map: dynamic manipulation of maps 9831 - BUG/MEDIUM: unique_id: junk in log on empty unique_id 9832 - BUG/MINOR: log: junk at the end of syslog packet 9833 - MINOR: Makefile: provide cscope rule 9834 - DOC: compression: chunk are not compressed anymore 9835 - MEDIUM: session: disable lingering on the server when the client aborts 9836 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS 9837 - DOC: remove the comment saying that SSL certs are not checked on the server side 9838 - BUG: counters: third counter was not stored if others unset 9839 - BUG/MAJOR: http: don't emit the send-name-header when no server is available 9840 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header 9841 - BUG/MAJOR: http: sample prefetch code was not properly migrated 9842 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing 9843 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events 9844 - OPTIM: splicing: use splice() for the last block when relevant 9845 - MEDIUM: sample: handle comma-delimited converter list 9846 - MINOR: sample: fix sample_process handling of unstable data 9847 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c 9848 - MINOR: sample: add a new "date" fetch to return the current date 9849 - MINOR: samples: add the http_date([<offset>]) sample converter. 9850 - DOC: minor improvements to the part on the stats socket. 9851 - MEDIUM: sample: systematically pass the keyword pointer to the keyword 9852 - MINOR: payload: split smp_fetch_rdp_cookie() 9853 - MINOR: counters: factor out smp_fetch_sc*_tracked 9854 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src. 9855 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0 9856 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate 9857 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0 9858 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0 9859 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt 9860 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate 9861 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur 9862 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt 9863 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate 9864 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt 9865 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate 9866 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt 9867 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate 9868 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in 9869 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate 9870 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out 9871 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate 9872 - MEDIUM: counters: factor out smp_fetch_sc*_trackers 9873 - MINOR: session: make the number of stick counter entries more configurable 9874 - MEDIUM: counters: support passing the counter number as a fetch argument 9875 - MEDIUM: counters: support looking up a key in an alternate table 9876 - MEDIUM: cli: adjust the method for feeding frequency counters in tables 9877 - MINOR: cli: make it possible to enter multiple values at once with "set table" 9878 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths 9879 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition 9880 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX 9881 - MINOR: config: warn when a server with no specific port uses rdp-cookie 9882 - BUG/MEDIUM: unique_id: HTTP request counter must be unique! 9883 - DOC: add a mention about the limited chunk size 9884 - BUG/MEDIUM: fix broken send_proxy on FreeBSD 9885 - MEDIUM: stick-tables: flush old entries upon soft-stop 9886 - MINOR: tcp: add new "close" action for tcp-response 9887 - MINOR: payload: provide the "res.len" fetch method 9888 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl 9889 - MINOR: http: compute response time before processing headers 9890 - BUG/MINOR: acl: fix improper string size assignment in proxy argument 9891 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http 9892 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved 9893 - BUG/MEDIUM: session: risk of crash on out of memory conditions 9894 - BUG/MINOR: peers: set the accept date in outgoing connections 9895 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass 9896 - BUG/MEDIUM: acl: do not evaluate next terms after a miss 9897 - MINOR: acl: add a warning when an ACL keyword is used without any value 9898 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set 9899 - BUG/MINOR: acl: remove patterns from the tree before freeing them 9900 - MEDIUM: backend: add support for the wt6 hash 9901 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes 9902 - OPTIM/MINOR: mark the source address as already known on accept() 9903 - BUG/MINOR: stats: don't count tarpitted connections twice 9904 - CLEANUP: http: homogenize processing of denied req counter 9905 - CLEANUP: http: merge error handling for req* and http-request * 9906 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules 9907 - BUG/MINOR: http: fix build warning introduced with url32/url32_src 9908 - BUG/MEDIUM: checks: fix slow start regression after fix attempt 9909 - BUG/MAJOR: server: weight calculation fails for map-based algorithms 9910 - MINOR: stats: report correct throttling percentage for servers in slowstart 9911 - OPTIM: connection: fold the error handling with handshake handling 9912 - MINOR: peers: accept to learn strings of different lengths 9913 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks 9914 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start 9915 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance 9916 - BUG/MINOR: connection: fix typo in error message report 9917 - BUG/MINOR: backend: fix target address retrieval in transparent mode 9918 - BUG/MINOR: config: report the correct track-sc number in tcp-rules 9919 - BUG/MINOR: log: fix log-format parsing errors 9920 - DOC: add some information about how to apply converters to samples 9921 - MINOR: acl/pattern: use types different from int to clarify who does what. 9922 - MINOR: pattern: import acl_find_match_name() into pattern.h 9923 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6 9924 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters 9925 - BUG/MINOR: http: usual deinit stuff in last commit 9926 - BUILD: log: silent a warning about isblank() with latest patches 9927 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order 9928 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors 9929 - BUG/MINOR: checks: don't consider errno and use conn->err_code 9930 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface 9931 - MINOR: stats: remove some confusion between the DRAIN state and NOLB 9932 - BUG/MINOR: tcp: check that no error is pending during a connect probe 9933 - BUG/MINOR: connection: check EINTR when sending a PROXY header 9934 - MEDIUM: connection: set the socket shutdown flags on socket errors 9935 - BUG/MEDIUM: acl: fix regression introduced by latest converters support 9936 - MINOR: connection: clear errno prior to checking for errors 9937 - BUG/MINOR: checks: do not trust errno in write event before any syscall 9938 - MEDIUM: checks: centralize error reporting 9939 - OPTIM: checks: don't poll on recv when using plain TCP connects 9940 - OPTIM: checks: avoid setting SO_LINGER twice 9941 - MINOR: tools: add a generic binary hex string parser 9942 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send 9943 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full 9944 - BUG/MEDIUM: args: fix double free on error path in argument expression parser 9945 - BUG/MINOR: acl: fix sample expression error reporting 9946 - BUG/MINOR: checks: tcp-check actions are enums, not flags 9947 - MEDIUM: checks: make tcp-check perform multiple send() at once 9948 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries 9949 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit 9950 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses 9951 - CLEANUP: stream_interface: remove unused field err_loc 9952 - MEDIUM: stats: don't use conn->xprt_st anymore 9953 - MINOR: session: add a simple function to retrieve a session from a task 9954 - MEDIUM: stats: don't use conn->xprt_ctx anymore 9955 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore 9956 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn 9957 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses 9958 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states 9959 - MAJOR: stats: move the HTTP stats handling to its applet 9960 - MEDIUM: stats: move request argument processing to the final step 9961 - MEDIUM: session: detect applets from the session by using s->target 9962 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req() 9963 - MAJOR: session: pass applet return traffic through the response analysers 9964 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn 9965 - MINOR: stream-int: make the shutr/shutw functions void 9966 - MINOR: obj: provide a safe and an unsafe access to pointed objects 9967 - MINOR: connection: add a field to store an object type 9968 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN 9969 - MEDIUM: stream interface: move the peers' ptr into the applet context 9970 - MINOR: stream-interface: move the applet context to its own struct 9971 - MINOR: obj: introduce a new type appctx 9972 - MINOR: stream-int: rename ->applet to ->appctx 9973 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet 9974 - MINOR: stream-int: add a new pointer to the end point 9975 - MEDIUM: stream-interface: set the pointer to the applet into the applet context 9976 - MAJOR: stream interface: remove the ->release function pointer 9977 - MEDIUM: stream-int: make ->end point to the connection or the appctx 9978 - CLEANUP: stream-int: remove obsolete si_ctrl function 9979 - MAJOR: stream-int: stop using si->conn and use si->end instead 9980 - MEDIUM: stream-int: do not allocate a connection in parallel to applets 9981 - MEDIUM: session: attach incoming connection to target on embryonic sessions 9982 - MINOR: connection: add conn_init() to (re)initialize a connection 9983 - MINOR: checks: call conn_init() to properly initialize the connection. 9984 - MINOR: peers: make use of conn_init() to initialize the connection 9985 - MINOR: session: use conn_init() to initialize the connections 9986 - MINOR: http: use conn_init() to reinitialize the server connection 9987 - MEDIUM: connection: replace conn_prepare with conn_assign 9988 - MINOR: get rid of si_takeover_conn() 9989 - MINOR: connection: add conn_new() / conn_free() 9990 - MAJOR: connection: add two new flags to indicate readiness of control/transport 9991 - MINOR: stream-interface: introduce si_reset() and si_set_state() 9992 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport 9993 - MINOR: connection: replace conn_assign with conn_attach 9994 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn 9995 - MAJOR: stream interface: dynamically allocate the outgoing connection 9996 - MEDIUM: connection: move the send_proxy offset to the connection 9997 - MINOR: connection: check for send_proxy during the connect(), not the SI 9998 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls 9999 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx() 10000 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler() 10001 - MAJOR: stream-interface: dynamically allocate the applet context 10002 - MEDIUM: session: automatically register the applet designated by the target 10003 - MEDIUM: stats: delay appctx initialization 10004 - CLEANUP: peers: use less confusing state/status code names 10005 - MEDIUM: peers: delay appctx initialization 10006 - MINOR: stats: provide some appctx information in "show sess all" 10007 - DIET/MINOR: obj: pack the obj_type enum to 8 bits 10008 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct 10009 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes 10010 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes 10011 - DIET/MINOR: session: reduce the struct session size by 8 bytes 10012 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes 10013 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes 10014 - MINOR: http: switch the http state to an enum 10015 - MINOR: http: use an enum for the auth method in http_auth_data 10016 - DIET/MINOR: task: reduce struct task size by 8 bytes 10017 - MINOR: stream_interface: add reporting of ressouce allocation errors 10018 - MINOR: session: report lack of resources using the new stream-interface's error code 10019 - BUILD: simplify the date and version retrieval in the makefile 10020 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE 10021 - BUILD: use format tags in VERDATE and SUBVERS files 10022 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full 10023 - CLEANUP: check: server port is unsigned 10024 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes 10025 - MINOR: tools: buf2ip6 must not modify output on failure 10026 - MINOR: pattern: do not assign SMP_TYPES by default to patterns 10027 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors 10028 - MINOR: arg: improve wording on error reporting 10029 - BUG/MEDIUM: sample: simplify and fix the argument parsing 10030 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors 10031 - MEDIUM: acl: fix the initialization order of the ACL expression 10032 - CLEANUP: acl: remove useless blind copy-paste from sample converters 10033 - TESTS: add regression tests for ACL and sample expression parsers 10034 - BUILD: time: adapt the type of TV_ETERNITY to the local system 10035 - MINOR: chunks: allocate the trash chunks before parsing the config 10036 - BUILD: definitely silence some stupid GCC warnings 10037 - MINOR: chunks: always initialize the output chunk in get_trash_chunk() 10038 - MINOR: checks: improve handling of the servers tracking chain 10039 - REORG: checks: retrieve the check-specific defines from server.h to checks.h 10040 - MINOR: checks: use an enum instead of flags to report a check result 10041 - MINOR: checks: rename the state flags 10042 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED 10043 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED 10044 - MINOR: checks: fix agent check interval computation 10045 - MINOR: checks: add a PAUSED state for the checks 10046 - MINOR: checks: create the agent tasks even when no check is configured 10047 - MINOR: checks: add a flag to indicate what check is an agent 10048 - MEDIUM: checks: enable agent checks even if health checks are disabled 10049 - BUG/MEDIUM: checks: ensure we can enable a server after boot 10050 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag 10051 - BUG/MAJOR: session: repair tcp-request connection rules 10052 - BUILD: fix SUBVERS extraction in the Makefile 10053 - BUILD: pattern: silence a warning about uninitialized value 10054 - BUILD: log: fix build warning on Solaris 10055 - BUILD: dumpstats: fix build error on Solaris 10056 - DOC: move option pgsql-check to the correct place 10057 - DOC: move option tcp-check to the proper place 10058 - MINOR: connection: add simple functions to report connection readiness 10059 - MEDIUM: connection: centralize handling of nolinger in fd management 10060 - OPTIM: http: set CF_READ_DONTWAIT on response message 10061 - OPTIM: http: do not re-enable reading on client side while closing the server side 10062 - MINOR: config: add option http-keep-alive 10063 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not 10064 - MAJOR: stream-int: handle the connection reuse in si_connect() 10065 - MAJOR: http: add the keep-alive transition on the server side 10066 - MAJOR: backend: enable connection reuse 10067 - MINOR: http: add option prefer-last-server 10068 - MEDIUM: http: do not report connection errors for second and further requests 10069 100702013/06/17 : 1.5-dev19 10071 - MINOR: stats: remove the autofocus on the scope input field 10072 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored. 10073 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file. 10074 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version. 10075 - MEDIUM: ssl: improve crt-list format to support negation 10076 - BUG: ssl: fix crt-list for clients not supporting SNI 10077 - MINOR: stats: show soft-stopped servers in different color 10078 - BUG/MINOR: config: "source" does not work in defaults section 10079 - BUG: regex: fix pcre compile error when using JIT 10080 - MINOR: ssl: add pattern fetch 'ssl_c_sha1' 10081 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used 10082 - MINOR: show PCRE version and JIT status in -vv 10083 - BUG/MINOR: jit: don't rely on USE flag to detect support 10084 - DOC: readme: add suggestion to link against static openssl 10085 - DOC: examples: provide simplified ssl configuration 10086 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes 10087 - MINOR: tproxy: add support for FreeBSD 10088 - MINOR: tproxy: add support for OpenBSD 10089 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8 10090 - CLEANUP: fix minor typo in error message. 10091 - CLEANUP: fix missing include <string.h> in proto/listener.h 10092 - CLEANUP: protect checks.h from multiple inclusions 10093 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo" 10094 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition 10095 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32 10096 - BUG/MEDIUM: splicing is broken since 1.5-dev12 10097 - BUG/MAJOR: acl: add implicit arguments to the resolve list 10098 - BUG/MINOR: tcp: fix error reporting for TCP rules 10099 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix 10100 - MINOR: stick-table: allow to allocate an entry without filling it 10101 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes 10102 - MINOR: session: only call http_send_name_header() when changing the server 10103 - MINOR: tcp: report the erroneous word in tcp-request track* 10104 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances 10105 - BUG/MEDIUM: log: fix regression on log-format handling 10106 - MEDIUM: log: report file name, line number, and directive name with log-format errors 10107 - BUG/MINOR: cli: "clear table" did not work anymore without a key 10108 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore 10109 - BUG/MAJOR: http: compression still has defects on chunked responses 10110 - BUG/MINOR: stats: fix confirmation links on the stats interface 10111 - BUG/MINOR: stats: the status bar does not appear anymore after a change 10112 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process" 10113 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests 10114 - BUG/MINOR: fix unterminated ACL array in compression 10115 - BUILD: last fix broke non-linux platforms 10116 - MINOR: init: indicate the SSL runtime version on -vv. 10117 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well 10118 - BUILD: stdbool is not portable (again) 10119 - DOC: readme: add a small reminder about restrictions to respect in the code 10120 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates 10121 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT 10122 - DOC: fix wrong copy-paste in the rspdel example 10123 - MINOR: counters: make it easier to extend the amount of tracked counters 10124 - MEDIUM: counters: add support for tracking a third counter 10125 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables 10126 - BUG/MAJOR: http: always ensure response buffer has some room for a response 10127 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked 10128 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined 10129 - MINOR: log: add a new flag 'L' for locally processed requests 10130 - MINOR: http: add full-length header fetch methods 10131 - MEDIUM: protocol: implement a "drain" function in protocol layers 10132 - MEDIUM: http: add a new "http-response" ruleset 10133 - MEDIUM: http: add the "set-nice" action to http-request and http-response 10134 - MEDIUM: log: add a log level override value in struct session 10135 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response 10136 - MEDIUM: http: add support for "set-tos" in http-request/http-response 10137 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules 10138 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4" 10139 - MEDIUM: acl: automatically detect the type of certain fetches 10140 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches 10141 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches 10142 - DOC: major reorg of ACL + sample fetch 10143 - CLEANUP: http: remove the bogus urlp_ip ACL match 10144 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable 10145 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts 10146 - BUG/CRITICAL: fix a possible crash when using negative header occurrences 10147 - DOC: update ROADMAP file 10148 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3 10149 - MEDIUM: stats: add proxy name filtering on the statistic page 10150 101512013/04/03 : 1.5-dev18 10152 - DOCS: Add explanation of intermediate certs to crt paramater 10153 - DOC: typo and minor fixes in compression paragraph 10154 - MINOR: config: http-request configuration error message misses new keywords 10155 - DOC: minor typo fix in documentation 10156 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured. 10157 - MEDIUM: ssl: add bind-option "strict-sni" 10158 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list" 10159 - MEDIUM: regex: Use PCRE JIT in acl 10160 - DOC: simplify bind option "interface" explanation 10161 - DOC: tfo: bump required kernel to linux-3.7 10162 - BUILD: add explicit support for TFO with USE_TFO 10163 - MEDIUM: New cli option -Ds for systemd compatibility 10164 - MEDIUM: add haproxy-systemd-wrapper 10165 - MEDIUM: add systemd service 10166 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes 10167 - BUG/MEDIUM: remove supplementary groups when changing gid 10168 - BUG/MEDIUM: config: fix parser crash with bad bind or server address 10169 - BUG/MINOR: Correct logic in cut_crlf() 10170 - CLEANUP: checks: Make desc argument to set_server_check_status const 10171 - CLEANUP: dumpstats: Make cli_release_handler() static 10172 - MEDIUM: server: Break out set weight processing code 10173 - MEDIUM: server: Allow relative weights greater than 100% 10174 - MEDIUM: server: Tighten up parsing of weight string 10175 - MEDIUM: checks: Add agent health check 10176 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot 10177 - BUG/MINOR: time: frequency counters are not totally accurate 10178 - BUG/MINOR: http: don't process abortonclose when request was sent 10179 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw() 10180 - BUG/MEDIUM: checks: ignore late resets after valid responses 10181 - DOC: fix bogus recommendation on usage of gpc0 counter 10182 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request 10183 - MINOR: signal: don't block SIGPROF by default 10184 - OPTIM: epoll: make use of EPOLLRDHUP 10185 - OPTIM: splice: detect shutdowns and avoid splice() == 0 10186 - OPTIM: splice: assume by default that splice is working correctly 10187 - BUG/MINOR: log: temporary fix for lost SSL info in some situations 10188 - BUG/MEDIUM: peers: only the last peers section was used by tables 10189 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers 10190 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait() 10191 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser 10192 - BUG/MINOR: config: free peer's address when exiting upon parsing error 10193 - BUG/MINOR: config: check the proper variable when parsing log minlvl 10194 - BUG/MEDIUM: checks: ensure the health_status is always within bounds 10195 - BUG/MINOR: cli: show sess should always validate s->listener 10196 - BUG/MINOR: log: improper NULL return check on utoa_pad() 10197 - CLEANUP: http: remove a useless null check 10198 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener() 10199 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds 10200 - BUG/MEDIUM: tools: off-by-one in quote_arg() 10201 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage 10202 - BUG/MINOR: unix: remove the 'level' field from the ux struct 10203 - CLEANUP: http: don't try to deinitialize http compression if it fails before init 10204 - CLEANUP: config: slowstart is never negative 10205 - CLEANUP: config: maxcompcpuusage is never negative 10206 - BUG/MEDIUM: log: emit '-' for empty fields again 10207 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7 10208 - BUILD: fix a warning emitted by isblank() on non-c99 compilers 10209 - BUILD: improve the makefile's support for libpcre 10210 - MEDIUM: halog: add support for counting per source address (-ic) 10211 - MEDIUM: tools: make str2sa_range support all address syntaxes 10212 - MEDIUM: config: make use of str2sa_range() instead of str2sa() 10213 - MEDIUM: config: use str2sa_range() to parse server addresses 10214 - MEDIUM: config: use str2sa_range() to parse peers addresses 10215 - MINOR: tests: add a config file to ease address parsing tests. 10216 - MINOR: ssl: add a global tunable for the max SSL/TLS record size 10217 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux 10218 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM 10219 - MINOR: config: report missing peers section name 10220 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range() 10221 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket 10222 - MINOR: tools: prepare str2sa_range() to return an error message 10223 - BUG/MEDIUM: checks: don't call connect() on unsupported address families 10224 - MINOR: tools: prepare str2sa_range() to accept a prefix 10225 - MEDIUM: tools: make str2sa_range() parse unix addresses too 10226 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses 10227 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses 10228 - MEDIUM: config: use str2sa_range() to parse log addresses 10229 - CLEANUP: tools: remove str2sun() which is not used anymore. 10230 - MEDIUM: config: add complete support for str2sa_range() in dispatch 10231 - MEDIUM: config: add complete support for str2sa_range() in server addr 10232 - MEDIUM: config: add complete support for str2sa_range() in 'server' 10233 - MEDIUM: config: add complete support for str2sa_range() in 'peer' 10234 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc' 10235 - CLEANUP: minor cleanup in str2sa_range() and str2ip() 10236 - CLEANUP: config: do not use multiple errmsg at once 10237 - MEDIUM: tools: support specifying explicit address families in str2sa_range() 10238 - MAJOR: listener: support inheriting a listening fd from the parent 10239 - MAJOR: tools: support environment variables in addresses 10240 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields 10241 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong 10242 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header 10243 - DOC: mention the new HTTP 307 and 308 redirect statues 10244 - MEDIUM: poll: do not use FD_* macros anymore 10245 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE 10246 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings 10247 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern 10248 - BUILD: fix usual isdigit() warning on solaris 10249 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris 10250 - OPTIM: buffer: remove one jump in buffer_count() 10251 - OPTIM: http: improve branching in chunk size parser 10252 - OPTIM: http: optimize the response forward state machine 10253 - BUILD: enable poll() by default in the makefile 10254 - BUILD: add explicit support for Mac OS/X 10255 - BUG/MAJOR: http: use a static storage for sample fetch context 10256 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file() 10257 - BUG/MAJOR: http: fix regression introduced by commit a890d072 10258 - BUG/MAJOR: http: fix regression introduced by commit d655ffe 10259 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process 10260 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used 10261 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages 10262 - MINOR: log: indicate it when some unreliable sample fetches are logged 10263 - MEDIUM: samples: move payload-based fetches and ACLs to their own file 10264 - MINOR: backend: rename sample fetch functions and declare the sample keywords 10265 - MINOR: frontend: rename sample fetch functions and declare the sample keywords 10266 - MINOR: listener: rename sample fetch functions and declare the sample keywords 10267 - MEDIUM: http: unify acl and sample fetch functions 10268 - MINOR: session: rename sample fetch functions and declare the sample keywords 10269 - MAJOR: acl: make all ACLs reference the fetch function via a sample. 10270 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's 10271 - MAJOR: acl: remove fetch argument validation from the ACL struct 10272 - MINOR: http: add new direction-explicit sample fetches for headers and cookies 10273 - MINOR: payload: add new direction-explicit sample fetches 10274 - CLEANUP: acl: remove ACL hooks which were never used 10275 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed" 10276 - MINOR: sample: provide a function to report the name of a sample check point 10277 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires 10278 - CLEANUP: acl: remove unused references to ACL_USE_* 10279 - MINOR: http: replace acl_parse_ver with acl_parse_str 10280 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr 10281 - MAJOR: acl: add option -m to change the pattern matching method 10282 - MINOR: acl: remove the use_count in acl keywords 10283 - MEDIUM: acl: have a pointer to the keyword name in acl_expr 10284 - MEDIUM: acl: support using sample fetches directly in ACLs 10285 - MEDIUM: http: remove val_usr() to validate user_lists 10286 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve 10287 - MINOR: ssl: add support for the "alpn" bind keyword 10288 - MINOR: http: status code 303 is HTTP/1.1 only 10289 - MEDIUM: http: implement redirect 307 and 308 10290 - MINOR: http: status 301 should not be marked non-cacheable 10291 102922012/12/28 : 1.5-dev17 10293 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache. 10294 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5 10295 - BUG/MINOR: stats: last fix was still wrong 10296 - BUG/MINOR: stats: http-request rules still don't cope with stats 10297 - BUG/MINOR: http: http-request add-header emits a corrupted header 10298 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD 10299 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant 10300 - BUILD: log: unused variable svid 10301 - CLEANUP: http: rename the misleading http_check_access_rule 10302 - MINOR: http: move redirect rule processing to its own function 10303 - REORG: config: move the http redirect rule parser to proto_http.c 10304 - MEDIUM: http: add support for "http-request redirect" rules 10305 - MEDIUM: http: add support for "http-request tarpit" rule 10306 103072012/12/24 : 1.5-dev16 10308 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections. 10309 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection. 10310 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate. 10311 - MINOR: contrib: make the iprange tool grep for addresses 10312 - CLEANUP: polling: gcc doesn't always optimize constants away 10313 - OPTIM: poll: optimize fd management functions for low register count CPUs 10314 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner 10315 - OPTIM: epoll: use a temp variable for intermediary flag computations 10316 - OPTIM: epoll: current fd does not count as a new one 10317 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os 10318 - MINOR: http: make resp_ver and status ACLs check for the presence of a response 10319 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers 10320 - BUG/MINOR: stream_interface: don't return when the fd is already set 10321 - BUG/MEDIUM: connection: always update connection flags prior to computing polling 10322 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0 10323 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes 10324 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up 10325 - BUG/MINOR: http: don't abort client connection on premature responses 10326 - BUILD: no need to clean up when making git-tar 10327 - MINOR: log: add a tag for amount of bytes uploaded from client to server 10328 - BUG/MEDIUM: log: fix possible segfault during config parsing 10329 - MEDIUM: log: change a few log tokens to make them easier to remember 10330 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants 10331 - MEDIUM: log-format: make the format parser more robust and more extensible 10332 - MINOR: sample: support cast from bool to string 10333 - MINOR: samples: add a function to fetch and convert any sample to a string 10334 - MINOR: log: add lf_text_len 10335 - MEDIUM: log: add the ability to include samples in logs 10336 - REORG: stats: massive code reorg and cleanup 10337 - REORG: stats: move the HTTP header injection to proto_http 10338 - REORG: stats: functions are now HTTP/CLI agnostic 10339 - BUG/MINOR: log: fix regression introduced by commit 8a3f52 10340 - MINOR: chunks: centralize the trash chunk allocation 10341 - MEDIUM: stats: use hover boxes instead of title to report details 10342 - MEDIUM: stats: use multi-line tips to display detailed counters 10343 - MINOR: tools: simplify the use of the int to ascii macros 10344 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML 10345 - MINOR: http: prepare to support more http-request actions 10346 - MINOR: log: make parse_logformat_string() take a const char * 10347 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers 10348 103492012/12/12 : 1.5-dev15 10350 - DOC: add a few precisions on compression 10351 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert. 10352 - BUG/MINOR: ssl: One free session in cache remains unused. 10353 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err 10354 - MEDIUM: ssl: manage shared cache by blocks for huge sessions. 10355 - MINOR: acl: add fetch for server session rate 10356 - BUG/MINOR: compression: Content-Type is case insensitive 10357 - MINOR: compression: disable on multipart or status != 200 10358 - BUG/MINOR: http: don't report client aborts as server errors 10359 - MINOR: stats: compute the ratio of compressed response based on 2xx responses 10360 - MINOR: http: factor out the content-type checks 10361 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios 10362 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation 10363 - BUG/MINOR: http: disable compression when message has no body 10364 - MINOR: compression: make the stats a bit more robust 10365 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes 10366 - MINOR: connection: don't remove failed handshake flags 10367 - MEDIUM: connection: add an error code in connections 10368 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections 10369 - MEDIUM: connection: add error reporting for the PROXY protocol header 10370 - MEDIUM: connection: add error reporting for the SSL 10371 - DOC: document the connection error format in logs 10372 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests 10373 - BUILD: stdbool is not portable 10374 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead 10375 - BUG/MAJOR: raw_sock: must check error code on hangup 10376 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP 10377 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled 10378 - MINOR: stats: add a few more information on session dump 10379 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections 10380 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations 10381 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports 10382 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options 10383 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies 10384 - CLEANUP: proto_tcp: use the same code to bind servers and backends 10385 - CLEANUP: backend: use the same tproxy address selection code for servers and backends 10386 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13 10387 - MEDIUM: proto_tcp: add support for tracking L7 information 10388 - MEDIUM: counters: add sc1_trackers/sc2_trackers 10389 - MINOR: http: add the "base32" pattern fetch function 10390 - MINOR: http: add the "base32+src" fetch method. 10391 - CLEANUP: session: use an array for the stick counters 10392 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2 10393 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2 10394 - BUG/MAJOR: connection: always recompute polling status upon I/O 10395 - BUG/MINOR: connection: remove a few synchronous calls to polling updates 10396 - MINOR: config: improve error checking on TCP stick-table tracking 10397 - DOC: add some clarifications to the readme 10398 103992012/11/26 : 1.5-dev14 10400 - DOC: fix minor typos 10401 - BUG/MEDIUM: compression: does not forward trailers 10402 - MINOR: buffer_dump with ASCII 10403 - BUG/MEDIUM: checks: mark the check as stopped after a connect error 10404 - BUG/MEDIUM: checks: ensure we completely disable polling upon success 10405 - BUG/MINOR: checks: don't mark the FD as closed before transport close 10406 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks 10407 - MINOR: cli: report the msg state in full text in "show sess $PTR" 10408 - CLEANUP: checks: rename some server check flags 10409 - MAJOR: checks: rework completely bogus state machine 10410 - BUG/MINOR: checks: slightly clean the state machine up 10411 - MEDIUM: checks: avoid waking the application up for pure TCP checks 10412 - MEDIUM: checks: close the socket as soon as we have a response 10413 - BUG/MAJOR: checks: close FD on all timeouts 10414 - MINOR: checks: fix recv polling after connect() 10415 - MEDIUM: connection: provide a common conn_full_close() function 10416 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts 10417 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops 10418 - MINOR: listeners: make the accept loop more robust when maxaccept==0 10419 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one 10420 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit 10421 - BUG/MINOR: stats: fix inversion of the report of a check in progress 10422 - MEDIUM: tcp: add explicit support for delayed ACK in connect() 10423 - BUG/MEDIUM: connection: always disable polling upon error 10424 - MINOR: connection: abort earlier when errors are detected 10425 - BUG/MEDIUM: checks: report handshake failures 10426 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish 10427 - MINOR: tcp: add support for the "v6only" bind option 10428 - MINOR: stats: also report the computed compression savings in html stats 10429 - MINOR: stats: report the total number of compressed responses per front/back 10430 - MINOR: tcp: add support for the "v4v6" bind option 10431 - DOC: stats: document the comp_rsp stats column 10432 - BUILD: buffer: fix another isprint() warning on solaris 10433 - MINOR: cli: add support for the "show sess all" command 10434 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list 10435 - MINOR: cli: improve output format for show sess $ptr 10436 104372012/11/22 : 1.5-dev13 10438 - BUILD: fix build issue without USE_OPENSSL 10439 - BUILD: fix compilation error with DEBUG_FULL 10440 - DOC: ssl: remove prefer-server-ciphers documentation 10441 - DOC: ssl: surround keywords with quotes 10442 - DOC: fix minor typo on http-send-name-header 10443 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs 10444 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl 10445 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl 10446 - BUILD: report zlib support in haproxy -vv 10447 - DOC: compression: add some details and clean up the formatting 10448 - DOC: Change is_ssl acl to ssl_fc acl in example 10449 - DOC: make it clear what the HTTP request size is 10450 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file 10451 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading 10452 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation 10453 - DOC: ssl: add 'ecdhe' statement on 'bind' 10454 - MEDIUM: ssl: add client certificate authentication support 10455 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind' 10456 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present 10457 - DOC: ssl: add fetch and ACL 'client_cert' 10458 - MINOR: ssl: add ignore verify errors options 10459 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind' 10460 - MINOR: ssl: add fetch and ACL 'ssl_verify_result' 10461 - DOC: ssl: add fetch and ACL 'ssl_verify_result' 10462 - MINOR: ssl: add fetches and ACLs to return verify errors 10463 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth' 10464 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1 10465 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory 10466 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'. 10467 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'. 10468 - MEDIUM: config: authorize frontend and listen without bind. 10469 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption 10470 - DOC: ssl: add 'no-tls-tickets' statement documentation. 10471 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified. 10472 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature. 10473 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL. 10474 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686. 10475 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners. 10476 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes 10477 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements. 10478 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'. 10479 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file' 10480 - MINOR: ssl: use bit fields to store ssl options instead of one int each 10481 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind. 10482 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server 10483 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS. 10484 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3' 10485 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c 10486 - MEDIUM: ssl: reject ssl server keywords in default-server statement 10487 - MINOR: ssl: add statement 'no-tls-tickets' on server side. 10488 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers. 10489 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file. 10490 - MINOR: sample: manage binary to string type convertion in stick-table and samples. 10491 - MINOR: acl: add parse and match primitives to use binary type on ACLs 10492 - MINOR: sample: export 'sample_get_trash_chunk(void)' 10493 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c' 10494 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize' 10495 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id' 10496 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version' 10497 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn' 10498 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg' 10499 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg' 10500 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter' 10501 - MINOR: ssl: add 'crt' statement on server. 10502 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate 10503 - BUG/MEDIUM: ssl: review polling on reneg. 10504 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled. 10505 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server. 10506 - MINOR: build: allow packagers to specify the ssl cache size 10507 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind. 10508 - MINOR: ssl: Add tune.ssl.lifetime statement in global. 10509 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8 10510 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755 10511 - DOC: duplicate ssl_sni section 10512 - MEDIUM: HTTP compression (zlib library support) 10513 - CLEANUP: use struct comp_ctx instead of union 10514 - BUILD: remove dependency to zlib.h 10515 - MINOR: compression: memlevel and windowsize 10516 - MEDIUM: use pool for zlib 10517 - MINOR: compression: try init in cfgparse.c 10518 - MINOR: compression: init before deleting headers 10519 - MEDIUM: compression: limit RAM usage 10520 - MINOR: compression: tune.comp.maxlevel 10521 - MINOR: compression: maximum compression rate limit 10522 - MINOR: log-format: check number of arguments in cfgparse.c 10523 - BUG/MEDIUM: compression: no Content-Type header but type in configuration 10524 - BUG/MINOR: compression: deinit zlib only when required 10525 - MEDIUM: compression: don't compress when no data 10526 - MEDIUM: compression: use pool for comp_ctx 10527 - MINOR: compression: rate limit in 'show info' 10528 - MINOR: compression: report zlib memory usage 10529 - BUG/MINOR: compression: dynamic level increase 10530 - DOC: compression: unsupported cases. 10531 - MINOR: compression: CPU usage limit 10532 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection 10533 - BUG/MAJOR: ssl: missing tests in ACL fetch functions 10534 - MINOR: config: add a function to indent error messages 10535 - REORG: split "protocols" files into protocol and listener 10536 - MEDIUM: config: replace ssl_conf by bind_conf 10537 - CLEANUP: listener: remove unused conf->file and conf->line 10538 - MEDIUM: listener: add a minimal framework to register "bind" keyword options 10539 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp 10540 - MEDIUM: move bind SSL parsing to ssl_sock 10541 - MINOR: config: improve error reporting for "bind" lines 10542 - MEDIUM: config: move the common "bind" settings to listener.c 10543 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c 10544 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error 10545 - MINOR: listener: add a scope field in the bind keyword lists 10546 - MINOR: config: pass the file and line to config keyword parsers 10547 - MINOR: stats: fill the file and line numbers in the stats frontend 10548 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line. 10549 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends 10550 - REORG: listener: move unix perms from the listener to the bind_conf 10551 - BUG: backend: balance hdr was broken since 1.5-dev11 10552 - MINOR: standard: make memprintf() support a NULL destination 10553 - MINOR: config: make str2listener() use memprintf() to report errors. 10554 - MEDIUM: stats: remove the stats_sock struct from the global struct 10555 - MINOR: ssl: set the listeners' data layer to ssl during parsing 10556 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket 10557 - DOC: move bind options to their own section 10558 - DOC: stats: refer to "bind" section for "stats socket" settings 10559 - DOC: fix index to reference bind and server options 10560 - BUG: http: do not print garbage on invalid requests in debug mode 10561 - BUG/MINOR: config: check the proper pointer to report unknown protocol 10562 - CLEANUP: connection: offer conn_prepare() to set up a connection 10563 - CLEANUP: config: fix typo inteface => interface 10564 - BUG: stats: fix regression introduced by commit 4348fad1 10565 - MINOR: cli: allow to set frontend maxconn to zero 10566 - BUG/MAJOR: http: chunk parser was broken with buffer changes 10567 - MEDIUM: monitor: simplify handling of monitor-net and mode health 10568 - MINOR: connection: add a pointer to the connection owner 10569 - MEDIUM: connection: make use of the owner instead of container_of 10570 - BUG/MINOR: ssl: report the L4 connection as established when possible 10571 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload 10572 - BUG/MINOR: config: use a copy of the file name in proxy configurations 10573 - BUG/MEDIUM: listener: don't pause protocols that do not support it 10574 - MEDIUM: proxy: add the global frontend to the list of normal proxies 10575 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem() 10576 - MINOR: signal: really ignore signals configured with no handler 10577 - MINOR: buffers: add a few functions to write chars, strings and blocks 10578 - MINOR: raw_sock: always report asynchronous connection errors 10579 - MEDIUM: raw_sock: improve connection error reporting 10580 - REORG: connection: rename the data layer the "transport layer" 10581 - REORG: connection: rename app_cb "data" 10582 - MINOR: connection: provide a generic data layer wakeup callback 10583 - MINOR: connection: split conn_prepare() in two functions 10584 - MINOR: connection: add an init callback to the data_cb struct 10585 - MEDIUM: session: use a specific data_cb for embryonic sessions 10586 - MEDIUM: connection: use a generic data-layer init() callback 10587 - MEDIUM: connection: reorganize connection flags 10588 - MEDIUM: connection: only call the data->wake callback on activity 10589 - MEDIUM: connection: make it possible for data->wake to return an error 10590 - MEDIUM: session: register a data->wake callback to process errors 10591 - MEDIUM: connection: don't call the data->init callback upon error 10592 - MEDIUM: connection: it's not the data layer's role to validate the connection 10593 - MEDIUM: connection: automatically disable polling on error 10594 - REORG: connection: move the PROXY protocol management to connection.c 10595 - MEDIUM: connection: add a new local send-proxy transport callback 10596 - MAJOR: checks: make use of the connection layer to send checks 10597 - REORG: server: move the check-specific parts into a check subsection 10598 - MEDIUM: checks: use real buffers to store requests and responses 10599 - MEDIUM: check: add the ctrl and transport layers in the server check structure 10600 - MAJOR: checks: completely use the connection transport layer 10601 - MEDIUM: checks: add the "check-ssl" server option 10602 - MEDIUM: checks: enable the PROXY protocol with health checks 10603 - CLEANUP: checks: remove minor warnings for assigned but not used variables 10604 - MEDIUM: tcp: enable TCP Fast Open on systems which support it 10605 - BUG: connection: fix regression from commit 9e272bf9 10606 - CLEANUP: cttproxy: remove a warning on undeclared close() 10607 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used 10608 - MEDIUM: listener: add support for linux's accept4() syscall 10609 - MINOR: halog: sort output by cookie code 10610 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines 10611 - BUG/MINOR: halog: fix help message for -ut/-uto 10612 - MINOR: halog: add a parameter to limit output line count 10613 - BUILD: accept4: move the socketcall declaration outside of accept4() 10614 - MINOR: server: add minimal infrastructure to parse keywords 10615 - MINOR: standard: make indent_msg() support empty messages 10616 - MEDIUM: server: check for registered keywords when parsing unknown keywords 10617 - MEDIUM: server: move parsing of keyword "id" to server.c 10618 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin 10619 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c 10620 - MEDIUM: log: suffix the frontend's name with '~' when using SSL 10621 - MEDIUM: connection: always unset the transport layer upon close 10622 - BUG/MINOR: session: fix some leftover from debug code 10623 - BUG/MEDIUM: session: enable the conn_session_update() callback 10624 - MEDIUM: connection: add a flag to hold the transport layer 10625 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer 10626 - MINOR: log: make lf_text use a const char * 10627 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv 10628 - REORG: http: rename msg->buf to msg->chn since it's a channel 10629 - CLEANUP: http: use 'chn' to name channel variables, not 'buf' 10630 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names 10631 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names 10632 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers 10633 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers 10634 - MAJOR: channel: replace the struct buffer with a pointer to a buffer 10635 - OPTIM: channel: reorganize struct members to improve cache efficiency 10636 - CLEANUP: session: remove term_trace which is not used anymore 10637 - OPTIM: session: reorder struct session fields 10638 - OPTIM: connection: pack the struct target 10639 - DOC: document relations between internal entities 10640 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information 10641 - BUILD: ssl: fix shctx build on older compilers 10642 - MEDIUM: ssl: add support for the "npn" bind keyword 10643 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions 10644 - MINOR: chunk: provide string compare functions 10645 - MINOR: sample: accept fetch keywords without parenthesis 10646 - MEDIUM: sample: pass an empty list instead of a null for fetch args 10647 - MINOR: ssl: improve socket behaviour upon handshake abort. 10648 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode 10649 - MEDIUM: listener: provide a fallback for accept4() when not supported 10650 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario 10651 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes 10652 - OPTIM: channel: inline channel_forward's fast path 10653 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf() 10654 - OPTIM: tools: inline hex2i() 10655 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state 10656 - MINOR: compression: automatically disable compression for older browsers 10657 - MINOR: compression: optimize memLevel to improve byte rate 10658 - BUG/MINOR: http: compression should consider all Accept-Encoding header values 10659 - BUILD: fix coexistence of openssl and zlib 10660 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial' 10661 - BUG/MEDIUM: command-line option -D must have precedence over "debug" 10662 - MINOR: tools: add a clear_addr() function to unset an address 10663 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set 10664 - CLEANUP: remove trashlen 10665 - MAJOR: session: detach the connections from the stream interfaces 10666 - DOC: update document describing relations between internal entities 10667 - BUILD: make it possible to specify ZLIB path 10668 - MINOR: compression: add an offload option to remove the Accept-Encoding header 10669 - BUG: compression: disable auto-close and enable MSG_MORE during transfer 10670 - CLEANUP: completely remove trashlen 10671 - MINOR: chunk: add a function to reset a chunk 10672 - CLEANUP: replace chunk_printf() with chunk_appendf() 10673 - MEDIUM: make the trash be a chunk instead of a char * 10674 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions 10675 - MEDIUM: stick-table: allocate the table key of size buffer size 10676 - BUG/MINOR: stream_interface: don't loop over ->snd_buf() 10677 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent 10678 - OPTIM: session: don't process the whole session when only timers need a refresh 10679 - BUG/MINOR: session: mark the handshake as complete earlier 10680 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag 10681 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags 10682 - MAJOR: sepoll: make the poller totally event-driven 10683 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set 10684 - BUILD: compression: remove a build warning 10685 - MEDIUM: fd: don't unset fdtab[].updated upon delete 10686 - REORG: fd: move the speculative I/O management from ev_sepoll 10687 - REORG: fd: move the fd state management from ev_sepoll 10688 - REORG: fd: centralize the processing of speculative events 10689 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN 10690 - BUILD: stream_interface: remove si_fd() and its references 10691 - BUILD: compression: enable build in BSD and OSX Makefiles 10692 - MAJOR: ev_select: make the poller support speculative events 10693 - MAJOR: ev_poll: make the poller support speculative events 10694 - MAJOR: ev_kqueue: make the poller support speculative events 10695 - MAJOR: polling: replace epoll with sepoll and remove sepoll 10696 - MAJOR: polling: remove unused callbacks from the poller struct 10697 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present 10698 - CLEANUP: channel: remove any reference of the hijackers 10699 - CLEANUP: stream_interface: remove the external task type target 10700 - MAJOR: connection: replace struct target with a pointer to an enum 10701 - BUG: connection: fix typo in previous commit 10702 - BUG: polling: don't skip polled events in the spec list 10703 - MINOR: splice: disable it when the system returns EBADF 10704 - MINOR: build: allow packagers to specify the default maxzlibmem 10705 - BUG: halog: fix broken output limitation 10706 - BUG: proxy: fix server name lookup in get_backend_server() 10707 - BUG: compression: do not always increment the round counter on allocation failure 10708 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests 10709 - MINOR: global: don't prevent nbproc from being redefined 10710 - MINOR: config: support process ranges for "bind-process" 10711 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map") 10712 - MINOR: ssl: rename and document the tune.ssl.cachesize option 10713 - DOC: update the PROXY protocol spec to support v2 10714 - MINOR: standard: add a simple popcount function 10715 - MEDIUM: adjust the maxaccept per listener depending on the number of processes 10716 - BUG: compression: properly disable compression when content-type does not match 10717 - MINOR: cli: report connection status in "show sess xxx" 10718 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck 10719 - BUILD: cli: fix build when SSL is enabled 10720 - MINOR: cli: report the fd state in "show sess xxx" 10721 - MINOR: cli: report an error message on missing argument to compression rate 10722 - MINOR: http: add some debugging functions to pretty-print msg state names 10723 - BUG/MAJOR: stream_interface: read0 not always handled since dev12 10724 - DOC: documentation on http header capture is wrong 10725 - MINOR: http: allow the cookie capture size to be changed 10726 - DOC: http header capture has not been limited in size for a long time 10727 - DOC: update readme with build methods for BSD 10728 - BUILD: silence a warning on Solaris about usage of isdigit() 10729 - MINOR: stats: report HTTP compression stats per frontend and per backend 10730 - MINOR: log: add '%Tl' to log-format 10731 - MINOR: samples: update the url_param fetch to match parameters in the path 10732 107332012/09/10 : 1.5-dev12 10734 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read 10735 - MEDIUM: ssl: add support for prefer-server-ciphers option 10736 - MINOR: IPv6 support for transparent proxy 10737 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined 10738 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined 10739 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS). 10740 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer 10741 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines 10742 - MEDIUM: config: add support for the 'ssl' option on 'server' lines 10743 - MEDIUM: ssl: protect against client-initiated renegociation 10744 - BUILD: add optional support for SSL via the USE_OPENSSL flag 10745 - MEDIUM: ssl: add shared memory session cache implementation. 10746 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache 10747 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size. 10748 - MEDIUM: ssl: add support for SNI and wildcard certificates 10749 - DOC: Typos cleanup 10750 - DOC: fix name for "option independant-streams" 10751 - DOC: specify the default value for maxconn in the context of a proxy 10752 - BUG/MINOR: to_log erased with unique-id-format 10753 - LICENSE: add licence exception for OpenSSL 10754 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers 10755 - BUILD: add an AIX 5.2 (and later) target. 10756 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection 10757 - MINOR: halog: use the more recent dual-mode fgets2 implementation 10758 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches 10759 - CLEANUP: halog: make clean should also remove .o files 10760 - OPTIM: halog: make use of memchr() on platforms which provide a fast one 10761 - OPTIM: halog: improve cold-cache behaviour when loading a file 10762 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag 10763 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_* 10764 - MEDIUM: pattern: add the "base" sample fetch method 10765 - OPTIM: i386: make use of kernel-mode-linux when available 10766 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message 10767 - BUG/MINOR: polling: some events were not set in various pollers 10768 - MINOR: http: add the urlp_val ACL match 10769 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families 10770 - MINOR: stats/cli: add plans to support more stick-table actions 10771 - MEDIUM: stats/cli: add support for "set table key" to enter values 10772 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab 10773 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll 10774 - REORG/MEDIUM: fd: get rid of FD_STLISTEN 10775 - REORG/MINOR: connection: move declaration to its own include file 10776 - REORG/MINOR: checks: put a struct connection into the server 10777 - MINOR: connection: add flags to the connection struct 10778 - MAJOR: get rid of fdtab[].state and use connection->flags instead 10779 - MINOR: fd: add a new I/O handler to fdtab 10780 - MEDIUM: polling: prepare to call the iocb() function when defined. 10781 - MEDIUM: checks: make use of fdtab->iocb instead of cb[] 10782 - MEDIUM: protocols: use the generic I/O callback for accept callbacks 10783 - MINOR: connection: add a handler for fd-based connections 10784 - MAJOR: connection: replace direct I/O callbacks with the connection callback 10785 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore 10786 - MEDIUM: connection: remove the FD_POLL_* flags only once 10787 - MEDIUM: connection: extract the send_proxy callback from proto_tcp 10788 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes 10789 - CLEANUP: remove the now unused fdtab direct I/O callbacks 10790 - MAJOR: remove the stream interface and task management code from sock_* 10791 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops 10792 - MEDIUM: stream_interface: centralize the SI_FL_ERR management 10793 - MAJOR: connection: add a new CO_FL_CONNECTED flag 10794 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes 10795 - MAJOR: connection: call data layer handshakes from the handler 10796 - MEDIUM: fd: remove the EV_FD_COND_* primitives 10797 - MINOR: sock_raw: move calls to si_data_close upper 10798 - REORG: connection: replace si_data_close() with conn_data_close() 10799 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr 10800 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer 10801 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls 10802 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required 10803 - MEDIUM: connection: add definitions for dual polling mechanisms 10804 - MEDIUM: connection: make use of the new polling functions 10805 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers 10806 - MEDIUM: checks: don't use FD_WAIT_* anymore 10807 - MINOR: fd: get rid of FD_WAIT_* 10808 - MEDIUM: stream_interface: offer a generic function for connection updates 10809 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections 10810 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops 10811 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function 10812 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback 10813 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function 10814 - REORG/MAJOR: use "struct channel" instead of "struct buffer" 10815 - REORG/MAJOR: extract "struct buffer" from "struct channel" 10816 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions 10817 - REORG: sock_raw: rename the files raw_sock* 10818 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read() 10819 - MAJOR: raw_sock: temporarily disable splicing 10820 - MINOR: stream-interface: add an rcv_buf callback to sock_ops 10821 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb() 10822 - MAJOR: connection: split the send call into connection and stream interface 10823 - MAJOR: stream-interface: restore splicing mechanism 10824 - MAJOR: stream-interface: make conn_notify_si() more robust 10825 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy() 10826 - MAJOR: stream-interface: don't commit polling changes in every callback 10827 - MAJOR: stream-interface: fix splice not to call chk_snd by itself 10828 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress 10829 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops 10830 - REORG: buffers: split buffers into chunk,buffer,channel 10831 - MAJOR: channel: remove the BF_OUT_EMPTY flag 10832 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h 10833 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel 10834 - MINOR: buffer: provide a new buffer_full() function 10835 - MAJOR: channel: stop relying on BF_FULL to take action 10836 - MAJOR: channel: remove the BF_FULL flag 10837 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h} 10838 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_ 10839 - CLEANUP: channel: use "channel" instead of "buffer" in function names 10840 - REORG: connection: move the target pointer from si to connection 10841 - MAJOR: connection: move the addr field from the stream_interface 10842 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags 10843 - MEDIUM: proto_tcp: remove any dependence on stream_interface 10844 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key 10845 - MEDIUM: connection: add an ->init function to data layer 10846 - MAJOR: session: introduce embryonic sessions 10847 - MAJOR: connection: make the PROXY decoder a handshake handler 10848 - CLEANUP: frontend: remove the old proxy protocol decoder 10849 - MAJOR: connection: rearrange the polling flags. 10850 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet 10851 - MEDIUM: connection: complete the polling cleanups 10852 - MEDIUM: connection: avoid calling handshakes when polling is required 10853 - MAJOR: stream_interface: continue to update data polling flags during handshakes 10854 - CLEANUP: fd: remove fdtab->flags 10855 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest 10856 - CLEANUP: includes: fix includes for a number of users of fd.h 10857 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners 10858 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites 10859 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines 10860 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake 10861 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL 10862 - BUILD: ssl: fix shctx build on RHEL with futex 10863 - BUILD: include sys/socket.h to fix build failure on FreeBSD 10864 - BUILD: fix build error without SSL (ssl_cert) 10865 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS 10866 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1 10867 - MEDIUM: config: support per-listener backlog and maxconn 10868 - MINOR: session: do not send an HTTP/500 error on SSL sockets 10869 - MEDIUM: config: implement maxsslconn in the global section 10870 - BUG: tcp: close socket fd upon connect error 10871 - MEDIUM: connection: improve error handling around the data layer 10872 - MINOR: config: make the tasks "nice" value configurable on "bind" lines. 10873 - BUILD: shut a gcc warning introduced by commit 269ab31 10874 - MEDIUM: config: centralize handling of SSL config per bind line 10875 - BUILD: makefile: report USE_OPENSSL status in build options 10876 - BUILD: report openssl build settings in haproxy -vv 10877 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_* 10878 - DOC: add a special acknowledgement for the stud project 10879 - DOC: add missing SSL options for servers and listeners 10880 - BUILD: automatically add -lcrypto for SSL 10881 - DOC: add some info about openssl build in the README 10882 108832012/06/04 : 1.5-dev11 10884 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations 10885 - BUG/MAJOR: trash must always be the size of a buffer 10886 - DOC: fix minor regex example issue and improve doc on stats 10887 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT 10888 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct 10889 - MINOR: checks: add on-marked-up option 10890 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation 10891 - MEDIUM: stream_interface: remove the si->init 10892 - MINOR: buffers: add a rewind function 10893 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header 10894 - MAJOR: http: stop using msg->sol outside the parsers 10895 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks 10896 - MEDIUM: http: get rid of msg->som which is not used anymore 10897 - MEDIUM: http: msg->sov and msg->sol will never wrap 10898 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set 10899 - BUG/MINOR: stop connect timeout when connect succeeds 10900 - REORG: move the send-proxy code to tcp_connect_write() 10901 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept 10902 - MINOR: stream_interface: introduce a new "struct connection" type 10903 - REORG/MINOR: stream_interface: move si->fd to struct connection 10904 - REORG/MEDIUM: stream_interface: move applet->state and private to connection 10905 - MINOR: stream_interface: add a data channel close function 10906 - MEDIUM: stream_interface: call si_data_close() before releasing the si 10907 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw 10908 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect 10909 - MINOR: add a new function call tracer for debugging purposes 10910 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer 10911 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr() 10912 - BUG/MEDIUM: register peer sync handler in the proper order 10913 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer 10914 - BUG/MINOR: fix option httplog validation with TCP frontends 10915 - BUG/MINOR: log: don't report logformat errors in backends 10916 - REORG/MINOR: use dedicated proxy flags for the cookie handling 10917 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http 10918 - MINOR: http: add support for "httponly" and "secure" cookie attributes 10919 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once 10920 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants 10921 - MEDIUM: stats: add support for soft stop/soft start in the admin interface 10922 - MEDIUM: stats: add the ability to kill sessions from the admin interface 10923 - BUILD: add support for linux kernels >= 2.6.28 10924 109252012/05/14 : 1.5-dev10 10926 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally 10927 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist 10928 - CLEANUP: auth: make the code build again with DEBUG_AUTH 10929 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names 10930 - REORG: use the name sock_raw instead of stream_sock 10931 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT 10932 - BUG/MEDIUM: stream_interface: restore get_src/get_dst 10933 - CLEANUP: sock_raw: remove last references to stream_sock 10934 - CLEANUP: stream_interface: stop exporting socket layer functions 10935 - MINOR: stream_interface: add an init callback to sock_ops 10936 - MEDIUM: stream_interface: derive the socket operations from the target 10937 - MAJOR: fd: remove the need for the socket layer to recheck the connection 10938 - MINOR: session: call the socket layer init function when a session establishes 10939 - MEDIUM: session: add support for tunnel timeouts 10940 - MINOR: standard: add a new debug macro : fddebug() 10941 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab 10942 - OPTIM: proto_http: don't enable quick-ack on empty buffers 10943 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events 10944 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag 10945 109462012/05/08 : 1.5-dev9 10947 - MINOR: Add release callback to si_applet 10948 - CLEANUP: Fix some minor typos 10949 - MINOR: Add TO/FROM_SET flags to struct stream_interface 10950 - CLEANUP: Fix some minor whitespace issues 10951 - MINOR: stats admin: allow unordered parameters in POST requests 10952 - CLEANUP: fix typo in findserver() log message 10953 - MINOR: stats admin: use the backend id instead of its name in the form 10954 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes 10955 - DOC: cleanup indentation, alignment, columns and chapters 10956 - DOC: fix some keywords arguments documentation 10957 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX" 10958 - BUG/MAJOR: log: possible segfault with logformat 10959 - MEDIUM: log: split of log_format generation 10960 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid 10961 - MEDIUM: log: Unique ID 10962 - MINOR: log: log-format: usable without httplog and tcplog 10963 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses 10964 - MINOR: contrib/iprange: add a network IP range to mask converter 10965 - MEDIUM: session: implement the "use-server" directive 10966 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used 10967 - MEDIUM: http: make extract_cookie_value() iterate over cookie values 10968 - MEDIUM: http: add cookie and scookie ACLs 10969 - CLEANUP: lb_first: add reference to a paper describing the original idea 10970 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET 10971 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present 10972 - BUILD: http: make extract_cookie_value() return an int not size_t 10973 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values 10974 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR 10975 - MINOR: standard: add a memprintf() function to build formatted error messages 10976 - CLEANUP: remove a few warning about unchecked return values in debug code 10977 - MEDIUM: move message-related flags from transaction to message 10978 - DOC: add a diagram to explain how circular buffers work 10979 - MAJOR: buffer rework: replace ->send_max with ->o 10980 - MAJOR: buffer: replace buf->l with buf->{o+i} 10981 - MINOR: buffers: provide simple pointer normalization functions 10982 - MINOR: buffers: remove unused function buffer_contig_data() 10983 - MAJOR: buffers: replace buf->w with buf->p - buf->o 10984 - MAJOR: buffers: replace buf->r with buf->p + buf->i 10985 - MAJOR: http: move buffer->lr to http_msg->next 10986 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin 10987 - CLEANUP: http: remove unused http_msg->col 10988 - MAJOR: http: turn http_msg->eol to a buffer-relative offset 10989 - MEDIUM: http: add a pointer to the buffer in http_msg 10990 - MAJOR: http: make http_msg->sol relative to buffer's origin 10991 - MEDIUM: http: http_send_name_header: remove references to msg and buffer 10992 - MEDIUM: http: remove buffer arg in a few header manipulation functions 10993 - MEDIUM: http: remove buffer arg in http_capture_bad_message 10994 - MEDIUM: http: remove buffer arg in http_msg_analyzer 10995 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10 10996 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign 10997 - MEDIUM: http: remove buffer arg in chunk parsing functions 10998 - MINOR: http: remove useless wrapping checks in http_msg_analyzer 10999 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places 11000 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls 11001 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer 11002 - MEDIUM: buffers: rename a number of buffer management functions 11003 - MEDIUM: http: add a prefetch function for ACL pattern fetch 11004 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http() 11005 - BUG/MINOR: http_auth: ACLs are volatile, not permanent 11006 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies 11007 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr() 11008 - MEDIUM: add a new typed argument list parsing framework 11009 - MAJOR: acl: make use of the new argument parsing framework 11010 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration 11011 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types 11012 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time 11013 - MAJOR: acl: ensure that implicit table and proxies are valid 11014 - MEDIUM: acl: remove unused tests for missing args when args are mandatory 11015 - MEDIUM: pattern: replace type pattern_arg with type arg 11016 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments 11017 - MEDIUM: pattern: use the standard arg parser 11018 - MEDIUM: pattern: add an argument validation callback to pattern descriptors 11019 - MEDIUM: pattern: report the precise argument parsing error when known. 11020 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag 11021 - MINOR: pattern: add a new 'sample' type to store fetched data 11022 - MEDIUM: pattern: add new sample types to replace pattern types 11023 - MAJOR: acl: make use of the new sample struct and get rid of acl_test 11024 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs 11025 - MEDIUM: acl: get rid of the SET_RES flags 11026 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE 11027 - MINOR: pattern: replace struct pattern with struct sample 11028 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere 11029 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description 11030 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down 11031 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions 11032 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie 11033 - MEDIUM: acl/pattern: use the same direction scheme 11034 - MEDIUM: acl/pattern: start merging common sample fetch functions 11035 - MEDIUM: pattern: ensure that sample types always cast into other types. 11036 - MEDIUM: acl/pattern: factor out the src/dst address fetches 11037 - MEDIUM: acl: implement payload and payload_lv 11038 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer 11039 - MINOR: stick_table: centralize the handling of empty keys 11040 - MINOR: pattern: centralize handling of unstable data in pattern_process() 11041 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version 11042 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions 11043 - MINOR: acl: add a val_args field to keywords 11044 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs 11045 - MEDIUM: http: merge acl and pattern header fetch functions 11046 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one 11047 - MEDIUM: acl: report parsing errors to the caller 11048 - MINOR: arg: improve error reporting on invalid arguments 11049 - MINOR: acl: report errors encountered when loading patterns from files 11050 - MEDIUM: acl: extend the pattern parsers to report meaningful errors 11051 - REORG: use the name "sample" instead of "pattern" to designate extracted data 11052 - REORG: rename "pattern" files 11053 - MINOR: acl: add types to ACL patterns 11054 - MINOR: standard: add an IPv6 parsing function (str62net) 11055 - MEDIUM: acl: support IPv6 address matching 11056 - REORG: stream_interface: create a struct sock_ops to hold socket operations 11057 - REORG/MEDIUM: move protocol->{read,write} to sock_ops 11058 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors 11059 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer 11060 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c 11061 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods 11062 - BUG/MINOR: http: error snapshots are wrong if buffer wraps 11063 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p 11064 - MEDIUM: http: improve error capture reports 11065 - MINOR: acl: add the cook_val() match to match a cookie against an integer 11066 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs 11067 - MEDIUM: memory: add the ability to poison memory at run time 11068 - BUG/MEDIUM: log: ensure that unique_id is properly initialized 11069 - MINOR: cfgparse: use a common errmsg pointer for all parsers 11070 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors 11071 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords 11072 - MINOR: http: replace http_message_realign() with buffer_slow_realign() 11073 110742012/03/26 : 1.5-dev8 11075 - MINOR: patch for minor typo (ressources/resources) 11076 - MEDIUM: http: add support for sending the server's name in the outgoing request 11077 - DOC: mention that default checks are TCP connections 11078 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified 11079 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static 11080 - CLEANUP: Fix HCHK spelling errors 11081 - BUG/MINOR: fix typo in processing of http-send-name-header 11082 - MEDIUM: log: Use linked lists for loggers 11083 - BUILD: fix declaration inside a scope block 11084 - REORG: log: split send_log function 11085 - MINOR: config: Parse the string of the log-format config keyword 11086 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations 11087 - MINOR: Date and time fonctions that don't use snprintf 11088 - MEDIUM: log: make http_sess_log use log_format 11089 - DOC: log-format documentation 11090 - MEDIUM: log: use log_format for mode tcplog 11091 - MEDIUM: log-format: backend source address %Bi %Bp 11092 - BUG/MINOR: log-format: fix %o flag 11093 - BUG/MEDIUM: bad length in log_format and __send_log 11094 - MINOR: logformat %st is signed 11095 - BUILD/MINOR: fix the source URL in the spec file 11096 - DOC: acl is http_first_req, not http_req_first 11097 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces 11098 - MINOR: acl: add new matches for header/path/url length 11099 - BUILD: halog: make halog build on solaris 11100 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports 11101 - MINOR: remove the client/server side distinction in SI addresses 11102 - MINOR: halog: add support for matching queued requests 11103 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed 11104 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs 11105 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize) 11106 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl) 11107 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct 11108 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers 11109 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers 11110 - CLEANUP: rename possibly confusing struct field "tracked" 11111 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use 11112 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode 11113 - MEDIUM: buffers: add some new primitives and rework existing ones 11114 - BUG: buffers: don't return a negative value on buffer_total_space_res() 11115 - MINOR: buffers: make buffer_pointer() support negative pointers too 11116 - CLEANUP: kill buffer_replace() and use an inline instead 11117 - BUG: tcp: option nolinger does not work on backends 11118 - CLEANUP: ebtree: remove a few annoying signedness warnings 11119 - CLEANUP: ebtree: clarify licence and update to 6.0.6 11120 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code 11121 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code 11122 - BUG: ebtree: ebst_lookup() could return the wrong entry 11123 - OPTIM: stream_sock: reduce the amount of in-flight spliced data 11124 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN 11125 - MINOR: acl: add support for TLS server name matching using SNI 11126 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests 11127 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown 11128 - MINOR: pattern: export the global temporary pattern 11129 - CLEANUP: patterns: get rid of pattern_data_setstring() 11130 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match 11131 - MINOR: acl: include pattern.h to make pattern migration more transparent 11132 - MEDIUM: pattern: change the pattern data integer from unsigned to signed 11133 - MEDIUM: acl: use temp_pattern to store any integer-type information 11134 - MEDIUM: acl: use temp_pattern to store any address-type information 11135 - CLEANUP: acl: integer part of acl_test is not used anymore 11136 - MEDIUM: acl: use temp_pattern to store any string-type information 11137 - CLEANUP: acl: remove last data fields from the acl_test struct 11138 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr() 11139 - MEDIUM: patterns: the hdr() pattern is now of type string 11140 - DOC: add minimal documentation on how ACLs work internally 11141 - DOC: add a coding-style file 11142 - OPTIM: halog: keep a fast path for the lines-count only 11143 - CLEANUP: silence a warning when building on sparc 11144 - BUG: http: tighten the list of allowed characters in a URI 11145 - MEDIUM: http: block non-ASCII characters in URIs by default 11146 - DOC: add some documentation from RFC3986 about URI format 11147 - BUG/MINOR: cli: correctly remove the whole table on "clear table" 11148 - BUG/MEDIUM: correctly disable servers tracking another disabled servers. 11149 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend 11150 - MINOR: halog: add some help on the command line 11151 - BUILD: fix build error on FreeBSD 11152 - BUG: fix double free in peers config error path 11153 - MEDIUM: improve config check return codes 11154 - BUILD: make it possible to look for pcre in the default system paths 11155 - MINOR: config: emit a warning when 'default_backend' masks servers 11156 - MINOR: backend: rework the LC definition to support other connection-based algos 11157 - MEDIUM: backend: add the 'first' balancing algorithm 11158 - BUG: fix httplog trailing LF 11159 - MEDIUM: increase chunk-size limit to 2GB-1 11160 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions 11161 - BUG: http: disable TCP delayed ACKs when forwarding content-length data 11162 - BUG: checks: fix server maintenance exit sequence 11163 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes 11164 - DOC: enumerate valid status codes for "observe layer7" 11165 - MINOR: buffer: switch a number of buffer args to const 11166 - CLEANUP: silence signedness warning in acl.c 11167 - BUG: stream_sock: si->release was not called upon shutw() 11168 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie 11169 - BUG/CRITICAL: log: fix risk of crash in development snapshot 11170 - BUG/MAJOR: possible crash when using capture headers on TCP frontends 11171 - MINOR: config: disable header captures in TCP mode and complain 11172 111732011/09/10 : 1.5-dev7 11174 - [BUG] fix binary stick-tables 11175 - [MINOR] http: *_dom matching header functions now also split on ":" 11176 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check 11177 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server 11178 - [MINOR] check: add redis check support 11179 - [DOC] small fixes to clearly distinguish between keyword and variables 11180 - [MINOR] halog: add support for termination code matching (-tcn/-TCN) 11181 - [DOC] Minor spelling fixes and grammatical enhancements 11182 - [CLEANUP] dumpstats: make symbols static where possible 11183 - [MINOR] Break out dumping table 11184 - [MINOR] Break out processing of clear table 11185 - [MINOR] Allow listing of stick table by key 11186 - [MINOR] Break out all stick table socat command parsing 11187 - [MINOR] More flexible clearing of stick table 11188 - [MINOR] Allow showing and clearing by key of ipv6 stick tables 11189 - [MINOR] Allow showing and clearing by key of integer stick tables 11190 - [MINOR] Allow showing and clearing by key of string stick tables 11191 - [CLEANUP] Remove assigned but unused variables 11192 - [CLEANUP] peers.h: fix declarations 11193 - [CLEANUP] session.c: Make functions static where possible 11194 - [MINOR] Add active connection list to server 11195 - [MINOR] Allow shutdown of sessions when a server becomes unavailable 11196 - [MINOR] Add down termination condition 11197 - [MINOR] Make appsess{,ion}_refresh static 11198 - [MINOR] Add rdp_cookie pattern fetch function 11199 - [CLEANUP] Remove unnecessary casts 11200 - [MINOR] Add non-stick server option 11201 - [MINOR] Consistently use error in tcp_parse_tcp_req() 11202 - [MINOR] Consistently free expr on error in cfg_parse_listen() 11203 - [MINOR] Free rdp_cookie_name on denint() 11204 - [MINOR] Free tcp rules on denint() 11205 - [MINOR] Free stick table pool on denint() 11206 - [MINOR] Free stick rules on denint() 11207 - [MEDIUM] Fix stick-table replication on soft-restart 11208 - [MEDIUM] Correct ipmask() logic 11209 - [MINOR] Correct type in table dump examples 11210 - [MINOR] Fix build error in stream_int_register_handler() 11211 - [MINOR] Use DPRINTF in assign_server() 11212 - [BUG] checks: http-check expect could fail a check on multi-packet responses 11213 - [DOC] fix minor typo in the "dispatch" doc 11214 - [BUG] proto_tcp: fix address binding on remote source 11215 - [MINOR] http: don't report the "haproxy" word on the monitoring response 11216 - [REORG] http: move HTTP error codes back to proto_http.h 11217 - [MINOR] http: make the "HTTP 200" status code configurable. 11218 - [MINOR] http: partially revert the chunking optimization for now 11219 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer 11220 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test 11221 - [MEDIUM] http: add support for "http-no-delay" 11222 - [OPTIM] http: optimize chunking again in non-interactive mode 11223 - [OPTIM] stream_sock: avoid fast-forwarding of partial data 11224 - [OPTIM] stream_sock: don't use splice on too small payloads 11225 - [MINOR] config: make it possible to specify a cookie even without a server 11226 - [BUG] stats: support url-encoded forms 11227 - [MINOR] config: automatically compute a default fullconn value 11228 - [CLEANUP] config: remove some left-over printf debugging code from previous patch 11229 - [DOC] add missing entry or stick store-response 11230 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns 11231 - [BUG] halog: correctly handle truncated last line 11232 - [MINOR] halog: make SKIP_CHAR stop on field delimiters 11233 - [MINOR] halog: add support for HTTP log matching (-H) 11234 - [MINOR] halog: gain back performance before SKIP_CHAR fix 11235 - [OPTIM] halog: cache some common fields positions 11236 - [OPTIM] halog: check once for correct line format and reuse the pointer 11237 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters 11238 - [OPTIM] halog: remove support for tab delimiters in input data 11239 - [BUG] session: risk of crash on out of memory (1.5-dev regression) 11240 - [MINOR] session: try to emit a 500 response on memory allocation errors 11241 - [OPTIM] stream_sock: reduce the default number of accepted connections at once 11242 - [BUG] stream_sock: disable listener when system resources are exhausted 11243 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c 11244 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections 11245 - [MINOR] listeners: add listen_full() to mark a listener full 11246 - [MINOR] listeners: add support for queueing resource limited listeners 11247 - [MEDIUM] listeners: put listeners in queue upon resource shortage 11248 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's 11249 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached 11250 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies 11251 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN) 11252 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource 11253 - [MINOR] proxy: make session rate-limit more accurate 11254 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK 11255 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies 11256 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop 11257 - [MINOR] task: new function task_schedule() to schedule a wake up 11258 - [MAJOR] proxy: finally get rid of maintain_proxies() 11259 - [BUG] proxy: stats frontend and peers were missing many initializers 11260 - [MEDIUM] listeners: add a global listener management task 11261 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too 11262 - [DOC] fix typos, "#" is a sharp, not a dash 11263 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime 11264 - [MEDIUM] checks: group health checks methods by values and save option bits 11265 - [MINOR] session-counters: add the ability to clear the counters 11266 - [BUG] check: http-check expect + regex would crash in defaults section 11267 - [MEDIUM] http: make x-forwarded-for addition conditional 11268 - [REORG] build: move syscall redefinition to specific places 11269 - [CLEANUP] update the year in the copyright banner 11270 - [BUG] possible crash in 'show table' on stats socket 11271 - [BUG] checks: use the correct destination port for sending checks 11272 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families 11273 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches 11274 - [DOC] fixed a few "sensible" -> "sensitive" errors 11275 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop() 11276 - [BUG] http: trailing white spaces must also be trimmed after headers 11277 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown 11278 - [MINOR] http: take a capture of too large requests and responses 11279 - [MINOR] http: take a capture of truncated responses 11280 - [MINOR] http: take a capture of bad content-lengths. 11281 - [DOC] add a few old and uncommitted docs 11282 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword 11283 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range 11284 - [MINOR] halog: support backslash-escaped quotes 11285 - [CLEANUP] remove dirty left-over of a debugging message 11286 - [MEDIUM] stats: disable complex socket reservation for stats socket 11287 - [CLEANUP] remove a useless test in manage_global_listener_queue() 11288 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface 11289 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate. 11290 - [MINOR] stats: report the current and max global connection rates 11291 - [MEDIUM] stats: add the ability to adjust the global maxconnrate 11292 - [BUG] peers: don't pre-allocate 65000 connections to each peer 11293 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate 11294 - [BUG] peers: the peer frontend must not emit any log 11295 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs 11296 - [BUG] peers: don't keep a peers section which has a NULL frontend 11297 - [BUG] peers: ensure the peers are resumed if they were paused 11298 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime 11299 - [MEDIUM] session: make session_shutdown() an independant function 11300 - [MEDIUM] stats: offer the possibility to kill a session from the CLI 11301 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI 11302 - [MEDIUM] stats: offer the possibility to kill sessions by server 11303 - [MINOR] halog: do not consider byte 0x8A as end of line 11304 - [MINOR] frontend: ensure debug message length is always initialized 11305 - [OPTIM] halog: make fgets parse more bytes by blocks 11306 - [OPTIM] halog: add assembly version of the field lookup code 11307 - [MEDIUM] poll: add a measurement of idle vs work time 11308 - [CLEANUP] startup: report only the basename in the usage message 11309 - [MINOR] startup: add an option to change to a new directory 11310 - [OPTIM] task: don't scan the run queue if we know it's empty 11311 - [BUILD] stats: stdint is not present on solaris 11312 - [DOC] update the README file to reflect new naming rules for patches 11313 - [MINOR] stats: report the number of requests intercepted by the frontend 11314 - [DOC] update ROADMAP file 11315 113162011/04/08 : 1.5-dev6 11317 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage 11318 - [BUG] TCP source tracking was broken with IPv6 changes 11319 - [BUG] stick-tables did not work when converting IPv6 to IPv4 11320 - [CRITICAL] fix risk of crash when dealing with space in response cookies 11321 113222011/03/29 : 1.5-dev5 11323 - [BUG] standard: is_addr return value for IPv4 was inverted 11324 - [MINOR] update comment about IPv6 support for server 11325 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail 11326 - [DOC] update IPv6 support for bind 11327 - [DOC] document IPv6 support for server 11328 - [DOC] fix a minor typo 11329 - [MEDIUM] IPv6 support for syslog 11330 - [DOC] document IPv6 support for syslog 11331 - [MEDIUM] IPv6 support for stick-tables 11332 - [DOC] document IPv6 support for stick-tables 11333 - [DOC] update ROADMAP file 11334 - [BUG] session: src_conn_cur was returning src_conn_cnt instead 11335 - [MINOR] frontend: add a make_proxy_line function 11336 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line 11337 - [MEDIUM] server: add support for the "send-proxy" option 11338 - [DOC] update the spec on the proxy protocol 11339 - [BUILD] proto_tcp: fix build issue with CTTPROXY 11340 - [DOC] update ROADMAP file 11341 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses 11342 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range 11343 - [BUILD] add the USE_GETADDRINFO build option 11344 - [TESTS] provide a test case for various address formats 11345 - [BUG] session: conn_retries was not always initialized 11346 - [BUG] log: retrieve the target from the session, not the SI 11347 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2) 11348 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE 11349 - [BUG] http: fix content-length handling on 32-bit platforms 11350 - [OPTIM] buffers: uninline buffer_forward() 11351 - [BUG] stream_sock: fix handling for server side PROXY protocol 11352 - [MINOR] acl: add support for table_cnt and table_avl matches 11353 - [DOC] update ROADMAP file 11354 113552011/03/13 : 1.5-dev4 11356 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation. 11357 - [MINOR] unix sockets : inherits the backlog size from the listener 11358 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener() 11359 - [DOC] fix a minor typo 11360 - [DOC] fix ignore-persist documentation 11361 - [MINOR] add warnings on features not compatible with multi-process mode 11362 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode 11363 - [MINOR] stats: add support for several packets in stats admin 11364 - [BUG] stats: admin commands must check the proxy state 11365 - [BUG] stats: admin web interface must check the proxy state 11366 - [MINOR] http: add pattern extraction method to stick on query string parameter 11367 - [MEDIUM] add internal support for IPv6 server addresses 11368 - [MINOR] acl: add be_id/srv_id to match backend's and server's id 11369 - [MINOR] log: add support for passing the forwarded hostname 11370 - [MINOR] log: ability to override the syslog tag 11371 - [MINOR] checks: add PostgreSQL health check 11372 - [DOC] update ROADMAP file 11373 - [BUILD] pattern: use 'int' instead of 'int32_t' 11374 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls 11375 - [BUG] debug: report the correct poller list in verbose mode 11376 - [BUG] capture: do not capture a cookie if there is no memory left 11377 - [BUG] appsession: fix possible double free in case of out of memory 11378 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process 11379 - [BUG] http: correctly update the header list when removing two consecutive headers 11380 - [BUILD] add the CPU=native and ARCH=32/64 build options 11381 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4 11382 - [CLEANUP] hash: move the avalanche hash code globally available 11383 - [MEDIUM] hash: add support for an 'avalanche' hash-type 11384 - [DOC] update roadmap file 11385 - [BUG] http: do not re-enable the PROXY analyser on keep-alive 11386 - [OPTIM] http: don't send each chunk in a separate packet 11387 - [DOC] fix minor typos reported recently in the peers section 11388 - [DOC] fix another typo in the doc 11389 - [MINOR] stats: report HTTP message state and buffer flags in error dumps 11390 - [BUG] http chunking: don't report a parsing error on connection errors 11391 - [BUG] stream_interface: truncate buffers when sending error messages 11392 - [MINOR] http: support wrapping messages in error captures 11393 - [MINOR] http: capture incorrectly chunked message bodies 11394 - [MINOR] stats: add global event ID and count 11395 - [BUG] http: analyser optimizations broke pipelining 11396 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets 11397 - [BUG] http: fix incorrect error reporting during data transfers 11398 - [CRITICAL] session: correctly leave turn-around and queue states on abort 11399 - [BUG] session: release slot before processing pending connections 11400 - [MINOR] tcp: add support for dynamic MSS setting 11401 - [BUG] stick-table: correctly terminate string keys during lookups 11402 - [BUG] acl: fix handling of empty lines in pattern files 11403 - [BUG] stick-table: use the private buffer when padding strings 11404 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys 11405 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop 11406 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len 11407 - [REVERT] undo the stick-table string key lookup fixes 11408 - [MINOR] http: improve url_param pattern extraction to ignore empty values 11409 - [BUILD] frontend: shut a warning with TCP_MAXSEG 11410 - [BUG] http: update the header list's tail when removing the last header 11411 - [DOC] fix minor typo in the proxy protocol doc 11412 - [DOC] fix typos (http-request instead of http-check) 11413 - [BUG] http: use correct ACL pointer when evaluating authentication 11414 - [BUG] cfgparse: correctly count one socket per port in ranges 11415 - [BUG] startup: set the rlimits before binding ports, not after. 11416 - [BUG] acl: srv_id must return no match when the server is NULL 11417 - [MINOR] acl: add ability to check for internal response-only parameters 11418 - [MINOR] acl: srv_id is only valid in responses 11419 - [MINOR] config: warn if response-only conditions are used in "redirect" rules 11420 - [BUG] acl: fd leak when reading patterns from file 11421 - [DOC] fix minor typo in "usesrc" 11422 - [BUG] http: fix possible incorrect forwarded wrapping chunk size 11423 - [BUG] http: fix computation of message body length after forwarding has started 11424 - [BUG] http: balance url_param did not work with first parameters on POST 11425 - [TESTS] update the url_param regression test to test check_post too 11426 - [DOC] update ROADMAP 11427 - [DOC] internal: reflect the fact that SI_ST_ASS is transient 11428 - [BUG] config: don't crash on empty pattern files. 11429 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers 11430 - [REORG] stream_interface: move the st0, st1 and private members to the applet 11431 - [REORG] stream_interface: split the struct members in 3 parts 11432 - [REORG] session: move client and server address to the stream interface 11433 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI 11434 - [MEDIUM] stream_interface: store the target pointer and type 11435 - [CLEANUP] stream_interface: remove the applet.handler pointer 11436 - [MEDIUM] log: take the logged server name from the stream interface 11437 - [CLEANUP] session: remove data_source from struct session 11438 - [CLEANUP] stats: make all dump functions only rely on the stream interface 11439 - [REORG] session: move the data_ctx struct to the stream interface's applet 11440 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode 11441 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy 11442 - [MINOR] session: add a pointer to the new target into the session 11443 - [MEDIUM] session: remove s->prev_srv which is not needed anymore 11444 - [CLEANUP] stream_interface: use inline functions to manipulate targets 11445 - [MAJOR] session: remove the ->srv pointer from struct session 11446 - [MEDIUM] stats: split frontend and backend stats 11447 - [MEDIUM] http: always evaluate http-request rules before stats http-request 11448 - [REORG] http: move the http-request rules to proto_http 11449 - [BUG] http: stats were not incremented on http-request deny 11450 - [MINOR] checks: report it if checks fail due to socket creation error 11451 114522010/11/11 : 1.5-dev3 11453 - [DOC] fix http-request documentation 11454 - [MEDIUM] enable/disable servers from the stats web interface 11455 - [MEDIUM] stats: add an admin level 11456 - [DOC] stats: document the "stats admin" statement 11457 - [MINOR] startup: print the proxy socket which caused an error 11458 - [CLEANUP] Remove unneeded chars allocation 11459 - [MINOR] config: detect options not supported due to compilation options 11460 - [MINOR] Add pattern's fetchs payload and payload_lv 11461 - [MINOR] frontend: improve accept-proxy header parsing 11462 - [MINOR] frontend: add tcpv6 support on accept-proxy bind 11463 - [MEDIUM] Enhance message errors management on binds 11464 - [MINOR] Manage unix socket source field on logs 11465 - [MINOR] Manage unix socket source field on session dump on sock stats 11466 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c 11467 - [MINOR] Add some tests on sockets family for port remapping and mode transparent. 11468 - [MINOR] Manage socket type unix for some logs 11469 - [MINOR] Enhance controls of socket's family on acls and pattern fetch 11470 - [MINOR] Support listener's sockets unix on http logs. 11471 - [MEDIUM] Add supports of bind on unix sockets. 11472 - [BUG] stick table purge failure if size less than 255 11473 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter 11474 - [MEDIUM] Implement tcp inspect response rules 11475 - [DOC] tcp-response content and inspect 11476 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type 11477 - [DOC] acls rep_ssl_hello and req_ssl_hello 11478 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated. 11479 - [DOC] new type binary in stick-table 11480 - [DOC] stick store-response and new patterns payload and payload_lv 11481 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command 11482 - [MEDIUM] Create updates tree on stick table to manage sync. 11483 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management 11484 - [MEDIUM] Manage peers section parsing and stick table registration on peers. 11485 - [MEDIUM] Manage soft stop on peers proxy 11486 - [DOC] add documentation for peers section 11487 - [MINOR] checks: add support for LDAPv3 health checks 11488 - [MINOR] add better support to "mysql-check" 11489 - [BUG] Restore info about available active/backup servers 11490 - [CONTRIB] Update haproxy.pl 11491 - [CONTRIB] Update Cacti Tempates 11492 - [CONTRIB] add templates for Cacti. 11493 - [BUG] http: don't consider commas as a header delimitor within quotes 11494 - [MINOR] support a global jobs counter 11495 - [DOC] add a summary about cookie incompatibilities between specs and browsers 11496 - [DOC] fix description of cookie "insert" and "indirect" modes 11497 - [MEDIUM] http: fix space handling in the request cookie parser 11498 - [MEDIUM] http: fix space handling in the response cookie parser 11499 - [DOC] fix typo in the queue() definition (backend, not frontend) 11500 - [BUG] deinit: unbind listeners before freeing them 11501 - [BUG] stream_interface: only call si->release when both dirs are closed 11502 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers 11503 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend) 11504 - [MINOR] halog: add '-tc' to sort by termination codes 11505 - [MINOR] halog: skip non-traffic logs for -st and -tc 11506 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage 11507 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning. 11508 - [DOC] bind option is "defer-accept", not "defer_accept" 11509 - [DOC] missing index entry for http-check send-state 11510 - [DOC] tcp-request inspect-delay is for backends too 11511 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings 11512 - [BUG] stream_sock: try to flush any extra pending request data after a POST 11513 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95 11514 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose 11515 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full 11516 - [MEDIUM] checks: add support for HTTP contents lookup 11517 - [TESTS] add test-check-expect to test various http-check methods 11518 - [MINOR] global: add "tune.chksize" to change the default check buffer size 11519 - [MINOR] cookie: add options "maxidle" and "maxlife" 11520 - [MEDIUM] cookie: support client cookies with some contents appended to their value 11521 - [MINOR] http: make some room in the transaction flags to extend cookies 11522 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies 11523 - [MEDIUM] cookie: reassign set-cookie status flags to store more states 11524 - [MINOR] add encode/decode function for 30-bit integers from/to base64 11525 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies 11526 - [MEDIUM] cookie: set the date in the cookie if needed 11527 - [DOC] document the cookie maxidle and maxlife parameters 11528 - [BUG] checks: don't log backend down for all zero-weight servers 11529 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance 11530 - [BUG] config: report correct keywords for "observe" 11531 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section 11532 - [MINOR] acl: add the http_req_first match 11533 - [DOC] fix typos about bind-process syntax 11534 - [BUG] cookie: correctly unset default cookie parameters 11535 - [MINOR] cookie: add support for the "preserve" option 11536 - [BUG] ebtree: fix duplicate strings insertion 11537 - [CONTRIB] halog: report per-url counts, errors and times 11538 - [CONTRIB] halog: minor speed improvement in timer parser 11539 - [MINOR] buffers: add a new request analyser flag for PROXY mode 11540 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword 11541 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer 11542 - [MINOR] standard: change arg type from const char* to char* 11543 - [MINOR] frontend: add a new analyser to parse a proxied connection 11544 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections 11545 - [DOC] add the proxy protocol's specifications 11546 - [DOC] document the 'accept-proxy' bind option 11547 - [MINOR] cfgparse: report support of <path> for the 'bind' statements 11548 - [DOC] add references to unix socket handling 11549 - [MINOR] move MAXPATHLEN definition to compat.h 11550 - [MEDIUM] unix sockets: cleanup the error reporting path 11551 - [BUG] session: don't stop forwarding of data upon last packet 11552 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log() 11553 - [BUILD] peers: shut a printf format warning (key_size is a size_t) 11554 - [BUG] accept: don't close twice upon error 11555 - [OPTIM] session: don't recheck analysers when buffer flags have not changed 11556 - [OPTIM] stream_sock: don't clear FDs that are already cleared 11557 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport 11558 115592010/08/28 : 1.5-dev2 11560 - [MINOR] startup: release unused structs after forking 11561 - [MINOR] startup: don't wait for nothing when no old pid remains 11562 - [CLEANUP] reference product branch 1.5 11563 - [MEDIUM] signals: add support for registering functions and tasks 11564 - [MEDIUM] signals: support redistribution of signal zero when stopping 11565 - [BUG] http: don't set auto_close if more data are expected 11566 115672010/08/25 : 1.5-dev1 11568 - [BUG] stats: session rate limit gets garbaged in the stats 11569 - [DOC] mention 'option http-server-close' effect in Tq section 11570 - [DOC] summarize and highlight persistent connections behaviour 11571 - [DOC] add configuration samples 11572 - [BUG] http: dispatch and http_proxy modes were broken for a long time 11573 - [BUG] http: the transaction must be initialized even in TCP mode 11574 - [BUG] tcp: dropped connections must be counted as "denied" not "failed" 11575 - [BUG] consistent hash: balance on all servers, not only 2 ! 11576 - [CONTRIB] halog: report per-server status codes, errors and response times 11577 - [BUG] http: the transaction must be initialized even in TCP mode (part 2) 11578 - [BUG] client: always ensure to zero rep->analysers 11579 - [BUG] session: clear BF_READ_ATTACHED before next I/O 11580 - [BUG] http: automatically close response if req is aborted 11581 - [BUG] proxy: connection rate limiting was eating lots of CPU 11582 - [BUG] http: report correct flags in case of client aborts during body 11583 - [TESTS] refine non-regression tests and add 4 new tests 11584 - [BUG] debug: wrong pointer was used to report a status line 11585 - [BUG] debug: correctly report truncated messages 11586 - [DOC] document the "dispatch" keyword 11587 - [BUG] stick_table: fix possible memory leak in case of connection error 11588 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents 11589 - [MINOR] accept: count the incoming connection earlier 11590 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp 11591 - [CLEANUP] client: move some ACLs away to their respective locations 11592 - [CLEANUP] rename client -> frontend 11593 - [MEDIUM] separate protocol-level accept() from the frontend's 11594 - [MINOR] proxy: add a list to hold future layer 4 rules 11595 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject) 11596 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept() 11597 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur 11598 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener 11599 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set 11600 - [CLEANUP] buffer->cto is not used anymore 11601 - [MEDIUM] session: finish session establishment sequence in with I/O handlers 11602 - [MEDIUM] session: initialize server-side timeouts after connect() 11603 - [MEDIUM] backend: initialize the server stream_interface upon connect() 11604 - [MAJOR] frontend: don't initialize the server-side stream_int anymore 11605 - [MEDIUM] session: move the conn_retries attribute to the stream interface 11606 - [MEDIUM] session: don't assign conn_retries upon accept() anymore 11607 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR 11608 - [MAJOR] frontend: reorder the session initialization upon accept 11609 - [MINOR] proxy: add an accept() callback for the application layer 11610 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept() 11611 - [MEDIUM] stats: rely on the standard session_accept() function 11612 - [MINOR] buffer: refine the flags that may wake an analyser up. 11613 - [MINOR] stream_sock: don't dereference a non-existing frontend 11614 - [MINOR] session: differenciate between accepted connections and received connections 11615 - [MEDIUM] frontend: count the incoming connection earlier 11616 - [MINOR] frontend: count denied TCP requests separately 11617 - [CLEANUP] stick_table: add/clarify some comments 11618 - [BUILD] memory: add a few missing parenthesis to the pool management macros 11619 - [MINOR] stick_table: add support for variable-sized data 11620 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion 11621 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c 11622 - [MEDIUM] stick_table: add room for extra data types 11623 - [MINOR] stick_table: add support for "conn_cum" data type. 11624 - [MEDIUM] stick_table: don't overwrite data when storing an entry 11625 - [MINOR] config: initialize stick tables after all the parsing 11626 - [MINOR] stick_table: provide functions to return stksess data from a type 11627 - [MEDIUM] stick_table: move the server ID to a generic data type 11628 - [MINOR] stick_table: enable it for frontends too 11629 - [MINOR] stick_table: export the stick_table_key 11630 - [MINOR] tcp: add per-source connection rate limiting 11631 - [MEDIUM] stick_table: separate storage and update of session entries 11632 - [MEDIUM] stick-tables: add a reference counter to each entry 11633 - [MINOR] session: add a pointer to the tracked counters for the source 11634 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible 11635 - [BUG] config: report the correct proxy type in tcp-request errors 11636 - [MINOR] config: provide a function to quote args in a more friendly way 11637 - [BUG] stick_table: the fix for the memory leak caused a regression 11638 - [MEDIUM] backend: support servers on 0.0.0.0 11639 - [BUG] stick-table: correctly refresh expiration timers 11640 - [MEDIUM] stream-interface: add a ->release callback 11641 - [MINOR] proxy: add a "parent" member to the structure 11642 - [MEDIUM] session: make it possible to call an I/O handler on both SI 11643 - [MINOR] tools: add a fast div64_32 function 11644 - [MINOR] freq_ctr: add new types and functions for periods different from 1s 11645 - [MINOR] errors: provide new status codes for config parsing functions 11646 - [BUG] http: denied requests must not be counted as denied resps in listeners 11647 - [MINOR] tools: add a get_std_op() function to parse operators 11648 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges 11649 - [MAJOR] stream_sock: better wakeup conditions on read() 11650 - [BUG] session: analysers must be checked when SI state changes 11651 - [MINOR] http: reset analysers to listener's, not frontend's 11652 - [MEDIUM] session: support "tcp-request content" rules in backends 11653 - [BUILD] always match official tags when doing git-tar 11654 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers 11655 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks 11656 - [MINOR] tcp: src_count acl does not have a permanent result 11657 - [MAJOR] session: add track-counters to track counters related to the session 11658 - [MINOR] stick-table: provide a table lookup function 11659 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts 11660 - [MEDIUM] session: move counter ACL fetches from proto_tcp 11661 - [MEDIUM] session: add concurrent connections counter 11662 - [MEDIUM] session: add data in and out volume counters 11663 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts 11664 - [MEDIUM] session-counters: automatically update tracked connection count 11665 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection 11666 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size 11667 - [MEDIUM] session: add a counter on the cumulated number of sessions 11668 - [MINOR] config: support a comma-separated list of store data types in stick-table 11669 - [MEDIUM] stick-tables: add support for arguments to data_types 11670 - [MEDIUM] stick-tables: add stored data argument type checking 11671 - [MEDIUM] session counters: add conn_rate and sess_rate counters 11672 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters 11673 - [MINOR] stktable: add a stktable_update_key() function 11674 - [MINOR] session-counters: add a general purpose counter (gpc0) 11675 - [MEDIUM] session-counters: add HTTP req/err tracking 11676 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table 11677 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries 11678 - [CLEANUP] stick-table: declare stktable_data_types as extern 11679 - [MEDIUM] stick-table: make use of generic types for stored data 11680 - [MINOR] stats: correctly report errors on "show table" and "clear table" 11681 - [MEDIUM] stats: add the ability to dump table entries matching criteria 11682 - [DOC] configuration: document all the new tracked counters 11683 - [DOC] stats: document "show table" and "clear table" 11684 - [MAJOR] session-counters: split FE and BE track counters 11685 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules 11686 - [MEDIUM] session counters: automatically remove expired entries. 11687 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection" 11688 - [MEDIUM] session-counters: make it possible to count connections from frontend 11689 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters" 11690 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend 11691 - [CLEANUP] stats: use stksess_kill() to remove table entries 11692 - [DOC] update the references to session counters and to tcp-request connection 11693 - [DOC] cleanup: split a few long lines 11694 - [MEDIUM] http: forward client's close when abortonclose is set 11695 - [BUG] queue: don't dequeue proxy-global requests on disabled servers 11696 - [BUG] stats: global stats timeout may be specified before stats socket. 11697 - [BUG] conf: add tcp-request content rules to the correct list 11698 116992010/05/23 : 1.5-dev0 11700 - exact copy of 1.4.6 11701 117022010/05/16 : 1.4.6 11703 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf() 11704 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test 11705 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not 11706 - [DOC] add a few precisions about the use of RDP cookies 11707 117082010/05/13 : 1.4.5 11709 - [DOC] report minimum kernel version for tproxy in the Makefile 11710 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence 11711 - [DOC] add the "ignore-persist" option to conditionally ignore persistence 11712 - [DOC] fix ignore-persist/force-persist documentation 11713 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version 11714 - [DOC] doc/configuration.txt: fix typos 11715 - [MINOR] option http-pretend-keepalive is both for FEs and BEs 11716 - [MINOR] fix possible crash in debug mode with invalid responses 11717 - [MINOR] halog: add support for statisticts on status codes 11718 - [OPTIM] halog: use a faster zero test in fgets() 11719 - [OPTIM] halog: minor speedup by using unlikely() 11720 - [OPTIM] halog: speed up fgets2-64 by about 10% 11721 - [DOC] refresh the README file and merge the CONTRIB file into it 11722 - [MINOR] acl: support loading values from files 11723 - [MEDIUM] ebtree: upgrade to version 6.0 11724 - [MINOR] acl trees: add flags and union members to store values in trees 11725 - [MEDIUM] acl: add ability to insert patterns in trees 11726 - [MEDIUM] acl: add tree-based lookups of exact strings 11727 - [MEDIUM] acl: add tree-based lookups of networks 11728 - [MINOR] acl: ignore empty lines and comments in pattern files 11729 - [MINOR] stick-tables: add support for "stick on hdr" 11730 117312010/04/07 : 1.4.4 11732 - [BUG] appsession should match the whole cookie name 11733 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag 11734 - [MEDIUM] backend: move the transparent proxy address selection to backend 11735 - [MINOR] add very fast IP parsing functions 11736 - [MINOR] add new tproxy flags for dynamic source address binding 11737 - [MEDIUM] add ability to connect to a server from an IP found in a header 11738 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY 11739 - [MINOR] http: make it possible to pretend keep-alive when doing close 11740 - [MINOR] config: report "default-server" instead of "(null)" in error messages 11741 117422010/03/30 : 1.4.3 11743 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer() 11744 - [MEDIUM] session: better fix for connection to servers with closed input 11745 - [DOC] indicate in the doc how to bind to port ranges 11746 - [BUG] backend: L7 hashing must not be performed on incomplete requests 11747 - [TESTS] add a simple program to test connection resets 11748 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used 11749 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode 11750 - [MINOR] config: allow "slowstart 0s" 11751 - [BUILD] 'make tags' did not consider files ending in '.c' 11752 - [MINOR] checks: add the ability to disable a server in the config 11753 117542010/03/17 : 1.4.2 11755 - [CLEANUP] product branch update 11756 - [DOC] Some more documentation cleanups 11757 - [BUG] clf logs segfault when capturing a non existant header 11758 - [OPTIM] config: only allocate check buffer when checks are enabled 11759 - [MEDIUM] checks: support multi-packet health check responses 11760 - [CLEANUP] session: remove duplicate test 11761 - [BUG] http: don't wait for response data to leave buffer is client has left 11762 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time 11763 - [MINOR] stats: don't send empty lines in "show errors" 11764 - [MINOR] stats: make the data dump function reusable for other purposes 11765 - [MINOR] stats socket: add show sess <id> to dump details about a session 11766 - [BUG] stats: connection reset counters must be plain ascii, not HTML 11767 - [BUG] url_param hash may return a down server 11768 - [MINOR] force null-termination of hostname 11769 - [MEDIUM] connect to servers even when the input has already been closed 11770 - [BUG] don't merge anonymous ACLs ! 11771 - [BUG] config: fix endless loop when parsing "on-error" 11772 - [MINOR] http: don't mark a server as failed when it returns 501/505 11773 - [OPTIM] checks: try to detect the end of response without polling again 11774 - [BUG] checks: don't report an error when recv() returns an error after data 11775 - [BUG] checks: don't abort when second poll returns an error 11776 - [MINOR] checks: make shutdown() silently fail 11777 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size 11778 - [BUG] init: unconditionally catch SIGPIPE 11779 - [BUG] checks: don't wait for a close to start parsing the response 11780 117812010/03/04 : 1.4.1 11782 - [BUG] Clear-cookie path issue 11783 - [DOC] fix typo on stickiness rules 11784 - [BUILD] fix BSD and OSX makefiles for missing files 11785 - [BUILD] includes order breaks OpenBSD build 11786 - [BUILD] fix some build warnings on Solaris with is* macros 11787 - [BUG] logs: don't report "last data" when we have just closed after an error 11788 - [BUG] logs: don't report "proxy request" when server closes early 11789 - [BUILD] fix platform-dependant build issues related to crypt() 11790 - [STATS] count transfer aborts caused by client and by server 11791 - [STATS] frontend requests were not accounted for failed requests 11792 - [MINOR] report total number of processed connections when stopping a proxy 11793 - [DOC] be more clear about the limitation to one single monitor-net entry 11794 117952010/02/26 : 1.4.0 11796 - [MINOR] stats: report maint state for tracking servers too 11797 - [DOC] fix summary to add pattern extraction 11798 - [DOC] Documentation cleanups 11799 - [BUG] cfgparse memory leak and missing free calls in deinit() 11800 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced 11801 - [EXAMPLES] add auth.cfg 11802 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008 11803 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once 11804 - [BUILD] auth: don't use unnamed unions 11805 - [BUG] config: report unresolvable host names as errors 11806 - [BUILD] fix build breakage with DEBUG_FULL 11807 - [DOC] fix a typo about timeout check and clarify the explanation. 11808 - [MEDIUM] http: don't use trash to realign large buffers 11809 - [STATS] report HTTP requests (total and rate) in frontends 11810 - [STATS] separate frontend and backend HTTP stats 11811 - [MEDIUM] http: revert to use a swap buffer for realignment 11812 - [MINOR] stats: report the request rate in frontends as cell titles 11813 - [MINOR] stats: mark areas with an underline when tooltips are available 11814 - [DOC] reorder some entries to maintain the alphabetical order 11815 - [DOC] cleanup of the keyword matrix 11816 118172010/02/02 : 1.4-rc1 11818 - [MEDIUM] add a maintenance mode to servers 11819 - [MINOR] http-auth: last fix was wrong 11820 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table. 11821 - [MINOR] Base64 decode 11822 - [MINOR] generic auth support with groups and encrypted passwords 11823 - [MINOR] add ACL_TEST_F_NULL_MATCH 11824 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen 11825 - [MINOR] acl: add http_auth and http_auth_group 11826 - [MAJOR] use the new auth framework for http stats 11827 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls 11828 - [STATS] make it possible to change a CLI connection timeout 11829 - [BUG] patterns: copy-paste typo in type conversion arguments 11830 - [MINOR] pattern: make the converter more flexible by supporting void* and int args 11831 - [MINOR] standard: str2mask: string to netmask converter 11832 - [MINOR] pattern: add support for argument parsers for converters 11833 - [MINOR] pattern: add the "ipmask()" converting function 11834 - [MINOR] config: off-by-one in "stick-table" after list of converters 11835 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy 11836 - [BUG] restore accidentely removed line in last patch ! 11837 - [MINOR] checks: make the HTTP check code add the CRLF itself 11838 - [MINOR] checks: add the server's status in the checks 11839 - [BUILD] halog: make without arch-specific optimizations 11840 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d) 11841 - [MINOR] http: disable keep-alive when process is going down 11842 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config 11843 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond() 11844 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs 11845 - [MINOR] prepare req_*/rsp_* to receive a condition 11846 - [CLEANUP] config: specify correct const char types to warnif_* functions 11847 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords 11848 - [MEDIUM] http: make the request filter loop check for optional conditions 11849 - [MEDIUM] http: add support for conditional request filter execution 11850 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e) 11851 - [MEDIUM] http: add support for conditional request header addition 11852 - [MEDIUM] http: add support for conditional response header rewriting 11853 - [DOC] add some missing ACLs about response header matching 11854 - [MEDIUM] http: add support for proxy authentication 11855 - [MINOR] http-auth: make the 'unless' keyword work as expected 11856 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing 11857 - [MEDIUM] add support for anonymous ACLs 11858 - [MEDIUM] http: switch to tunnel mode after status 101 responses 11859 - [MEDIUM] http: stricter processing of the CONNECT method 11860 - [BUG] config: reset check request to avoid double free when switching to ssl/sql 11861 - [MINOR] config: fix too large ssl-hello-check message. 11862 - [BUG] fix error response in case of server error 11863 118642010/01/25 : 1.4-dev8 11865 - [CLEANUP] Keep in sync "defaults" support between documentation and code 11866 - [MEDIUM] http: add support for Proxy-Connection header 11867 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry 11868 - [MINOR] http: remove a copy-paste typo in transaction cleaning 11869 - [BUG] http: trim any excess buffer data when recycling a connection 11870 118712010/01/25 : 1.4-dev7 11872 - [BUG] appsession: possible memory leak in case of out of memory condition 11873 - [MINOR] config: don't accept 'appsession' in defaults section 11874 - [MINOR] Add function to parse a size in configuration 11875 - [MEDIUM] Add stick table (persistence) management functions and types 11876 - [MEDIUM] Add pattern fetch management types and functions 11877 - [MEDIUM] Add src dst and dport pattern fetches. 11878 - [MEDIUM] Add stick table configuration and init. 11879 - [MEDIUM] Add stick and store rules analysers. 11880 - [MINOR] add option "mysql-check" to use MySQL health checks 11881 - [BUG] health checks: fix requeued message 11882 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS 11883 - [BUG] checks: fix newline termination 11884 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id 11885 - [BUG] appsession's sessid must be reset at end of transaction 11886 - [BUILD] appsession did not build anymore under gcc-2.95 11887 - [BUG] server redirection used an uninitialized string. 11888 - [MEDIUM] http: fix handling of message pointers 11889 - [MINOR] http: fix double slash prefix with server redirect 11890 - [MINOR] http redirect: add the ability to append a '/' to the URL 11891 - [BUG] stream_interface: fix retnclose and remove cond_close 11892 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1 11893 - [MINOR] http: move appsession 'sessid' from session to http_txn 11894 - [OPTIM] reorder http_txn to optimize cache lines placement 11895 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst 11896 - [MINOR] http: add a separate "http-keep-alive" timeout 11897 - [MINOR] config: remove undocumented and buggy 'timeout appsession' 11898 - [DOC] fix various too large lines 11899 - [DOC] remove several trailing spaces 11900 - [DOC] add the doc about stickiness 11901 - [BUILD] remove a warning in standard.h on AIX 11902 - [BUG] checks: chars are unsigned on AIX, check was always true 11903 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv() 11904 - [BUG] check: we must not check for error before reading a response 11905 - [BUG] buffers: remove remains of wrong obsolete length check 11906 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error 11907 - [BUG] http: don't count req errors on client resets or t/o during keep-alive 11908 - [MEDIUM] http: don't switch to tunnel mode upon close 11909 - [DOC] add documentation about connection header processing 11910 - [MINOR] http: add http_remove_header2() to remove a header value. 11911 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces 11912 - [MAJOR] http: rework request Connection header handling 11913 - [MAJOR] http: rework response Connection header handling 11914 - [MINOR] add the ability to force kernel socket buffer size. 11915 - [BUG] http_server_error() must not purge a previous pending response 11916 - [OPTIM] http: don't delay response if next request is incomplete 11917 - [MINOR] add the "force-persist" statement to force persistence on down servers 11918 - [MINOR] http: logs must report persistent connections to down servers 11919 - [BUG] buffer_replace2 must never change the ->w entry 11920 119212010/01/08 : 1.4-dev6 11922 - [BUILD] warning in stream_interface.h 11923 - [BUILD] warning ultoa_r returns char * 11924 - [MINOR] hana: only report stats if it is enabled 11925 - [MINOR] stats: add "a link" & "a href" for sockets 11926 - [MINOR]: stats: add show-legends to report additional informations 11927 - [MEDIUM] default-server support 11928 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list 11929 - [MINOR] stats: add href to tracked server 11930 - [BUG] stats: show UP/DOWN status also in tracking servers 11931 - [DOC] Restore ability to search a keyword at the beginning of a line 11932 - [BUG] stats: cookie should be reported under backend not under proxy 11933 - [BUG] cfgparser/stats: fix error message 11934 - [BUG] http: disable auto-closing during chunk analysis 11935 - [BUG] http: fix hopefully last closing issue on data forwarding 11936 - [DEBUG] add an http_silent_debug function to debug HTTP states 11937 - [MAJOR] http: fix again the forward analysers 11938 - [BUG] http_process_res_common() must not skip the forward analyser 11939 - [BUG] http: some possible missed close remain in the forward chain 11940 - [BUG] http: redirect needed to be updated after recent changes 11941 - [BUG] http: don't set no-linger on response in case of forced close 11942 - [MEDIUM] http: restore the original behaviour of option httpclose 11943 - [TESTS] add a file to test various connection modes 11944 - [BUG] http: check options before the connection header 11945 - [MAJOR] session: fix the order by which the analysers are run 11946 - [MEDIUM] session: also consider request analysers added during response 11947 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags 11948 - [BUG] http: memory leak with captures when using keep-alive 11949 - [BUG] http: fix for capture memory leak was incorrect 11950 - [MINOR] http redirect: use proper call to return last response 11951 - [MEDIUM] http: wait for some flush of the response buffer before a new request 11952 - [MEDIUM] session: limit the number of analyser loops 11953 119542010/01/03 : 1.4-dev5 11955 - [MINOR] server tracking: don't care about the tracked server's mode 11956 - [MEDIUM] appsession: add "len", "prefix" and "mode" options 11957 - [MEDIUM] appsession: add the "request-learn" option 11958 - [BUG] Configuration parser bug when escaping characters 11959 - [MINOR] CSS & HTML fun 11960 - [MINOR] Collect & provide http response codes received from servers 11961 - [BUG] Fix silly typo: hspr_other -> hrsp_other 11962 - [MINOR] Add "a name" to stats page 11963 - [MINOR] add additional "a href"s to stats page 11964 - [MINOR] Collect & provide http response codes for frontends, fix backends 11965 - [DOC] some small spell fixes and unifications 11966 - [MEDIUM] Decrease server health based on http responses / events, version 3 11967 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int' 11968 - [BUG] config: fix erroneous check on cookie domain names, again 11969 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately 11970 - [DOC] trivial fix for man page 11971 - [MINOR] config: report all supported options for the "bind" keyword 11972 - [MINOR] tcp: add support for the defer_accept bind option 11973 - [MINOR] unix socket: report the socket path in case of bind error 11974 - [CONTRIB] halog: support searching by response time 11975 - [DOC] add a reminder about obsolete documents 11976 - [DOC] point to 1.4 doc, not 1.3 11977 - [DOC] option tcp-smart-connect was missing from index 11978 - [MINOR] http: detect connection: close earlier 11979 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions 11980 - [OPTIM] move some rarely used fields out of fdtab 11981 - [MEDIUM] fd: merge fd_list into fdtab 11982 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required 11983 - [MINOR] http: add new transaction flags for keep-alive and content-length 11984 - [MEDIUM] http request: parse connection, content-length and transfer-encoding 11985 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite 11986 - [MINOR] http request: simplify the test of no-data 11987 - [MEDIUM] http request: simplify POST length detection 11988 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header 11989 - [MAJOR] http: create the analyser which waits for a response 11990 - [MINOR] http: pre-set the persistent flags in the transaction 11991 - [MEDIUM] http response: check body length and set transaction flags 11992 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite 11993 - [MINOR] http: remove the last call to stream_int_return 11994 - [IMPORT] import ebtree v5.0 into directory ebtree/ 11995 - [MEDIUM] build: switch ebtree users to use new ebtree version 11996 - [CLEANUP] ebtree: remove old unused files 11997 - [BUG] definitely fix regparm issues between haproxy core and ebtree 11998 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning 11999 - [BUILD] missing #ifndef in ebmbtree.h 12000 - [BUILD] missing #ifndef in ebsttree.h 12001 - [MINOR] tools: add hex2i() function to convert hex char to int 12002 - [MINOR] http: create new MSG_BODY sub-states 12003 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms 12004 - [DOC] option is "defer-accept", not "defer_accept" 12005 - [MINOR] http: keep pointer to beginning of data 12006 - [BUG] x-original-to: name was not set in default instance 12007 - [MINOR] http: detect tunnel mode and set it in the session 12008 - [BUG] config: fix error message when config file is not found 12009 - [BUG] config: fix wrong handling of too large argument count 12010 - [BUG] config: disable 'option httplog' on TCP proxies 12011 - [BUG] config: fix erroneous check on cookie domain names 12012 - [BUG] config: cookie domain was ignored in defaults sections 12013 - [MINOR] config: support passing multiple "domain" statements to cookies 12014 - [MINOR] ebtree: add functions to lookup non-null terminated strings 12015 - [MINOR] config: don't report error on all subsequent files on failure 12016 - [BUG] second fix for the printf format warning 12017 - [BUG] check_post: limit analysis to the buffer length 12018 - [MEDIUM] http: process request body in a specific analyser 12019 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post() 12020 - [MAJOR] http: completely process the "connection" header 12021 - [MINOR] http: only consider chunk encoding with HTTP/1.1 12022 - [MAJOR] buffers: automatically compute the maximum buffer length 12023 - [MINOR] http: move the http transaction init/cleanup code to proto_http 12024 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs 12025 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE 12026 - [MEDIUM] http: rework chunk-size parser 12027 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length 12028 - [MINOR] buffers: add buffer_ignore() to skip some bytes 12029 - [BUG] http: offsets are relative to the buffer, not to ->som 12030 - [MEDIUM] http: automatically re-aling request buffer 12031 - [BUG] http: body parsing must consider the start of message 12032 - [MINOR] new function stream_int_cond_close() 12033 - [MAJOR] http: implement body parser 12034 - [BUG] http: typos on several unlikely() around header insertion 12035 - [BUG] stream_sock: wrong max computation on recv 12036 - [MEDIUM] http: rework the buffer alignment logic 12037 - [BUG] buffers: wrong size calculation for displaced data 12038 - [MINOR] stream_sock: prepare for closing when all pending data are sent 12039 - [MEDIUM] http: add two more states for the closing period 12040 - [MEDIUM] http: properly handle "option forceclose" 12041 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close 12042 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER 12043 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts 12044 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors 12045 - [MINOR] config: option forceclose is valid in frontends too 12046 - [BUILD] halog: insufficient include path in makefile 12047 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore 12048 - [MEDIUM] http: make the parsers able to wait for a buffer flush 12049 - [MAJOR] http: add support for option http-server-close 12050 - [BUG] http: ensure we abort data transfer on write error 12051 - [BUG] last fix was overzealous and disabled server-close 12052 - [BUG] http: fix erroneous trailers size computation 12053 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data 12054 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending 12055 - [BUG] http: redirects were broken by chunk changes 12056 - [BUG] http: the request URI pointer is relative to the buffer 12057 - [OPTIM] http: don't immediately enable reading on request 12058 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length 12059 - [BUG] http: take care of errors, timeouts and aborts during the data phase 12060 - [MINOR] http: don't wait for sending requests to the server 12061 - [MINOR] http: make the conditional redirect support keep-alive 12062 - [BUG] http: fix cookie parser to support spaces and commas in values 12063 - [MINOR] config: some options were missing for "redirect" 12064 - [MINOR] redirect: add support for unconditional rules 12065 - [MINOR] config: centralize proxy struct initialization 12066 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements 12067 - [MEDIUM] config: remove the limitation of 10 config files 12068 - [CLEANUP] http: remove a remaining impossible condition 12069 - [OPTIM] http: optimize a bit the construct of the forward loops 12070 120712009/10/12 : 1.4-dev4 12072 - [DOC] add missing rate_lim and rate_max 12073 - [MAJOR] struct chunk rework 12074 - [MEDIUM] Health check reporting code rework + health logging, v3 12075 - [BUG] check if rise/fall has an argument and it is > 0 12076 - [MINOR] health checks logging unification 12077 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2 12078 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname. 12079 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html 12080 - [MINOR] Introduce include/types/counters.h 12081 - [CLEANUP] Move counters to dedicated structures 12082 - [MINOR] Add "clear counters" to clear statistics counters 12083 - [MEDIUM] Collect & provide separate statistics for sockets, v2 12084 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2 12085 - [MINOR] acl: don't report valid acls as potential mistakes 12086 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim() 12087 - [MINOR] Add chunk_htmlencode and chunk_asciiencode 12088 - [MINOR] Capture & display more data from health checks, v2 12089 - [BUG] task.c: don't assing last_timer to node-less entries 12090 - [BUG] http stats: large outputs sometimes got some parts chopped off 12091 - [MINOR] backend: export some functions to recount servers 12092 - [MINOR] backend: uninline some LB functions 12093 - [MINOR] include time.h from freq_ctr.h as is uses "now". 12094 - [CLEANUP] backend: move LB algos to individual files 12095 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions 12096 - [CLEANUP] proxy: move last lb-specific bits to their respective files 12097 - [MINOR] backend: separate declarations of LB algos from their lookup method 12098 - [MINOR] backend: reorganize the LB algorithm selection 12099 - [MEDIUM] backend: introduce the "static-rr" LB algorithm 12100 - [MINOR] report list of supported pollers with -vv 12101 - [DOC] log-health-checks is an option, not a directive 12102 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes 12103 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead 12104 - [MINOR] stats: strip CR and LF from the input command line 12105 - [BUG] don't refresh timeouts late after detected activity 12106 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk() 12107 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk() 12108 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk 12109 - [MEDIUM] stats: don't use s->ana_state anymore 12110 - [MINOR] remove now obsolete ana_state from the session struct 12111 - [MEDIUM] stats: make HTTP stats use an I/O handler 12112 - [MEDIUM] stream_int: adjust WAIT_ROOM handling 12113 - [BUG] config: look for ID conflicts in all sockets, not only last ones. 12114 - [MINOR] config: reference file and line with any listener/proxy/server declaration 12115 - [MINOR] config: report places of duplicate names or IDs 12116 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules 12117 - [MINOR] tools: add a new get_next_id() function 12118 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners 12119 - [OPTIM] counters: move some max numbers to the counters struct 12120 - [BUG] counters: fix segfault on missing counters for a listener 12121 - [MEDIUM] backend: implement consistent hashing variation 12122 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue 12123 - [MINOR] stats: use 'clear counters all' to clear all values 12124 - [MEDIUM] add access restrictions to the stats socket 12125 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length 12126 - [MINOR] proxy: provide function to retrieve backend/server pointers 12127 - [MINOR] add the "initial weight" to the server struct. 12128 - [MEDIUM] stats: add the "get weight" command to report a server's weight 12129 - [MEDIUM] stats: add the "set weight" command 12130 - [BUILD] add a 'make tags' target 12131 - [MINOR] stats: add support for numeric IDs in set weight/get weight 12132 - [MINOR] stats: use a dedicated state to output static data 12133 - [OPTIM] stats: check free space before trying to print 12134 121352009/09/24 : 1.4-dev3 12136 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD 12137 - [MEDIUM] Collect & show information about last health check, v3 12138 - [MINOR] export the hostname variable so that all the code can access it 12139 - [MINOR] stats: add a new node-name setting 12140 - [MEDIUM] remove old experimental tcpsplice option 12141 - [BUILD] fix build for systems without SOL_TCP 12142 - [MEDIUM] move connection establishment from backend to the SI. 12143 - [MEDIUM] make the global stats socket part of a frontend 12144 - [MEDIUM] session: account per-listener connections 12145 - [MINOR] session: switch to established state if no connect function 12146 - [MEDIUM] make the unix stats sockets use the generic session handler 12147 - [CLEANUP] unix: remove uxst_process_session() 12148 - [CLEANUP] move remaining stats sockets code to dumpstats 12149 - [MINOR] move the initial task's nice value to the listener 12150 - [MINOR] cleanup set_session_backend by using pre-computed analysers 12151 - [MINOR] set s->srv_error according to the analysers 12152 - [MEDIUM] set rep->analysers from fe and be analysers 12153 - [MEDIUM] replace BUFSIZE with buf->size in computations 12154 - [MEDIUM] make it possible to change the buffer size in the configuration 12155 - [MEDIUM] report error on buffer writes larger than buffer size 12156 - [MEDIUM] stream_interface: add and use ->update function to resync 12157 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead 12158 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead 12159 - [BUG] tarpit did not work anymore 12160 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers 12161 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag 12162 - [MINOR] buffers: provide more functions to handle buffer data 12163 - [MEDIUM] buffers: provide new buffer_feed*() function 12164 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces 12165 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface 12166 - [BUG] buffer_forward() would not correctly consider data already scheduled 12167 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data 12168 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors 12169 - [MAJOR] http: add support for HTTP 1xx informational responses 12170 - [MINOR] buffers: inline buffer_si_putchar() 12171 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE 12172 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning 12173 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT 12174 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set 12175 - [MEDIUM] add support for infinite forwarding 12176 - [BUILD] stream_interface: fix conflicting declaration 12177 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY 12178 - [BUG] variable buffer size ignored at initialization time 12179 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL 12180 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds 12181 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag 12182 - [MINOR] stream_interface: add iohandler callback 12183 - [MINOR] stream_interface: add functions to support running as internal/external tasks 12184 - [MEDIUM] session: call iohandler for embedded tasks (applets) 12185 - [MINOR] add a ->private member to the stream_interface 12186 - [MEDIUM] stats: prepare the connection for closing before dumping 12187 - [MEDIUM] stats: replace the stats socket analyser with an SI applet 12188 121892009/08/09 : 1.4-dev2 12190 - [BUG] task: fix possible crash when some timeouts are not configured 12191 - [BUG] log: option tcplog would log to global if no logger was defined 12192 121932009/07/29 : 1.4-dev1 12194 - [MINOR] acl: add support for matching of RDP cookies 12195 - [MEDIUM] add support for RDP cookie load-balancing 12196 - [MEDIUM] add support for RDP cookie persistence 12197 - [MINOR] add a new CLF log format 12198 - [MINOR] startup: don't imply -q with -D 12199 - [BUG] ensure that we correctly re-start old process in case of error 12200 - [MEDIUM] add support for binding to source port ranges during connect 12201 - [MINOR] config: track "no option"/"option" changes 12202 - [MINOR] config: support resetting options do default values 12203 - [MEDIUM] implement option tcp-smart-accept at the frontend 12204 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux 12205 - [MEDIUM] implement tcp-smart-connect option at the backend 12206 - [MEDIUM] add support for TCP MSS adjustment for listeners 12207 - [MEDIUM] support setting a server weight to zero 12208 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time 12209 - [MAJOR] session: don't clear buffer status flags anymore 12210 - [MAJOR] session: only check for timeouts when they have just occurred. 12211 - [MAJOR] session: simplify buffer error handling 12212 - [MEDIUM] config: split parser and checker in two functions 12213 - [MEDIUM] config: support loading multiple configuration files 12214 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set 12215 - [MEDIUM] session: rework buffer analysis to permit permanent analysers 12216 - [MEDIUM] splice: set the capability on each stream_interface 12217 - [BUG] http: redirect rules were processed too early 12218 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define 12219 - [MEDIUM] http: split request waiter from request processor 12220 - [MEDIUM] session: tell analysers what bit they were called for 12221 - [MAJOR] http: complete splitting of the remaining stages 12222 - [MINOR] report in the proxies the requirements for ACLs 12223 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx 12224 - [MINOR] acl: add HTTP protocol detection (req_proto_http) 12225 - [MINOR] prepare callers of session_set_backend to handle errors 12226 - [BUG] default ACLs did not properly set the ->requires flag 12227 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend 12228 - [MINOR] ensure we can jump from swiching rules to http without data 12229 - [MINOR] http: take http request timeout from the backend 12230 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs 12231 - [BUILD] report commit date and not author's date as build date 12232 - [MINOR] acl: don't complain anymore when using L7 acls in TCP 12233 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing 12234 - [BUG] stream_sock: don't stop reading when the poller reports an error 12235 - [BUG] config: tcp-request content only accepts "if" or "unless" 12236 - [BUG] task: fix possible timer drift after update 12237 - [MINOR] apply tcp-smart-connect option for the checks too 12238 - [MINOR] stats: better displaying in MSIE 12239 - [MINOR] config: improve error reporting in global section 12240 - [MINOR] config: improve error reporting in listen sections 12241 - [MINOR] config: the "capture" keyword is not allowed in backends 12242 - [MINOR] config: improve error reporting when checking configuration 12243 - [BUILD] fix a minor build warning on AIX 12244 - [BUILD] use "git cmd" instead of "git-cmd" 12245 - [CLEANUP] report 2009 not 2008 in the copyright banner. 12246 - [MINOR] print usage on the stats sockets upon invalid commands 12247 - [MINOR] acl: detect and report potential mistakes in ACLs 12248 - [BUILD] fix incorrect printf arg count with tcp_splice 12249 - [BUG] fix random pauses on last segment of a series 12250 - [BUILD] add support for build under Cygwin 12251 122522009/06/09 : 1.4-dev0 12253 - exact copy of 1.3.18 12254 122552009/05/10 : 1.3.18 12256 - [MEDIUM] add support for "balance hdr(name)" 12257 - [CLEANUP] give a little bit more information in error message 12258 - [MINOR] add X-Original-To: header 12259 - [BUG] x-original-to: fix missing initialization to default value 12260 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file 12261 - [MINOR] improve reporting of misplaced acl/reqxxx rules 12262 - [MEDIUM] http: add options to ignore invalid header names 12263 - [MEDIUM] http: capture invalid requests/responses even if accepted 12264 - [BUILD] add format(printf) to printf-like functions 12265 - [MINOR] fix several printf formats and missing arguments 12266 - [BUG] stats: total and lbtot are unsigned 12267 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms 12268 - [CLEANUP] remove unused make option from haproxy.spec 12269 - [BUILD] make it possible to pass alternative arch at build time 12270 - [MINOR] switch all stat counters to 64-bit 12271 - [MEDIUM] ensure we don't recursively call pool_gc2() 12272 - [CRITICAL] uninitialized response field can sometimes cause crashes 12273 - [BUG] fix wrong pointer arithmetics in HTTP message captures 12274 - [MINOR] rhel init script : support the reload operation 12275 - [MINOR] add basic signal handling functions 12276 - [BUILD] add signal.o to all makefiles 12277 - [MEDIUM] call signal_process_queue from run_poll_loop 12278 - [MEDIUM] pollers: don't wait if a signal is pending 12279 - [MEDIUM] convert all signals to asynchronous signals 12280 - [BUG] O(1) pollers should check their FD before closing it 12281 - [MINOR] don't close stdio fds twice 12282 - [MINOR] add options dontlog-normal and log-separate-errors 12283 - [DOC] minor fixes and rearrangements 12284 - [BUG] fix parser crash on unconditional tcp content rules 12285 - [DOC] rearrange the configuration manual and add a summary 12286 - [MINOR] standard: provide a new 'my_strndup' function 12287 - [MINOR] implement per-logger log level limitation 12288 - [MINOR] compute the max of sessions/s on fe/be/srv 12289 - [MINOR] stats: report max sessions/s and limit in CSV export 12290 - [MINOR] stats: report max sessions/s and limit in HTML stats 12291 - [MINOR] stats/html: use the arial font before helvetica 12292 122932009/03/29 : 1.3.17 12294 - Update specfile to build for v2.6 kernel. 12295 - [BUG] reset the stream_interface connect timeout upon connect or error 12296 - [BUG] reject unix accepts when connection limit is reached 12297 - [MINOR] show sess: report number of calls to each task 12298 - [BUG] don't call epoll_ctl() on closed sockets 12299 - [BUG] stream_sock: disable I/O on fds reporting an error 12300 - [MINOR] sepoll: don't count two events on the same FD. 12301 - [MINOR] show sess: report a lot more information about sessions 12302 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts 12303 - [BUG] don't set an expiration date directly from now_ms 12304 - [MINOR] implement ulltoh() to write HTML-formatted numbers 12305 - [MINOR] stats/html: group digits by 3 to clarify numbers 12306 - [BUILD] remove haproxy-small.spec 12307 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND 12308 123092009/03/22 : 1.3.16 12310 - [BUILD] Fixed Makefile for linking pcre 12311 - [CONTRIB] selinux policy for haproxy 12312 - [MINOR] show errors: encode backslash as well as non-ascii characters 12313 - [MINOR] cfgparse: some cleanups in the consistency checks 12314 - [MINOR] cfgparse: set backends to "balance roundrobin" by default 12315 - [MINOR] tcp-inspect: permit the use of no-delay inspection 12316 - [MEDIUM] reverse internal proxy declaration order to match configuration 12317 - [CLEANUP] config: catch and report some possibly wrong rule ordering 12318 - [BUG] connect timeout is in the stream interface, not the buffer 12319 - [BUG] session: errors were not reported in termination flags in TCP mode 12320 - [MINOR] tcp_request: let the caller take care of errors and timeouts 12321 - [CLEANUP] http: remove some commented out obsolete code in process_response 12322 - [MINOR] update ebtree to version 4.1 12323 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1 12324 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present 12325 - [BUG] scheduler: fix improper handling of duplicates __task_queue() 12326 - [MINOR] sched: permit a task to stay up between calls 12327 - [MINOR] task: keep a task count and clean up task creators 12328 - [MINOR] stats: report number of tasks (active and running) 12329 - [BUG] server check intervals must not be null 12330 - [OPTIM] stream_sock: don't retry to read after a large read 12331 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates 12332 - [MEDIUM] session: don't resync FSMs on non-interesting changes 12333 - [BUG] check for global.maxconn before doing accept() 12334 - [OPTIM] sepoll: do not re-check whole list upon accepts 12335 123362009/03/09 : 1.3.16-rc2 12337 - [BUG] stream_sock: write timeout must be updated when forwarding ! 12338 123392009/03/09 : 1.3.16-rc1 12340 - appsessions: cleanup DEBUG_HASH and initialize request_counter 12341 - [MINOR] acl: add new keyword "connslots" 12342 - [MINOR] cfgparse: fix off-by 2 in error message size 12343 - [BUILD] fix build with gcc 4.3 12344 - [BUILD] fix MANDIR default location to match documentation 12345 - [TESTS] add a debug patch to help trigger the stats bug 12346 - [BUG] Flush buffers also where there are exactly 0 bytes left 12347 - [MINOR] Allow to specify a domain for a cookie 12348 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain) 12349 - [MEDIUM] Fix memory freeing at exit 12350 - [MEDIUM] Fix memory freeing at exit, part 2 12351 - [BUG] Fix listen & more of 2 couples <ip>:<port> 12352 - [DOC] remove buggy comment for use_backend 12353 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n) 12354 - [MEDIUM] add support for URI hash depth and length limits 12355 - [MINOR] permit renaming of x-forwarded-for header 12356 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface 12357 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined 12358 - [MEDIUM] upgrade to ebtree v4.0 12359 - [DOC] update the README file with new build options 12360 - [MEDIUM] reduce risk of event starvation in ev_sepoll 12361 - [MEDIUM] detect streaming buffers and tag them as such 12362 - [MEDIUM] add support for conditional HTTP redirection 12363 - [BUILD] make install should depend on haproxy not "all" 12364 - [DEBUG] add a TRACE macro to facilitate runtime data extraction 12365 - [BUG] event pollers must not wait if a task exists in the run queue 12366 - [BUG] queue management: wake oldest request in queues 12367 - [BUG] log: reported queue position was offed-by-one 12368 - [BUG] fix the dequeuing logic to ensure that all requests get served 12369 - [DOC] documentation for the "retries" parameter was missing. 12370 - [MEDIUM] implement a monotonic internal clock 12371 - [MEDIUM] further improve monotonic clock by check forward jumps 12372 - [OPTIM] add branch prediction hints in list manipulations 12373 - [MAJOR] replace ultree with ebtree in wait-queues 12374 - [BUG] we could segfault during exit while freeing uri_auths 12375 - [BUG] wqueue: perform proper timeout comparisons with wrapping values 12376 - [MINOR] introduce now_ms, the current date in milliseconds 12377 - [BUG] disable buffer read timeout when reading stats 12378 - [MEDIUM] rework the wait queue mechanism 12379 - [BUILD] change declaration of base64tab to fix build with Intel C++ 12380 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup() 12381 - [MAJOR] use an ebtree instead of a list for the run queue 12382 - [MEDIUM] introduce task->nice and boot access to statistics 12383 - [OPTIM] task_queue: assume most consecutive timers are equal 12384 - [BUILD] silent a warning in unlikely() with gcc 4.x 12385 - [MAJOR] convert all expiration timers from timeval to ticks 12386 - [BUG] use_backend would not correctly consider "unless" 12387 - [TESTS] added test-acl.cfg to test some ACL combinations 12388 - [MEDIUM] add support for configuration keyword registration 12389 - [MEDIUM] modularize the global "stats" keyword configuration parser 12390 - [MINOR] cfgparse: add support for warnings in external functions 12391 - [MEDIUM] modularize the "timeout" keyword configuration parser 12392 - [MAJOR] implement tcp request content inspection 12393 - [MINOR] acl: add a new parsing function: parse_dotted_ver 12394 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version 12395 - [CLEANUP] remove unused include/types/client.h 12396 - [CLEANUP] remove many #include <types/xxx> from C files 12397 - [CLEANUP] remove dependency on obsolete INTBITS macro 12398 - [DOC] document the new "tcp-request" keyword and associated ACLs 12399 - [MINOR] acl: add REQ_CONTENT to the list of default acls 12400 - [MEDIUM] acl: permit fetch() functions to set the result themselves 12401 - [MEDIUM] acl: get rid of dummy values in always_true/always_false 12402 - [MINOR] acl: add the "wait_end" acl verb 12403 - [MEDIUM] acl: enforce ACL type checking 12404 - [MEDIUM] acl: set types on all currently known ACL verbs 12405 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings 12406 - [CLEANUP] remove 65 useless NULL checks before free 12407 - [MEDIUM] memory: update pool_free2() to support NULL pointers 12408 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns 12409 - [MEDIUM] process_srv: rely on buffer flags for client shutdown 12410 - [MEDIUM] process_srv: don't rely at all on client state 12411 - [MEDIUM] process_cli: don't rely at all on server state 12412 - [BUG] fix segfault with url_param + check_post 12413 - [BUG] server timeout was not considered in some circumstances 12414 - [BUG] client timeout incorrectly rearmed while waiting for server 12415 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1) 12416 - [MAJOR] get rid of SV_STANALYZE (step 2) 12417 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding 12418 - [MAJOR] completely separate HTTP and TCP states on the request path 12419 - [BUG] fix recently introduced loop when client closes early 12420 - [MAJOR] get rid of the SV_STHEADERS state 12421 - [MAJOR] better separation of response processing and server state 12422 - [MAJOR] clearly separate HTTP response processing from TCP server state 12423 - [MEDIUM] remove unused references to {CL|SV}_STSHUT* 12424 - [MINOR] term_trace: add better instrumentations to trace the code 12425 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list 12426 - [BUG] process_response must not enable the read FD 12427 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue 12428 - [BUG] process_response: do not touch srv_state 12429 - [BUG] maintain_proxies must not disable backends 12430 - [CLEANUP] get rid of BF_SHUT*_PENDING 12431 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l 12432 - [MAJOR] process_session: rely only on buffer flags 12433 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout 12434 - [MEDIUM] centralize buffer timeout checks at the top of process_session 12435 - [MINOR] ensure the termination flags are set by process_xxx 12436 - [MEDIUM] session: move the analysis bit field to the buffer 12437 - [OPTIM] process_cli/process_srv: reduce the number of tests 12438 - [BUG] regparm is broken on gcc < 3 12439 - [BUILD] fix warning in proto_tcp.c with gcc >= 4 12440 - [MEDIUM] merge inspect_exp and txn->exp into request buffer 12441 - [BUG] process_cli/process_srv: don't call shutdown when already done 12442 - [BUG] process_request: HTTP body analysis must return zero if missing data 12443 - [TESTS] test-fsm: 22 regression tests for state machines 12444 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section 12445 - [BUG] fix harmless but wrong fd insertion sequence 12446 - [MEDIUM] make it possible for analysers to follow the whole session 12447 - [MAJOR] rework of the server FSM 12448 - [OPTIM] remove useless fd_set(read) upon shutdown(write) 12449 - [MEDIUM] massive cleanup of process_srv() 12450 - [MEDIUM] second level of code cleanup for process_srv_data 12451 - [MEDIUM] third cleanup and optimization of process_srv_data() 12452 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts 12453 - [MEDIUM] stream_sock_process_data moved to stream_sock.c 12454 - [MAJOR] make the client side use stream_sock_process_data() 12455 - [MEDIUM] split stream_sock_process_data 12456 - [OPTIM] stream_sock_read must check for null-reads more often 12457 - [MINOR] only call flow analysers when their read side is connected. 12458 - [MEDIUM] reintroduce BF_HIJACK with produce_content 12459 - [MINOR] re-arrange buffer flags and rename some of them 12460 - [MINOR] do not check for BF_SHUTR when computing write timeout 12461 - [OPTIM] ev_sepoll: detect newly created FDs and check them once 12462 - [OPTIM] reduce the number of calls to task_wakeup() 12463 - [OPTIM] force inlining of large functions with gcc >= 3 12464 - [MEDIUM] indicate a reason for a task wakeup 12465 - [MINOR] change type of fdtab[]->owner to void* 12466 - [MAJOR] make stream sockets aware of the stream interface 12467 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers 12468 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT 12469 - [MEDIUM] process_session: make use of the new buffer flags 12470 - [CLEANUP] process_session: move debug outputs out of the critical loop 12471 - [MEDIUM] move QUEUE and TAR timers to stream interfaces 12472 - [OPTIM] add compiler hints in tick_is_expired() 12473 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired. 12474 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts() 12475 - [MINOR] add an expiration flag to the stream_sock_interface 12476 - [MAJOR] migrate the connection logic to stream interface 12477 - [MAJOR] add a connection error state to the stream_interface 12478 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions 12479 - [MEDIUM] continue layering cleanups. 12480 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO 12481 - [MEDIUM] remove stream_sock_update_data() 12482 - [MINOR] maintain a global session list in order to ease debugging 12483 - [BUG] shutw must imply close during a connect 12484 - [MEDIUM] process shutw during connection attempt 12485 - [MEDIUM] make the stream interface control the SHUT{R,W} bits 12486 - [MAJOR] complete layer4/7 separation 12487 - [CLEANUP] move the session-related functions to session.c 12488 - [MINOR] call session->do_log() for logging 12489 - [MINOR] replace the ambiguous client_return function by stream_int_return 12490 - [MINOR] replace client_retnclose() with stream_int_retnclose() 12491 - [MINOR] replace srv_close_with_err() with http_server_error() 12492 - [MEDIUM] make the http server error function a pointer in the session 12493 - [CLEANUP] session.c: removed some migration left-overs in sess_establish() 12494 - [MINOR] stream_sock_data_finish() should not expose fd 12495 - [MEDIUM] extract TCP request processing from HTTP 12496 - [MEDIUM] extract the HTTP tarpit code from process_request(). 12497 - [MEDIUM] move the HTTP request body analyser out of process_request(). 12498 - [MEDIUM] rename process_request to http_process_request 12499 - [BUG] fix forgotten server session counter 12500 - [MINOR] declare process_session in session.h, not proto_http.h 12501 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept() 12502 - [MINOR] add an analyser code for UNIX stats request 12503 - [MINOR] pre-set analyser flags on the listener at registration time 12504 - [BUG] do not forward close from cons to prod with analysers 12505 - [MEDIUM] ensure that sock->shutw() also closes read for init states 12506 - [MINOR] add an analyser state in struct session 12507 - [MAJOR] make unix sockets work again with stats 12508 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session 12509 - [MINOR] move the listener reference from fd to session 12510 - [MEDIUM] reference the current hijack function in the buffer itself 12511 - [MINOR] slightly rebalance stats_dump_{raw,http} 12512 - [MINOR] add a new back-reference type : struct bref 12513 - [MINOR] add back-references to sessions for later use by a dumper. 12514 - [MEDIUM] add support for "show sess" in unix stats socket 12515 - [BUG] do not release the connection slot during a retry 12516 - [BUG] dynamic connection throttling could return a max of zero conns 12517 - [BUG] do not try to pause backends during reload 12518 - [BUG] ensure that listeners from disabled proxies are correctly unbound. 12519 - [BUG] acl-related keywords are not allowed in defaults sections 12520 - [BUG] cookie capture is declared in the frontend but checked on the backend 12521 - [BUG] critical errors should be reported even in daemon mode 12522 - [MINOR] redirect: add support for the "drop-query" option 12523 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie" 12524 - [MINOR] redirect: in prefix mode a "/" means not to change the URI 12525 - [BUG] do not dequeue requests on a dead server 12526 - [BUG] do not dequeue the backend's pending connections on a dead server 12527 - [MINOR] stats: indicate if a task is running in "show sess" 12528 - [BUG] check timeout must not be changed if timeout.check is not set 12529 - [BUG] "option transparent" is for backend, not frontend ! 12530 - [MINOR] transfer errors were not reported anymore in data phase 12531 - [MEDIUM] add a send limit to a buffer 12532 - [MEDIUM] don't report buffer timeout when there is I/O activity 12533 - [MEDIUM] indicate when we don't care about read timeout 12534 - [MINOR] add flags to indicate when a stream interface is waiting for space/data 12535 - [MEDIUM] enable inter-stream_interface wakeup calls 12536 - [MAJOR] implement autonomous inter-socket forwarding 12537 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support 12538 - [MEDIUM] stream_sock: factor out the return path in case of no-writes 12539 - [MEDIUM] i/o: rework ->to_forward and ->send_max 12540 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read 12541 - [OPTIM] buffer: replace rlim by max_len 12542 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop 12543 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y) 12544 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop 12545 - [MEDIUM] split stream_sock_write() into callback and core functions 12546 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending 12547 - [MINOR] stream_sock: fix a few wrong empty calculations 12548 - [MEDIUM] stream_sock: try to send pending data on chk_snd() 12549 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes 12550 - [MEDIUM] splice: add configuration options and set global.maxpipes 12551 - [MINOR] introduce structures required to support Linux kernel splicing 12552 - [MEDIUM] add definitions for Linux kernel splicing 12553 - [MAJOR] complete support for linux 2.6 kernel splicing 12554 - [BUG] reserve some pipes for backends with splice enabled 12555 - [MEDIUM] splice: add hints to support older buggy kernels 12556 - [MEDIUM] introduce pipe pools 12557 - [MEDIUM] splice: make use of pipe pools 12558 - [STATS] report pipe usage in the statistics 12559 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified 12560 - [BUILD] fix snapshot date extraction with negative timezones 12561 - [MEDIUM] move global tuning options to the global structure 12562 - [MEDIUM] splice: add the global "nosplice" option 12563 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6 12564 - [BUG] we must not exit if protocol binding only returns a warning 12565 - [MINOR] add support for bind interface name 12566 - [BUG] inform the user when root is expected but not set 12567 - [MEDIUM] add support for source interface binding 12568 - [MEDIUM] add support for source interface binding at the server level 12569 - [MEDIUM] implement bind-process to limit service presence by process 12570 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response} 12571 - [DOC] filled the logging section of the configuration manual 12572 - [DOC] document HTTP status codes 12573 - [DOC] document a few missing info about errorfile 12574 - [BUG] fix random memory corruption using "show sess" 12575 - [BUG] fix unix socket processing of interrupted output 12576 - [DOC] add diagrams of queuing and future ACL design 12577 - [BUILD] proto_http did not build on gcc-2.95 12578 - [BUG] the "source" keyword must first clear optional settings 12579 - [BUG] global.tune.maxaccept must be limited even in mono-process mode 12580 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char 12581 - [MEDIUM] store a complete dump of request and response errors in proxies 12582 - [MEDIUM] implement error dump on unix socket with "show errors" 12583 - [DOC] document "show errors" 12584 - [MINOR] errors dump must use user-visible date, not internal date. 12585 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second 12586 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second. 12587 - [MEDIUM] measure and report session rate on frontend, backends and servers 12588 - [BUG] the "connslots" keyword was matched as "connlots" 12589 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate 12590 - [MEDIUM] implement "rate-limit sessions" for the frontend 12591 - [BUG] interface binding: length must include the trailing zero 12592 - [BUG] typo in timeout error reporting : report *res and not *err 12593 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready 12594 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption 12595 - [BUG] switch server-side stream interface to close in case of abort 12596 - [CLEANUP] remove last references to term_trace 12597 - [OPTIM] freq_ctr: do not rotate the counters when reading 12598 - [BUG] disable any analysers for monitoring requests 12599 - [BUG] rate-limit in defaults section was ignored 12600 - [BUG] task: fix handling of duplicate keys 12601 - [OPTIM] task: don't unlink a task from a wait queue when waking it up 12602 - [OPTIM] displace tasks in the wait queue only if absolutely needed 12603 - [MEDIUM] minor update to the task api: let the scheduler queue itself 12604 - [BUG] event_accept() must always wake the task up, even in health mode 12605 - [CLEANUP] task: distinguish between clock ticks and timers 12606 - [OPTIM] task: reduce the number of calls to task_queue() 12607 - [OPTIM] do not re-check req buffer when only response has changed 12608 - [CLEANUP] don't enable kernel splicing when socket is closed 12609 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase 12610 - [MINOR] buffers: implement buffer_flush() 12611 - [MEDIUM] rearrange forwarding condition to enable splice during analysis 12612 - [BUILD] build fixes for Solaris 12613 - [BUILD] proto_http did not build on gcc-2.95 (again) 12614 - [CONTRIB] halog: fast log parser for haproxy 12615 - [CONTRIB] halog: faster fgets() and add support for percentile reporting 12616 126172008/04/19 : 1.3.15 12618 - [BUILD] Added support for 'make install' 12619 - [BUILD] Added 'install-man' make target for installing the man page 12620 - [BUILD] Added 'install-bin' make target 12621 - [BUILD] Added 'install-doc' make target 12622 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets 12623 - [BUILD] Changed 'install' target to install the binaries first 12624 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)' 12625 - [MEDIUM]: Inversion for options 12626 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup 12627 - [BUG]: Restore clearing t->logs.bytes 12628 - [MEDIUM]: rework checks handling 12629 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects 12630 - [MEDIUM] Implement "track [<backend>/]<server>" 12631 - [MINOR] Implement persistent id for proxies and servers 12632 - [BUG] Don't increment server connections too much + fix retries 12633 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3 12634 - [MAJOR] proto_uxst rework -> SNMP support 12635 - [BUG] appsession lookup in URL does not work 12636 - [BUG] transparent proxy address was ignored in backend 12637 - [BUG] hot reconfiguration failed because of a wrong error check 12638 - [DOC] big update to the configuration manual 12639 - [DOC] large update to the configuration manual 12640 - [DOC] document more options 12641 - [BUILD] major rework of the GNU Makefile 12642 - [STATS] add support for "show info" on the unix socket 12643 - [DOC] document options forwardfor to logasap 12644 - [MINOR] add support for the "backlog" parameter 12645 - [OPTIM] introduce global parameter "tune.maxaccept" 12646 - [MEDIUM] introduce "timeout http-request" in frontends 12647 - [MINOR] tarpit timeout is also allowed in backends 12648 - [BUG] increment server connections for each connect() 12649 - [MEDIUM] add a turn-around state of one second after a connection failure 12650 - [BUG] fix typo in redispatched connection 12651 - [DOC] document options nolinger to ssl-hello-chk 12652 - [DOC] added documentation for "option tcplog" to "use_backend" 12653 - [BUG] connect_server: server might not exist when sending error report 12654 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY) 12655 - [MEDIUM] add non-local bind to connect() on Linux 12656 - [MINOR] add transparent proxy support for balabit's Tproxy v4 12657 - [BUG] use backend's source and not server's source with tproxy 12658 - [BUG] fix overlapping server flags 12659 - [MEDIUM] fix server health checks source address selection 12660 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY 12661 - [DOC] added "server", "source" and "stats" keywords 12662 - [DOC] all server parameters have been documented 12663 - [DOC] document all req* and rsp* keywords. 12664 - [DOC] added documentation about HTTP header manipulations 12665 - [BUG] log response byte count, not request 12666 - [BUILD] code did not build in full debug mode 12667 - [BUG] fix truncated responses with sepoll 12668 - [MINOR] use s->frt_addr as the server's address in transparent proxy 12669 - [MINOR] fix configuration hint about timeouts 12670 - [DOC] minor cleanup of the doc and notice to contributors 12671 - [MINOR] report correct section type for unknown keywords. 12672 - [BUILD] update MacOS Makefile to build on newer versions 12673 - [DOC] fix erroneous "useallbackups" option in the doc 12674 - [DOC] applied small fixes from early readers 12675 - [MINOR] add configuration support for "redir" server keyword 12676 - [MEDIUM] completely implement the server redirection method 12677 - [TESTS] add a test case for the server redirection mechanism 12678 - [DOC] add a configuration entry for "server ... redir <prefix>" 12679 - [BUILD] backend.c and checks.c did not build without tproxy ! 12680 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !" 12681 - [BUILD] backend.c and checks.c did not build without tproxy ! 12682 - [OPTIM] used unsigned ints for HTTP state and message offsets 12683 - [OPTIM] GCC4's builtin_expect() is suboptimal 12684 - [BUG] failed conns were sometimes incremented in the frontend! 12685 - [BUG] timeout.check was not pre-set to eternity 12686 - [TESTS] add test-pollers.cfg to easily report pollers in use 12687 - [BUG] do not apply timeout.connect in checks if unset 12688 - [BUILD] ensure that makefile understands USE_DLMALLOC=1 12689 - [MINOR] silent gcc for a wrong warning 12690 - [CLEANUP] update .gitignore to ignore more temporary files 12691 - [CLEANUP] report dlmalloc's source path only if explictly specified 12692 - [BUG] str2sun could leak a small buffer in case of error during parsing 12693 - [BUG] option allbackups was not working anymore in roundrobin mode 12694 - [MAJOR] implementation of the "leastconn" load balancing algorithm 12695 - [BUILD] ensure that users don't build without setting the target anymore. 12696 - [DOC] document the leastconn LB algo 12697 - [MEDIUM] fix stats socket limitation to 16 kB 12698 - [DOC] fix unescaped space in httpchk example. 12699 - [BUG] fix double-decrement of server connections 12700 - [TESTS] add a test case for port mapping 12701 - [TESTS] add a benchmark for integer hashing 12702 - [TESTS] add new methods in ip-hash test file 12703 - [MAJOR] implement parameter hashing for POST requests 12704 127052007/12/06 : 1.3.14 12706 - New option http_proxy (Alexandre Cassen) 12707 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov) 12708 - Check for duplicated conflicting proxies (Krzysztof Oledzki) 12709 - stats: report server and backend cumulated downtime (Krzysztof Oledzki) 12710 - use backends only with use_backend directive (Krzysztof Oledzki) 12711 - Handle long lines properly (Krzysztof Oledzki) 12712 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki) 12713 - continous statistics (Krzysztof Oledzki) 12714 - add support for logging via a UNIX socket (Robert Tsai) 12715 - fix error checking in strl2ic/strl2uic() 12716 - fix calls to localtime() 12717 - provide easier-to-use ultoa_* functions 12718 - provide easy-to-use limit_r and LIM2A* macros 12719 - add a simple test for the status page 12720 - move error codes to common/errors.h 12721 - silent warning about LIST_* being redefined on OpenBSD 12722 - add socket address length to the protocols 12723 - group PR_O_BALANCE_* bits into a checkable value 12724 - externalize the "balance" option parser to backend.c 12725 - introduce the "url_param" balance method 12726 - make default_backend work in TCP mode too 12727 - disable warning about localtime_r on Solaris 12728 - adjust error messages about conflicting proxies 12729 - avoid calling some layer7 functions if not needed 12730 - simplify error path in event_accept() 12731 - add an options field to the listeners 12732 - added a new state to listeners 12733 - unbind_listener() must use fd_delete() and not close() 12734 - add a generic unbind_listener() primitive 12735 - add a generic delete_listener() primitive 12736 - add a generic unbind_all_listeners() primitive 12737 - create proto_tcp and move initialization of proxy listeners 12738 - stats: report numerical process ID, proxy ID and server ID 12739 - relative_pid was not initialized 12740 - missing header names in raw stats output 12741 - fix missing parenthesis in check_response_for_cacheability 12742 - small optimization on session_process_counters() 12743 - merge ebtree version 3.0 12744 - make ebtree headers multiple-include compatible 12745 - ebtree: include config.h for REGPRM* 12746 - differentiate between generic LB params and map-specific ones 12747 - add a weight divisor to the struct proxy 12748 - implement the Fast Weighted Round Robin (FWRR) algo 12749 - include filltab25.c to experiment on FWRR for dynamic weights 12750 - merge test-fwrr.cfg to validate dynamic weights 12751 - move the load balancing algorithm to be->lbprm.algo 12752 - change server check result to a bit field 12753 - implement "http-check disable-on-404" for graceful shutdown 12754 - secure the calling conditions of ->set_server_status_{up,down} 12755 - report disabled servers as "NOLB" when they are still UP 12756 - document the "http-check disable-on-404" option 12757 - http-check disable-on-404 is not limited to HTTP mode 12758 - add a test file for disable-on-404 12759 - use distinct bits per load-balancing algorithm type 12760 - implement the slowstart parameter for servers 12761 - document the server's slowstart parameter 12762 - stats: report the server warm up status in a "throttle" column 12763 - fix 2 minor issues on AIX 12764 - add the "nbsrv" ACL verb 12765 - add the "fail" condition to monitor requests 12766 - remove a warning from gcc due to htons() in standard.c 12767 - fwrr: ensure that we never overflow in placements 12768 - store the build options to report with -vv 12769 - fix the status return of the init script (R.I. Pienaar) 12770 - stats: real time monitoring script for unix socket (Prizee) 12771 - document "nbsrv" and "monitor fail" 12772 - restrict the set of allowed characters for identifiers 12773 - implement a time parsing function 12774 - add support for time units in the configuration 12775 - add a bit of documentation about timers 12776 - introduce separation between contimeout, and tarpit + queue 12777 - introduce the "timeout" keyword 12778 - grouped all timeouts in one structure 12779 - slowstart is in ms, not seconds 12780 - slowstart: ensure we don't start with a null weight 12781 - report the number of times each server was selected 12782 - fix build on AIX due to recent log changes 12783 - fix build on Solaris due to recent log changes 12784 127852007/10/18 : 1.3.13 12786 - replace the code under O'Reilly license (Arnaud Cornet) 12787 - add a small man page (Arnaud Cornet) 12788 - stats: report haproxy's version by default (Krzysztof Oledzki) 12789 - stats: count server retries and redispatches (Krzysztof Oledzki) 12790 - core: added easy support for Doug Lea's malloc (dlmalloc) 12791 - core: fade out memory usage when stopping proxies 12792 - core: moved the sockaddr pointer to the fdtab structure 12793 - core: add generic protocol support 12794 - core: implement client-side support for PF_UNIX sockets 12795 - stats: implement the CSV output 12796 - stats: add a link to the CSV export HTML page 12797 - stats: implement the statistics output on a unix socket 12798 - config: introduce the "stats" keyword in global section 12799 - build: centralize version and date into one file for each 12800 - tests: added a new hash algorithm 12801 128022007/10/18 : 1.3.12.3 12803 - add the "nolinger" option to disable data lingering (Alexandre Cassen) 12804 - fix double-free during clean exit (Krzysztof Oledzki) 12805 - prevent the system from sending an RST when closing health-checks 12806 (Krzysztof Oledzki) 12807 - do not add a cache-control header when on non-cacheable responses 12808 (Krzysztof Oledzki) 12809 - spread health checks even more (Krzysztof Oledzki) 12810 - stats: scope "." must match the backend and not the frontend 12811 - fixed call to chroot() during startup 12812 - fix wrong timeout computation in event_accept() 12813 - remove condition for exit() under fork() failure 12814 128152007/09/20 : 1.3.12.2 12816 - fix configuration sanity checks for TCP listeners 12817 - set the log socket receive window to zero bytes 12818 - pre-initialize timeouts to infinity, not zero 12819 - fix the SIGHUP message not to alert on server-less proxies 12820 - timeouts and retries could be ignored when switching backend 12821 - added a file to check that "retries" works. 12822 - O'Reilly has clarified its license 12823 128242007/09/05 : 1.3.12.1 12825 - spec I/O: fix allocations of spec entries for an FD 12826 - ensure we never overflow in chunk_printf() 12827 - improve behaviour with large number of servers per proxy 12828 - add support for "stats refresh <interval>" 12829 - stats page: added links for 'refresh' and 'hide down' 12830 - fix backend's weight in the stats page. 12831 - the "stats" keyword is not allowed in a pure frontend. 12832 - provide a test configuration file for stats and checks 12833 128342007/06/17 : 1.3.12 12835 - fix segfault at exit when using captures 12836 - bug: negation in ACL conds was not cleared between terms 12837 - errorfile: use a local file to feed error messages 12838 - acl: support '-i' to ignore case when matching 12839 - acl: smarter integer comparison with operators eq,lt,gt,le,ge 12840 - acl: support maching on 'path' component 12841 - acl: implement matching on header values 12842 - acl: distinguish between request and response headers 12843 - acl: permit to return any header when no name specified 12844 - acl: provide default ACLs 12845 - added the 'use_backend' keyword for full content-switching 12846 - acl: specify the direction during fetches 12847 - acl: provide the argument length for fetch functions 12848 - acl: provide a reference to the expr to fetch() 12849 - improve memory freeing upon exit 12850 - str2net() must not change the const char * 12851 - shut warnings 'is*' macros from ctype.h on solaris 12852 128532007/06/03 : 1.3.11.4 12854 - do not re-arm read timeout in SHUTR state ! 12855 - optimize I/O by detecting system starvation 12856 - the epoll FD must not be shared between processes 12857 - limit the number of events returned by *poll* 12858 128592007/05/14 : 1.3.11.3 12860 - pre-initialize timeouts with tv_eternity during parsing 12861 128622007/05/14 : 1.3.11.2 12863 - fixed broken health-checks since switch to timeval 12864 128652007/05/14 : 1.3.11.1 12866 - fixed ev_kqueue which was forgotten during the switch to timeval 12867 - allowed null timeouts for past events in select 12868 128692007/05/14 : 1.3.11 12870 - fixed ev_sepoll again by rewriting the state machine 12871 - switched all timeouts to timevals instead of milliseconds 12872 - improved memory management using mempools v2. 12873 - several minor optimizations 12874 128752007/05/09 : 1.3.10.2 12876 - fixed build on OpenBSD (missing types.h) 12877 128782007/05/09 : 1.3.10.1 12879 - fixed sepoll transition matrix (two states were missing) 12880 128812007/05/08 : 1.3.10 12882 - several fixes in ev_sepoll 12883 - fixed some expiration dates on some tasks 12884 - fixed a bug in connection establishment detection due to speculative I/O 12885 - fixed rare bug occuring on TCP with early close (reported by Andy Smith) 12886 - implemented URI hashing algorithm (Guillaume Dallaire) 12887 - implemented SMTP health checks (Peter van Dijk) 12888 - replaced the rbtree with ul2tree from old scheduler project 12889 - new framework for generic ACL support 12890 - added the 'acl' and 'block' keywords to the config language 12891 - added several ACL criteria and matches (IP, port, URI, ...) 12892 - cleaned up and better modularization for some time functions 12893 - fixed list macros 12894 - fixed useless memory allocation in str2net() 12895 - store the original destination address in the session 12896 128972007/04/15 : 1.3.9 12898 - modularized the polling mechanisms and use function pointers instead 12899 of macros at many places 12900 - implemented support for FreeBSD's kqueue() polling mechanism 12901 - fixed a warning on OpenBSD : MIN/MAX redefined 12902 - change socket registration order at startup to accomodate kqueue. 12903 - several makefile cleanups to support old shells 12904 - fix build with limits.h once for all 12905 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead. 12906 - fdtab now holds the results of polling 12907 - implemented support for speculative I/O processing with epoll() 12908 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost 12909 - auto-registering of pollers at load time 12910 129112007/04/03 : 1.3.8.2 12912 - rewriting either the status line or request line could crash the 12913 process due to a pointer which ought to be reset before parsing. 12914 - rewriting the status line in the response did not work, it caused 12915 a 502 Bad Gateway due to an erroneous state during parsing 12916 129172007/04/01 : 1.3.8.1 12918 - fix reqadd when no option httpclose is used. 12919 - removed now unused fiprm and beprm from proxies 12920 - split logs into two versions : TCP and HTTP 12921 - added some docs about http headers storage and acls 12922 - added a VIM script for syntax color highlighting (Bruno Michel) 12923 129242007/03/25 : 1.3.8 12925 - fixed several bugs which might have caused a crash with bad configs 12926 - several optimizations in header processing 12927 - many progresses towards transaction-based processing 12928 - option forwardfor may be used in frontends 12929 - completed HTTP response processing 12930 - some code refactoring between request and response processing 12931 - new HTTP header manipulation functions 12932 - optimizations on the recv() patch to reduce CPU usage under very 12933 high data rates. 12934 - more user-friendly help about the 'usesrc' keyword (CTTPROXY) 12935 - username/groupname support from Marcus Rueckert 12936 - added the "except" keyword to the "forwardfor" option (Bryan German) 12937 - support for health-checks on other addresses (Fabrice Dulaunoy) 12938 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe) 12939 - do not insert "Connection: close" in HTTP/1.0 messages 12940 129412007/01/26 : 1.3.7 12942 - fix critical bug introduced with 1.3.6 : an empty request header 12943 may lead to a crash due to missing pointer assignment 12944 - hdr_idx might be left uninitialized in debug mode 12945 - fixed build on FreeBSD due to missing fd_set declaration 12946 129472007/01/22 : 1.3.6.1 12948 - change in the header chaining broke cookies and authentication 12949 129502007/01/22 : 1.3.6 12951 - stats now support the HEAD method too 12952 - extracted http request from the session 12953 - huge rework of the HTTP parser which is now a 28-state FSM. 12954 - linux-style likely/unlikely macros for optimization hints 12955 - do not create a server socket when there's no server 12956 - imported lots of docs 12957 129582007/01/07 : 1.3.5 12959 - stats: swap color sets for active and backup servers 12960 - try to guess server check port when unset 12961 - added complete support and doc for TCP Splicing 12962 - replace the wait-queue linked list with an rbtree. 12963 - a few bugfixes and cleanups 12964 129652007/01/02 : 1.3.4 12966 - support for cttproxy on the server side to present the client 12967 address to the server. 12968 - added support for SO_REUSEPORT on Linux (needs kernel patch) 12969 - new RFC2616-compliant HTTP request parser with header indexing 12970 - split proxies in frontends, rulesets and backends 12971 - implemented the 'req[i]setbe' to select a backend depending 12972 on the contents 12973 - added the 'default_backend' keyword to select a default BE. 12974 - new stats page featuring FEs and BEs + bytes in both dirs 12975 - improved log format to indicate the backend and the time in ms. 12976 - lots of cleanups 12977 129782006/10/15 : 1.3.3 12979 - fix broken redispatch option in case the connection has already 12980 been marked "in progress" (ie: nearly always). 12981 - support regparm on x86 to speed up some often called functions 12982 - removed a few useless calls to gettimeofday() in log functions. 12983 - lots of 'const char*' cleanups 12984 - turn every FD_* into functions which are faster on recent CPUs 12985 129862006/09/03 : 1.3.2 12987 - started the changes towards I/O completion callbacks. stream_sock* have 12988 replaced event_*. 12989 - added the new "reqtarpit" and "reqitarpit" protection features 12990 129912006/07/09 : 1.3.1 (1.2.15) 12992 - now, haproxy warns about missing timeout during startup to try to 12993 eliminate all those buggy configurations. 12994 - added "Content-Type: text/html" in responses wherever appropriate, as 12995 suggested by Cameron Simpson. 12996 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to 12997 test server's health 12998 - implemented "monitor-uri" so that haproxy can reply to a specific URI with 12999 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies 13000 at once. 13001 130022006/06/29 : 1.3.0 13003 - exploded the whole file into multiple .c and .h. No functionnal 13004 difference is expected at all. 13005 - fixed a bug by which neither stats nor error messages could be returned if 13006 'clitimeout' was missing. 13007 130082006/05/21 : 1.2.14 13009 - new HTML status report with the 'stats' keyword. 13010 - added the 'abortonclose' option to better resist traffic surges 13011 - implemented dynamic traffic regulation with the 'minconn' option 13012 - show request time on denied requests 13013 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT 13014 - now a proxy instance is allowed to run without servers, which is 13015 useful to dedicate one instance to stats 13016 - added lots of error counters 13017 - a missing parenthesis preventd matching of cacheable cookies 13018 - a missing parenthesis in poll_loop() might have caused missed events. 13019 130202006/05/14 : 1.2.13.1 13021 - an uninitialized field in the struct session could cause a crash when 13022 the session was freed. This has been encountered on Solaris only. 13023 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's 13024 be nice to them by performing a soft stop if pause fails. 13025 130262006/05/13 : 1.2.13 13027 - 'maxconn' server parameter to do per-server session limitation 13028 - queueing to support non-blocking session limitation 13029 - fixed removal of cookies for cookie-less servers such as backup servers 13030 - two separate wait queues for expirable and non-expirable tasks provide 13031 better performance with lots of sessions. 13032 - some code cleanups and performance improvements 13033 - made state dumps a bit more verbose 13034 - fixed missing checks for NULL srv in dispatch mode 13035 - load balancing on backup servers was not possible in source hash mode. 13036 - two session flags shared the same bit, but fortunately they were not 13037 compatible. 13038 130392006/04/15 : 1.2.12 13040 Very few changes preparing for more important changes to support per-server 13041 session limitations and queueing : 13042 - ignore leading empty lines in HTTP requests as suggested by RFC2616. 13043 - added the 'weight' parameter to the servers, limited to 1..256. It applies 13044 to roundrobin and source hash. 13045 - the optional '-s' option could clobber '-st' and '-sf' if compiled in. 13046 130472006/03/30 : 1.2.11.1 13048 - under some conditions, it might have been possible that when the 13049 last dead server became available, it would not have been used 13050 till another one would have changed state. Could not be reproduced 13051 at all, however seems possible from the code. 13052 130532006/03/25 : 1.2.11 13054 - added the '-db' command-line option to disable backgrounding. 13055 - added the -sf/-st command-line arguments which are used to specify 13056 a list of pids to send a FINISH or TERMINATE signal upon startup. 13057 They will also be asked to release their port if a bind fails. 13058 - reworked the startup mechanism to allow the sending of a signal to a list 13059 of old pids if a socket cannot be bound, with a retry for a limited amount 13060 of time (1 second by default). 13061 - added the ability to enforce limits on memory usage. 13062 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6) 13063 - re-architectured the server round-robin mechanism to ease integration of 13064 other algorithms. It now relies on the number of active and backup servers. 13065 - added a counter for the number of active and backup servers, and report 13066 these numbers upon SIGHUP or state change. 13067 130682006/03/23 : 1.2.10.1 13069 - while fixing the backup server round-robin "feature", a new bug was 13070 introduced which could miss some backup servers. 13071 - the displayed proxy name was wrong when dumping upon SIGHUP. 13072 130732006/03/19 : 1.2.10 13074 - assert.h is needed when DEBUG is defined. 13075 - ENORMOUS long standing bug affecting the epoll polling system : 13076 event_data is a union, not a structure ! 13077 - Make fd management more robust and easier to debug. Also some 13078 micro-optimisations. 13079 - Limit the number of consecutive accept() in multi-process mode. 13080 This produces a more evenly distributed load across the processes and 13081 slightly improves performance by reducing bottlenecks. 13082 - Make health-checks be more regular, and faster to retry after a timeout. 13083 - Fixed some messages to ease parsing of alerts. 13084 - provided a patch to enable epoll on RHEL3 kernels. 13085 - Separated OpenBSD build from the main Makefile into a new one. 13086 130872006/03/15 : 1.2.9 13088 - haproxy could not be stopped after being paused, it had to be woken up 13089 first. This has been fixed. 13090 - the 'ulimit-n' parameter is now optional and by default computed from 13091 maxconn + the number of listeners + the number of health-checks. 13092 - it is now possible to specify a maximum number of connections at build 13093 time with the SYSTEM_MAXCONN define. The value set in the configuration 13094 file will then be limited to this value, and only the command-line '-n' 13095 option will be able to bypass it. It will prevent against accidental 13096 high memory usage on small systems. 13097 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier 13098 versions did not detect a line beginning with a space as the continuation 13099 of previous header. It is now correct. 13100 - health checks sent to servers configured with identical intervals were 13101 sent in perfect synchronisation because the initial time was the same 13102 for all. This could induce high load peaks when fragile servers were 13103 hosting tens of instances for the same application. Now the load is 13104 spread evenly across the smallest interval amongst a listener. 13105 - a new 'forceclose' option was added to make the proxy close the outgoing 13106 channel to the server once it has sent all its headers and the server 13107 starts responding. This helps some servers which don't close upon the 13108 'Connection: close' header. It implies 'option httpclose'. 13109 - there was a bug in the way the backup servers were handled. They were 13110 erroneously load-balanced while the doc said the opposite. Since 13111 load-balanced backup servers is one of the features some people have 13112 been asking for, the problem was fixed to reflect the documented 13113 behaviour and a new option 'allbackups' was introduced to provide the 13114 feature to those who need it. 13115 - a never ending connect() could lead to a fast select() loop if its 13116 timeout times the number of retransmits exceeded the server read or write 13117 timeout, because the later was used to compute select()'s timeout while 13118 the connection timeout was not reached. 13119 - now we initialize the libc's localtime structures very early so that even 13120 under OOM conditions, we can still send dated error messages without 13121 segfaulting. 13122 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file 13123 descriptors are closed. 13124 131252006/01/29 : 1.2.8 13126 - fixed a nasty bug affecting poll/epoll which could return unmodified data 13127 from the server to the client, and sometimes lead to memory corruption 13128 crashing the process. 13129 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf. 13130 131312005/12/18 : 1.2.7.1 13132 - the "retries" option was ignored because connect() could not return an 13133 error if the connection failed before the timeout. 13134 - TCP health-checks could not detect a connection refused in poll/epoll 13135 mode. 13136 131372005/11/13 : 1.2.7 13138 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At 13139 least on Solaris, this caused the libc's regex primitives to be used instead 13140 of PCRE, which caused trouble on group references. This is now fixed. 13141 - delayed the quiet mode during startup so that most of the startup alerts can 13142 be displayed even in quiet mode. 13143 - display an alert when a listener has no address, invalid or no port, or when 13144 there are no enabled listeners upon startup. 13145 - added "static-pcre" to the list of supported regex options in the Makefile. 13146 131472005/10/09 : 1.2.7rc (1.1.33rc) 13148 - second batch of socklen_t changes. 13149 - clean-ups from Cameron Simpson. 13150 - because tv_remain() does not know about eternity, using no timeout can 13151 make select() spin around a null time-out. Bug reported by Cameron Simpson. 13152 - client read timeout was not properly set to eternity initialized after an 13153 accept() if it was not set in the config. It remained undetected so long 13154 because eternity is 0 and newly allocated pages are zeroed by the system. 13155 - do not call get_original_dst() when not in transparent mode. 13156 - implemented a workaround for a bug in certain epoll() implementations on 13157 linux-2.4 kernels (epoll-lt <= 0.21). 13158 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka. 13159 131602005/08/07 : 1.2.6 13161 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t). 13162 131632005/07/06 : 1.2.6-pre5 (1.1.32) 13164 - added the number of active sessions (proxy/process) in the logs 13165 131662005/07/06 : 1.2.6-pre4 (1.1.32-pre4) 13167 - the time-out fix introduced in 1.1.25 caused a corner case where it was 13168 possible for a client to keep a connection maintained regardless of the 13169 timeout if the server closed the connection during the HEADER phase, 13170 while the client ignored the close request while doing nothing in the 13171 other direction. This has been fixed now by ensuring that read timeouts 13172 are re-armed when switching to any SHUTW state. 13173 131742005/07/05 : 1.2.6-pre3 (1.1.32-pre3) 13175 - enhanced error reporting in the logs. Now the proxy will precisely detect 13176 various error conditions related to the system and/or process limits, and 13177 generate LOG_EMERG logs indicating that a resource has been exhausted. 13178 - logs will contain two new characters for the error cause : 'R' indicates 13179 a resource exhausted, and 'I' indicates an internal error, though this 13180 one should never happen. 13181 - server connection timeouts can now be reported in the logs (sC), as well 13182 as connections refused because of maxconn limitations (PC). 13183 131842005/07/05 : 1.2.6-pre2 (1.1.32-pre2) 13185 - new global configuration keyword "ulimit-n" may be used to raise the FD 13186 limit to usable values. 13187 - a warning is now displayed on startup if the FD limit is lower than the 13188 configured maximum number of sockets. 13189 131902005/07/05 : 1.2.6-pre1 (1.1.32-pre1) 13191 - new configuration keyword "monitor-net" makes it possible to be monitored 13192 by external devices which connect to the proxy without being logged nor 13193 forwarded to any server. Particularly useful on generic TCPv4 relays. 13194 131952005/06/21 : 1.2.5.2 13196 - fixed build on PPC where chars are unsigned by default 13197 131982005/05/02 : 1.2.5.1 13199 - dirty hack to fix a bug introduced with epoll : if we close an FD and 13200 immediately reassign it to another session through a connect(), the 13201 Prev{Read,Write}Events are not updated, which causes trouble detecting 13202 changes, thus leading to many timeouts at high loads. 13203 132042005/04/30 : 1.2.5 (1.1.31) 13205 - changed the runtime argument to disable epoll() to '-de' 13206 - changed the runtime argument to disable poll() to '-dp' 13207 - added global options 'nopoll' and 'noepoll' to do the same at the 13208 configuration level. 13209 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to 13210 support epoll(). 13211 - changed default FD_SETSIZE to 65536 on Solaris (default=1024) 13212 - conditionned signals redirection to #ifdef DEBUG_MEMORY 13213 132142005/04/26 : 1.2.5-pre4 13215 - made epoll() support a compile-time option : ENABLE_EPOLL 13216 - provided a very little libc replacement for a possibly missing epoll() 13217 implementation which can be enabled by -DUSE_MY_EPOLL 13218 - implemented the poll() poller, which can be enabled with -DENABLE_POLL. 13219 The equivalent runtime argument becomes '-P'. A few tests show that it 13220 performs like select() with many fds, but slightly slower (certainly 13221 because of the higher amount of memory involved). 13222 - separated the 3 polling methods and the tasks scheduler into 4 distinct 13223 functions which makes the code a lot more modular. 13224 - moved some event tables to private static declarations inside the poller 13225 functions. 13226 - the poller functions can now initialize themselves, run, and cleanup. 13227 - changed the runtime argument to enable epoll() to '-E'. 13228 - removed buggy epoll_ctl() code in the client_retnclose() function. This 13229 function was never meant to remove anything. 13230 - fixed a typo which caused glibc to yell about a double free on exit. 13231 - removed error checking after epoll_ctl(DEL) because we can never know if 13232 the fd is still active or already closed. 13233 - added a few entries in the makefile 13234 132352005/04/25 : 1.2.5-pre3 13236 - experimental epoll() support (use temporary '-e' argument) 13237 132382005/04/24 : 1.2.5-pre2 13239 - implemented the HTTP 303 code for error redirection. This forces the 13240 browser to fetch the given URI with a GET request. The new keyword for 13241 this is 'errorloc303', and a new 'errorloc302' keyword has been created 13242 to make them easily distinguishable. 13243 - added more controls in the parser for valid use of '\x' sequence. 13244 - few fixes from Alex & Klaus 13245 132462005/02/17 : 1.2.5-pre1 13247 - fixed a few errors in the documentation 13248 132492005/02/13 13250 - do not pre-initialize unused file-descriptors before select() anymore. 13251 132522005/01/22 : 1.2.4 13253 - merged Alexander Lazic's and Klaus Wagner's work on application 13254 cookie-based persistence. Since this is the first merge, this version is 13255 not intended for general use and reports are more than welcome. Some 13256 documentation is really needed though. 13257 132582005/01/22 : 1.2.3 (1.1.30) 13259 - add an architecture guide to the documentation 13260 - released without any changes 13261 132622004/12/26 : 1.2.3-pre1 (1.1.30-pre1) 13263 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is 13264 compatible with Apache. This limit can be configured in the makefile now. 13265 Thanks to Eric Fehr for the checks. 13266 - added a per-server "source" option which now makes it possible to bind to 13267 a different source for each (potentially identical) server. 13268 - changed cookie-based server selection slightly to allow several servers to 13269 share a same cookie, thus making it possible to associate backup servers to 13270 live servers and ease soft-stop for maintenance periods. (Alexander Lazic) 13271 - added the cookie 'prefix' mode which makes it possible to use persistence 13272 with thin clients which support only one cookie. The server name is prefixed 13273 before the application cookie, and restore back. 13274 - fixed the order of servers within an instance to match documentation. Now 13275 the servers are *really* used in the order of their declaration. This is 13276 particularly important when multiple backup servers are in use. 13277 132782004/10/18 : 1.2.2 (1.1.29) 13279 - fixed a bug where a TCP connection would be logged twice if the 'logasap' 13280 option was enabled without the 'tcplog' option. 13281 - encode_string() would use hdr_encode_map instead of the map argument. 13282 132832004/08/10 : (1.1.29-pre2) 13284 - the logged request is now encoded with '#XX' for unprintable characters 13285 - new keywords 'capture request header' and 'capture response header' enable 13286 logging of arbitrary HTTP headers in requests and responses 13287 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton() 13288 132892004/06/06 : 1.2.1 (1.1.28) 13290 - added the '-V' command line option to verbosely report errors even though 13291 the -q or 'quiet' options are specified. This is useful with '-c'. 13292 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch> 13293 132942004/06/05 : 13295 - added the "logasap" option which produces a log without waiting for the data 13296 to be transferred from the server to the client. 13297 - added the "httpclose" option which removes any "connection:" header and adds 13298 "Connection: close" in both direction. 13299 - added the 'checkcache' option which blocks cacheable responses containing 13300 dangerous headers, such as 'set-cookie'. 13301 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible 13302 information leak from servers. 13303 133042004/04/18 : 13305 - send an EMERG log when no server is available for a given proxy 13306 - added the '-c' command line option to syntactically check the 13307 configuration file without starting the service. 13308 133092003/11/09 : 1.2.0 13310 - the same as 1.1.27 + IPv6 support on the client side 13311 133122003/10/27 : 1.1.27 13313 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful 13314 bug : the code still assumed that HTTP requests were the same size as the 13315 original ones (22 bytes), and failed if they were not. 13316 - added support for pidfiles. 13317 133182003/10/22 : 1.1.26 13319 - the fix introduced in 1.1.25 for client timeouts while waiting for servers 13320 broke almost all compatibility with POST requests, because the proxy 13321 stopped to read anything from the client as soon as it got all of its 13322 headers. 13323 133242003/10/15 : 1.1.25 13325 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for 13326 generic TCP proxies, or lighter logs for HTTP proxies. 13327 - fixed a time-out condition wrongly reported as client time-out in data 13328 phase if the client timeout was lower than the connect timeout times the 13329 number of retries. 13330 133312003/09/21 : 1.1.24 13332 - if a client sent a full request then shut its write connection down, then 13333 the request was aborted. This case was detected only when using haproxy 13334 both as health-check client and as a server. 13335 - if 'option httpchk' is used in a 'health' mode server, then responses will 13336 change from 'OK' to 'HTTP/1.0 200 OK'. 13337 - fixed a Linux-only bug in case of HTTP server health-checks, where a single 13338 server response followed by a close could be ignored, and the server seen 13339 as failed. 13340 133412003/09/19 : 1.1.23 13342 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent 13343 'default' sections to keep previous parameters, and not initialize logs 13344 correctly. 13345 - fixed a second stupid bug introduced in 1.1.22 which caused configurations 13346 relying on 'dispatch' mode to segfault at the first connection. 13347 - 'option httpchk' now supports method, HTTP version and a few headers. 13348 - now, 'option httpchk', 'cookie' and 'capture' can be specified in 13349 'defaults' section 13350 133512003/09/10 : 1.1.22 13352 - 'listen' now supports optionnal address:port-range lists 13353 - 'bind' introduced to add new listen addresses 13354 - fixed a bug which caused a session to be kept established on a server till 13355 it timed out if the client closed during the DATA phase. 13356 - the port part of each server address can now be empty to make the proxy 13357 connect to the server on the same port it was connected to, be an absolute 13358 unsigned number to reflect a single port (as in older versions), or an 13359 explicitly signed number (+N/-N) to indicate that this offset must be 13360 applied to the port the proxy was connected to, when connecting to the 13361 server. 13362 - the 'port' server option allows the user to specify a different 13363 health-check port than the service one. It is mandatory when only relative 13364 ports have been specified and check is required. By default, the checks are 13365 sent to the service port. 13366 - new 'defaults' section which is rather similar to 'listen' except that all 13367 values are only used as default values for future 'listen' sections, until 13368 a new 'defaults' resets them. At the moment, server options, regexes, 13369 cookie names and captures cannot be set in the 'defaults' section. 13370 133712003/05/06 : 1.1.21 13372 - changed the debug output format so that it now includes the session unique 13373 ID followed by the instance name at the beginning of each line. 13374 - in debug mode, accept now shows the client's IP and port. 13375 - added one 3 small debugging scripts to search and pretty print debug output 13376 - changed the default health check request to "OPTIONS /" instead of 13377 "OPTIONS *" since not all servers implement the later one. 13378 - "option httpchk" now accepts an optional parameter allowing the user to 13379 specify and URI other than '/' during health-checks. 13380 133812003/04/21 : 1.1.20 13382 - fixed two problems with time-outs, one where a server would be logged as 13383 timed out during transfer that take longer to complete than the fixed 13384 time-out, and one where clients were logged as timed-out during the data 13385 phase because they didn't have anything to send. This sometimes caused 13386 slow client connections to close too early while in fact there was no 13387 problem. The proper fix would be to have a per-fd time-out with 13388 conditions depending on the state of the HTTP FSM. 13389 133902003/04/16 : 1.1.19 13391 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP 13392 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on 13393 cookie persistence because it uses "cookie:". Two memcmp() have been 13394 replaced with strncasecmp(). 13395 133962003/04/02 : 1.1.18 13397 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting 13398 REGEX=pcre on the make command line. 13399 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /". 13400 - when explicit source address binding is required, it is now also used for 13401 health-checks. 13402 - added 'reqpass' and 'reqipass' to allow certain headers but not the request 13403 itself. 13404 - factored several strings to reduce binary size by about 2 kB. 13405 - replaced setreuid() and setregid() with more standard setuid() and setgid(). 13406 - added 4 status flags to the log line indicating who ended the connection 13407 first, the sessions state, the validity of the cookie, and action taken on 13408 the set-cookie header. 13409 134102002/10/18 : 1.1.17 13411 - add the notion of "backup" servers, which are used only when all other 13412 servers are down. 13413 - make Set-Cookie return "" instead of "(null)" when the server has no 13414 cookie assigned (useful for backup servers). 13415 - "log" now supports an optionnal level name (info, notice, err ...) above 13416 which nothing is sent. 13417 - replaced some strncmp() with memcmp() for better efficiency. 13418 - added "capture cookie" option which logs client and/or server cookies 13419 - cleaned up/down messages and dump servers states upon SIGHUP 13420 - added a redirection feature for errors : "errorloc <errnum> <url>" 13421 - now we won't insist on connecting to a dead server, even with a cookie, 13422 unless option "persist" is specified. 13423 - added HTTP/408 response for client request time-out and HTTP/50[234] for 13424 server reply time-out or errors. 13425 134262002/09/01 : 1.1.16 13427 - implement HTTP health checks when option "httpchk" is specified. 13428 134292002/08/07 : 1.1.15 13430 - replaced setpgid()/setpgrp() with setsid() for better portability, because 13431 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD. 13432 134332002/07/20 : 1.1.14 13434 - added "postonly" cookie mode 13435 134362002/07/15 : 1.1.13 13437 - tv_diff used inverted parameters which led to negative times ! 13438 134392002/07/13 : 1.1.12 13440 - fixed stats monitoring, and optimized some tv_* for most common cases. 13441 - replaced temporary 'newhdr' with 'trash' to reduce stack size 13442 - made HTTP errors more HTML-fiendly. 13443 - renamed strlcpy() to strlcpy2() because of a slightly difference between 13444 their behaviour (return value), to avoid confusion. 13445 - restricted HTTP messages to HTTP proxies only 13446 - added a 502 message when the connection has been refused by the server, 13447 to prevent clients from believing this is a zero-byte HTTP 0.9 reply. 13448 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when 13449 inserting a cookie, because some caches (apache) don't understand it. 13450 - fixed processing of server headers when client is in SHUTR state 13451 134522002/07/04 : 13453 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after 13454 setpgid() 13455 134562002/06/04 : 1.1.11 13457 - fixed multi-cookie handling in client request to allow clean deletion 13458 in insert+indirect mode. Now, only the server cookie is deleted and not 13459 all the header. Should now be compliant to RFC2965. 13460 - added a "nocache" option to "cookie" to specify that we explicitly want 13461 to add a "cache-control" header when we add a cookie. 13462 It is also possible to add an "Expires: <old-date>" to keep compatibility 13463 with old/broken caches. 13464 134652002/05/10 : 1.1.10 13466 - if a cookie is used in insert+indirect mode, it's desirable that the 13467 the servers don't see it. It was not possible to remove it correctly 13468 with regexps, so now it's removed automatically. 13469 134702002/04/19 : 1.1.9 13471 - don't use snprintf()'s return value as an end of message since it may 13472 be larger. This caused bus errors and segfaults in internal libc's 13473 getenv() during localtime() in send_log(). 13474 - removed dead insecure send_syslog() function and all references to it. 13475 - fixed warnings on Solaris due to buggy implementation of isXXXX(). 13476 134772002/04/18 : 1.1.8 13478 - option "dontlognull" 13479 - fixed "double space" bug in config parser 13480 - fixed an uninitialized server field in case of dispatch 13481 with no existing server which could cause a segfault during 13482 logging. 13483 - the pid logged was always the father's, which was wrong for daemons. 13484 - fixed wrong level "LOG_INFO" for message "proxy started". 13485 134862002/04/13 : 13487 - http logging is now complete : 13488 - ip:port, date, proxy, server 13489 - req_time, conn_time, hdr_time, tot_time 13490 - status, size, request 13491 - source address 13492 134932002/04/12 : 1.1.7 13494 - added option forwardfor 13495 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel 13496 - added "log global" in "listen" section. 13497 134982002/04/09 : 13499 - added a new "global" section : 13500 - logs 13501 - debug, quiet, daemon modes 13502 - uid, gid, chroot, nbproc, maxconn 13503 135042002/04/08 : 1.1.6 13505 - regex are now chained and not limited anymore. 13506 - unavailable server now returns HTTP/502. 13507 - increased per-line args limit to 40 13508 - added reqallow/reqdeny to block some request on matches 13509 - added HTTP 400/403 responses 13510 135112002/04/03 : 1.1.5 13512 - connection logging displayed incorrect source address. 13513 - added proxy start/stop and server up/down log events. 13514 - replaced log message short buffers with larger trash. 13515 - enlarged buffer to 8 kB and replace buffer to 4 kB. 13516 135172002/03/25 : 1.1.4 13518 - made rise/fall/interval time configurable 13519 135202002/03/22 : 1.1.3 13521 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR] 13522 which could lead to loops. 13523 135242002/03/21 : 1.1.2 13525 - fixed a bug in buffer management where we could have a loop 13526 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE. 13527 => implemented an adjustable buffer limit. 13528 - fixed a bug : expiration of tasks in wait queue timeout is used again, 13529 and running tasks are skipped. 13530 - added some debug lines for accept events. 13531 - send warnings for servers up/down. 13532 135332002/03/12 : 1.1.1 13534 - fixed a bug in total failure handling 13535 - fixed a bug in timestamp comparison within same second (tv_cmp_ms) 13536 135372002/03/10 : 1.1.0 13538 - fixed a few timeout bugs 13539 - rearranged the task scheduler subsystem to improve performance, 13540 add new tasks, and make it easier to later port to librt ; 13541 - allow multiple accept() for one select() wake up ; 13542 - implemented internal load balancing with basic health-check ; 13543 - cookie insertion and header add/replace/delete, with better strings 13544 support. 13545 135462002/03/08 13547 - reworked buffer handling to fix a few rewrite bugs, and 13548 improve overall performance. 13549 - implement the "purge" option to delete server cookies in direct mode. 13550 135512002/03/07 13552 - fixed some error cases where the maxfd was not decreased. 13553 135542002/02/26 13555 - now supports transparent proxying, at least on linux 2.4. 13556 135572002/02/12 13558 - soft stop works again (fixed select timeout computation). 13559 - it seems that TCP proxies sometimes cannot timeout. 13560 - added a "quiet" mode. 13561 - enforce file descriptor limitation on socket() and accept(). 13562 135632001/12/30 : release of version 1.0.2 : fixed a bug in header processing 135642001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris 135652001/12/16 : release of version 1.0.0. 135662001/12/16 : added syslog capability for each accepted connection. 135672001/11/19 : corrected premature end of files and occasional SIGPIPE. 135682001/10/31 : added health-check type servers (mode health) which replies OK then closes. 135692001/10/30 : added the ability to support standard TCP proxies and HTTP proxies 13570 with or without cookies (use keyword http for this). 135712001/09/01 : added client/server header replacing with regexps. 13572 eg: 13573 cliexp ^(Host:\ [^:]*).* Host:\ \1:80 13574 srvexp ^Server:\ .* Server:\ Apache 135752000/11/29 : first fully working release with complete FSMs and timeouts. 135762000/11/28 : major rewrite 135772000/11/26 : first write 13578