1ChangeLog : 2=========== 3 42021/11/24 : 2.3.16 5 - BUG/MEDIUM: mux-h1: Fix H1C_F_ST_SILENT_SHUT value 6 - BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3 7 - DOC: config: Fix typo in ssl_fc_unique_id description 8 - BUG/MINOR: http-ana: Apply stop to the current section for http-response rules 9 - Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back" 10 - DOC: lua: Be explicit with the Reply object limits 11 - BUG/MEDIUM: conn-stream: Don't reset CS flags on close 12 - BUG/MINOR: mworker: doesn't launch the program postparser 13 - BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value 14 - BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent 15 - BUG/MINOR: stick-table/cli: Check for invalid ipv6 key 16 - MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close 17 - MINOR: mux-h2: perform a full cycle shutdown+drain on close 18 - BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found 19 - BUG/MEDIUM: mux-h2: always process a pending shut read 20 - BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found 21 - BUG/MINOR: shctx: do not look for available blocks when the first one is enough 22 - MINOR: shctx: add a few BUG_ON() for consistency checks 23 242021/11/04 : 2.3.15 25 - MINOR: lua: Add a flag on lua context to know the yield capability at run time 26 - BUG/MINOR: lua: Yield in channel functions only if lua context can yield 27 - BUG/MINOR: lua: Don't yield in channel.append() and channel.set() 28 - BUG/MINOR: stream: Don't release a stream if FLT_END is still registered 29 - BUG/MEDIUM: http-ana: Reset channels analysers when returning an error 30 - BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set 31 - BUG/MINOR: filters: Set right FLT_END analyser depending on channel 32 - BUG/MINOR: systemd: ExecStartPre must use -Ws 33 - BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached 34 - Revert "REGTESTS: mark http_abortonclose as broken" 35 - BUG/MINOR: compat: make sure __WORDSIZE is always defined 36 - CLEANUP: pools: factor all malloc_trim() calls into trim_all_pools() 37 - MINOR: pools: automatically disable malloc_trim() with external allocators 38 - MINOR: pools: use mallinfo2() when available instead of mallinfo() 39 - BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check 40 - DOC: management: certificate files must be sanitized before injection 41 - BUILD: ist: prevent gcc11 maybe-uninitialized warning on istalloc 42 - BUG/MINOR: cli/payload: do not search for args inside payload 43 - BUG/MINOR: server: allow 'enable health' only if check configured 44 - BUG/MINOR: h1-htx: Fix a typo when request parser is reset 45 - BUG/MINOR: http-ana: increment internal_errors counter on response error 46 - BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer 47 - BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data 48 - BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM 49 - BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers" 50 - DOC: peers: fix doc "enable" statement on "peers" sections 51 - BUG/MEDIUM: lua: fix wakeup condition from sleep() 52 - BUG/MAJOR: lua: use task_wakeup() to properly run a task once 53 - MINOR: arg: Be able to forbid unresolved args when building an argument list 54 - BUG/MINOR: tcpcheck: Don't use arg list for default proxies during parsing 55 - BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input 56 - MINOR: tasks: catch TICK_ETERNITY with BUG_ON() in __task_queue() 57 - BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release 58 - BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule 59 - BUG/MEDIUM: leastconn: fix rare possibility of divide by zero 60 - MINOR: htx: Add an HTX flag to know when a message is fragmented 61 - MINOR: htx: Add a function to know if the free space wraps 62 - BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary 63 - BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames 64 - MINOR: initcall: Rename __GLOBL and __GLOBL1. 65 - BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back 66 - BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error 67 - CLEANUP: sample: rename sample_conv_var2smp() to *_sint 68 - CLEANUP: sample: uninline sample_conv_var2smp_str() 69 - MINOR: sample: provide a generic var-to-sample conversion function 70 - BUG/MEDIUM: sample: properly verify that variables cast to sample 71 - BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors 72 - MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero 73 - BUG/MEDIUM: resolver: make sure to always use the correct hostname length 74 - BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records 75 - MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero 76 - BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix 77 - BUG/MEDIUM: resolvers: use correct storage for the target address 78 - MINOR: resolvers: merge address and target into a union "data" 79 - BUG/MAJOR: resolvers: add other missing references during resolution removal 80 - BUILD: resolvers: avoid a possible warning on null-deref 81 - BUG/MEDIUM: resolvers: always check a valid item in query_list 82 - BUG/MAJOR: buf: fix varint API post- vs pre- increment 83 - BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame 84 - BUILD: fix compilation on NetBSD 85 - BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed 86 - BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released 87 - CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records() 88 - CLEANUP: always initialize the answer_list 89 - CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters 90 - CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT 91 - MEDIUM: resolvers: use a kill list to preserve the list consistency 92 - MEDIUM: resolvers: remove the last occurrences of the "safe" argument 93 - BUG/MEDIUM: resolvers: Don't recursively perform requester unlink 94 - BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions 95 - BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration 96 - BUG/MINOR: http: Authorization value can have multiple spaces after the scheme 97 - BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data 98 - BUG/MINOR: vars: improve accuracy of the rules used to check expression validity 99 - MINOR: sample: add missing ARGC_ entries 100 - BUG/MINOR: vars: properly set the argument parsing context in the expression 101 - BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags 102 - BUG/MINOR: sample: fix backend direction flags consecutive to last fix 103 - DOC: config: Fix alphabetical order of fc_* samples 104 - MINOR: halog: Add -qry parameter allowing to preserve the query string in -uX 105 - DOC: halog: Move the `-qry` parameter into the correct section in help text 106 - MINOR: halog: Rename -qry to -query 107 - CLEANUP: halog: Use consistent indentation in help() 108 - BUG/MINOR: halog: Add missing newlines in die() messages 109 - MINOR: halog: Add support for extracting captures using -hdr 110 - MINOR: stream: Improve dump of bogus streams 111 - DOC/peers: some grammar fixes for peers 2.1 spec 112 - SCRIPTS: git-show-backports: re-enable file-based filtering 113 1142021/09/07 : 2.3.14 115 - BUG/MEDIUM: h2: match absolute-path not path-absolute for :path 116 - BUG/MEDIUM: sock: really fix detection of early connection failures in for 2.3- 117 - REGTESTS: abortonclose: after retries, 503 is expected, not close 118 - BUG/MINOR: stick-table: fix the sc-set-gpt* parser when using expressions 119 - BUG/MEDIUM: base64: check output boundaries within base64{dec,urldec} 120 - MINOR: compiler: implement an ONLY_ONCE() macro 121 - BUG/MINOR: lua: use strlcpy2() not strncpy() to copy sample keywords 122 - BUG/MINOR: ebtree: remove dependency on incorrect macro for bits per long 123 - BUG/MINOR threads: Use get_(local|gm)time instead of (local|gm)time 124 - BUG/MINOR: tools: Fix loop condition in dump_text() 125 - CLEANUP: Add missing include guard to signal.h 126 - BUG/MINOR: vars: fix set-var/unset-var exclusivity in the keyword parser 127 - DOC: configuration: remove wrong tcp-request examples in tcp-response 128 - BUG/MINOR: config: reject configs using HTTP with bufsize >= 256 MB 129 - CLEANUP: htx: remove comments about "must be < 256 MB" 130 - BUG/MAJOR: htx: fix missing header name length check in htx_add_header/trailer 131 - Revert "BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive" 132 - MINOR: action: Use a generic function to check validity of an action rule list 133 - REGTESTS: mark http_abortonclose as broken 134 1352021/08/17 : 2.3.13 136 - BUILD: add detection of missing important CFLAGS 137 - BUILD: lua: silence a build warning with TCC 138 - BUG/MEDIUM: mworker: do not register an exit handler if exit is expected 139 - BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs 140 - BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request 141 - BUG/MINOR: check: fix the condition to validate a port-less server 142 - BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree 143 - BUG/MINOR: systemd: must check the configuration using -Ws 144 - BUG/MINOR: mux-h2: Obey dontlognull option during the preface 145 - BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames 146 - BUG/MINOR: connection: Add missing error labels to conn_err_code_str 147 - BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before 148 - BUG/MINOR: select: fix excess number of dead/skip reported 149 - BUG/MINOR: poll: fix abnormally high skip_fd counter 150 - BUG/MINOR: pollers: always program an update for migrated FDs 151 - BUG/MINOR: server: update last_change on maint->ready transitions too 152 - MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure 153 - BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released 154 - BUG/MINOR: buffer: fix buffer_dump() formatting 155 - BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer 156 - DOC: Improve the lua documentation 157 - DOC: config: Fix 'http-response send-spoe-group' documentation 158 - BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued 159 - BUG/MEDIUM: cfgcheck: verify existing log-forward listeners during config check 160 - DOC/MINOR: fix typo in management document 161 - MINOR: http: add a new function http_validate_scheme() to validate a scheme 162 - BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax 163 - BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it 164 - BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header 165 - BUG/MEDIUM: h2: give :authority precedence over Host 166 - REGTESTS: add a test to prevent h2 desync attacks 167 1682021/07/08 : 2.3.12 169 - BUG/MAJOR: pools: fix incomplete backport of lockless pool fix 170 - BUG/MAJOR: pools: second fix for incomplete backport of lockless pool fix 171 1722021/07/07 : 2.3.11 173 - BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application 174 - BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message 175 - BUG/MINOR: applet: Notify the other side if data were consumed by an applet 176 - BUG/MEDIUM: peers: initialize resync timer to get an initial full resync 177 - BUG/MEDIUM: peers: register last acked value as origin receiving a resync req 178 - BUG/MEDIUM: peers: stop considering ack messages teaching a full resync 179 - BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected 180 - BUG/MEDIUM: peers: reset commitupdate value in new conns 181 - BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly 182 - BUG/MEDIUM: peers: reset tables stage flags stages on new conns 183 - MINOR: peers: add informative flags about resync process for debugging 184 - REGTESTS: add minimal CLI "add map" tests 185 - BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers 186 - BUG/MEDIUM: cli: prevent memory leak on write errors 187 - BUG/MINOR: ssl/cli: fix a lock leak when no memory available 188 - MINOR: compat: automatically include malloc.h on glibc 189 - MEDIUM: pools: call malloc_trim() from pool_gc() 190 - MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS 191 - MINOR: debug: add a new "debug dev sym" command in expert mode 192 - BUG/MEDIUM: dns: reset file descriptor if send returns an error 193 - BUG/MINOR: stream: Decrement server current session counter on L7 retry 194 - BUG/MINOR: stream: properly clear the previous error mask on L7 retries 195 - BUG/MINOR: stream: Reset stream final state and si error type on L7 retry 196 - BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started 197 - BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set 198 - BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port 199 - MINOR: channel: Rely on HTX version if appropriate in channel_may_recv() 200 - BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive 201 - MINOR: conn-stream: Force mux to wait for read events if abortonclose is set 202 - MEDIUM: mux-h1: Don't block reads when waiting for the other side 203 - BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set 204 - REGTESTS: Add script to test abortonclose option 205 - BUG/MEDIUM: ebtree: Invalid read when looking for dup entry 206 - BUG/MAJOR: server: prevent deadlock when using 'set maxconn server' 207 - BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter 208 - BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response 209 - BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts 210 - BUG/MINOR: server: Missing calloc return value check in srv_parse_source 211 - BUG/MINOR: peers: Missing calloc return value check in peers_register_table 212 - BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine 213 - BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture 214 - BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare 215 - BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy 216 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response 217 - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule 218 - BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo 219 - BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list 220 - BUG/MINOR: http: Missing calloc return value check while parsing redirect rule 221 - BUG/MINOR: http: Missing calloc return value check in make_arg_list 222 - BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree 223 - BUG/MINOR: lua/vars: prevent get_var() from allocating a new name 224 - DOC/MINOR: move uuid in the configuration to the right alphabetical order 225 - BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry 226 - DOC: use the req.ssl_sni in examples 227 - BUILD: make tune.ssl.keylog available again 228 - BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future 229 - BUG/MEDIUM: compression: Add a flag to know the filter is still processing data 230 - BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush() 231 - MINOR: pools: do not maintain the lock during pool_flush() 232 - MINOR: pools: call malloc_trim() under thread isolation 233 - MEDIUM: pools: use a single pool_gc() function for locked and lockless 234 - BUG/MAJOR: pools: fix possible race with free() in the lockless variant 235 - CLEANUP: pools: remove now unused seq and pool_free_list 236 - BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded 237 - BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default 238 - DOC: lua: Add a warning about buffers modification in HTTP 239 - BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id 240 - BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE 241 - BUG/MINOR: ssl: use atomic ops to update global shctx stats 242 - BUG/MINOR: mworker: fix typo in chroot error message 243 - BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue 244 - MINOR: backend: only skip LB when there are actual connections 245 - BUG/MINOR: stats: make "show stat typed desc" work again 246 - MINOR: mux-h2: obey http-ignore-probes during the preface 247 - BUG/MEDIUM: dns: send messages on closed/reused fd if fd was detected broken 248 - BUILD: cfgparse-ssl: Remove const from defpx param in keylog parsing function 249 - BUG/MINOR: resolvers: answser item list was randomly purged or errors 250 - MEDIUM: resolvers: add a ref on server to the used A/AAAA answer item 251 - MEDIUM: resolvers: add a ref between servers and srv request or used SRV record 252 - BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs 253 - BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI 254 - BUG/MINOR: server/cli: Fix locking in function processing "set server" command 255 - BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check 256 - REGTESTS: fix maxconn update with agent-check 257 - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules 258 - DOC: config: Add missing actions in "tcp-request session" documentation 259 - BUG/MINOR: checks: return correct error code for srv_parse_agent_check 260 - BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules 261 - BUG/MEDIUM: sock: make sure to never miss early connection failures 262 - BUG/MINOR: cli: fix server name output in "show fd" 263 - BUG/MINOR: stick-table: fix several printf sign errors dumping tables 264 - DOC: stick-table: add missing documentation about gpt0 stored type 265 - DOC: peers: fix the protocol tag name in the doc 266 - DOC: config: use CREATE USER for mysql-check 267 - BUG/MINOR: server-state: load SRV resolution only if params match the config 268 - BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled 269 - MINOR: resolvers: Clean server in a dedicated function when removing a SRV item 270 - MINOR: resolvers: Remove server from named_servers tree when removing a SRV item 271 - BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status 272 - BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task() 273 - BUG/MINOR: resolvers: Always attach server on matching record on resolution 274 - BUG/MINOR: resolvers: Reset server IP when no ip is found in the response 275 - MINOR: resolvers: Reset server IP on error in resolv_get_ip_from_response() 276 - BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution 277 - BUG/MINOR: peers: fix data_type bit computation more than 32 data_types 278 - Revert "MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules" 279 2802021/04/23 : 2.3.10 281 - BUILD: backend: fix build breakage in idle conn locking fix 282 - BUG/MINOR: tcp: fix silent-drop workaround for IPv6 283 - BUILD: tcp: use IPPROTO_IPV6 instead of SOL_IPV6 on FreeBSD/MacOS 284 - BUG/MINOR: ssl: Fix update of default certificate 285 - BUG/MINOR: ssl: Prevent removal of crt-list line if the instance is a default one 286 - BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields 287 - BUG/MINOR: ssl: Add missing free on SSL_CTX in ckch_inst_free 288 - REGTESTS: ssl: "set ssl cert" and multi-certificates bundle 289 - DOC: Explicitly state only IPv4 are supported by forwardfor/originalto options 290 - REGTESTS: ssl: mark set_ssl_cert_bundle.vtc as broken 291 - CONTRIB: halog: fix issue with array of type char 292 - BUG/MINOR: tools: fix parsing "us" unit for timers 293 - DOC: clarify that compression works for HTTP/2 294 - MINOR: No longer rely on deprecated sample fetches for predefined ACLs 295 - BUG/MEDIUM: sample: Fix adjusting size in field converter 296 - DOC: ssl: Certificate hot update only works on fronted certificates 297 - BUG/MEDIUM: threads: Ignore current thread to end its harmless period 298 - BUG/MINOR: checks: Set missing id to the dummy checks frontend 299 - MINOR: logs: Add support of checks as session origin to format lf strings 300 - BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections 301 - MINOR: connection: Make bc_http_major compatible with tcp-checks 302 - BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check 303 - BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded 304 - BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function 305 - BUG/MINOR: logs: Report the true number of retries if there was no connection 306 - BUG/MINOR: mux-h1: Release idle server H1 connection if data are received 307 - BUG/MINOR: server: free srv.lb_nodes in free_server 308 - BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers 309 - BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames 310 - BUG/MEDIUM: config: fix cpu-map notation with both process and threads 311 - BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases 312 - BUG/MINOR: mworker: don't use oldpids[] anymore for reload 313 - BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data 314 - BUG/MINOR: peers: remove useless table check if initial resync is finished 315 - BUG/MEDIUM: peers: re-work connection to new process during reload. 316 - BUG/MEDIUM: peers: re-work refcnt on table to protect against flush 317 3182021/03/30 : 2.3.9 319 - BUG/MEDIUM: mux-h1: make h1_shutw_conn() idempotent 320 - MEDIUM: backend: use a trylock to grab a connection on high FD counts as well 321 - BUG/MINOR: payload: Wait for more data if buffer is empty in payload/payload_lv 322 - BUG/MINOR: stats: Apply proper styles in HTML status page. 323 - BUG/MEDIUM: time: make sure to always initialize the global tick 324 3252021/03/25 : 2.3.8 326 - MINOR: time: export the global_now variable 327 - BUG/MINOR: freq_ctr/threads: make use of the last updated global time 328 - BUG/MEDIUM: mux-fcgi: Fix locking of idle_conns lock in the FCGI I/O callback 329 - MINOR: time: also provide a global, monotonic global_now_ms timer 330 - BUG/MEDIUM: freq_ctr/threads: use the global_now_ms variable 331 - BUG/MINOR: protocol: add missing support of dgram unix socket. 332 - MINOR/BUG: mworker/cli: do not use the unix_bind prefix for the master CLI socket 333 - MEDIUM: lua: Use a per-thread counter to track some non-reentrant parts of lua 334 - BUG/MEDIUM: debug/lua: Don't dump the lua stack if not dumpable 335 - BUG/MINOR: ssl: Prevent disk access when using "add ssl crt-list" 336 - BUILD: ssl: guard ecdh functions with SSL_CTX_set_tmp_ecdh macro 337 - MINOR: lua: Slightly improve function dumping the lua traceback 338 - BUG/MEDIUM: debug/lua: Use internal hlua function to dump the lua traceback 339 - BUG/MEDIUM: lua: Always init the lua stack before referencing the context 340 - MINOR: fd: make fd_clr_running() return the remaining running mask 341 - MINOR: fd: remove the unneeded running bit from fd_insert() 342 - BUG/MEDIUM: fd: do not wait on FD removal in fd_delete() 343 - CLEANUP: fd: remove unused fd_set_running_excl() 344 - BUG/MEDIUM: fd: Take the fd_mig_lock when closing if no DWCAS is available. 345 - BUG/MEDIUM: thread: Fix a deadlock if an isolated thread is marked as harmless 346 - MINOR: tools: make url2ipv4 return the exact number of bytes parsed 347 - BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters 348 3492021/03/16 : 2.3.7 350 - BUG/MINOR: backend: fix condition for reuse on mode HTTP 351 - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring() 352 - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode 353 - REORG: atomic: reimplement pl_cpu_relax() from atomic-ops.h 354 - BUG/MINOR: mt-list: always perform a cpu_relax call on failure 355 - MINOR: atomic: add armv8.1-a atomics variant for cas-dw 356 - MINOR: atomic: implement a more efficient arm64 __ha_cas_dw() using pairs 357 - BUG/MEDIUM: session: NULL dereference possible when accessing the listener 358 - MINOR: tasks: refine the default run queue depth 359 - MINOR: listener: refine the default MAX_ACCEPT from 64 to 4 360 - OPTIM: server: switch the actconn list to an mt-list 361 - MINOR: server: move actconns to the per-thread structure 362 - MINOR: lb/api: let callers of take_conn/drop_conn tell if they have the lock 363 - OPTIM: lb-first: do not take the server lock on take_conn/drop_conn 364 - OPTIM: lb-leastconn: do not take the server lock on take_conn/drop_conn 365 - OPTIM: lb-leastconn: do not unlink the server if it did not change 366 - MINOR: dynbuf: make the buffer wait queue per thread 367 - MINOR: dynbuf: use regular lists instead of mt_lists for buffer_wait 368 - MINOR: dynbuf: pass offer_buffers() the number of buffers instead of a threshold 369 - MINOR: stream: add an "epoch" to figure which streams appeared when 370 - MINOR: cli/streams: make "show sess" dump all streams till the new epoch 371 - MINOR: streams: use one list per stream instead of a global one 372 - MEDIUM: streams: do not use the streams lock anymore 373 - MEDIUM: pools: add CONFIG_HAP_NO_GLOBAL_POOLS and CONFIG_HAP_GLOBAL_POOLS 374 - MINOR: pools: double the local pool cache size to 1 MB 375 - MEDIUM: backend: use a trylock when trying to grab an idle connection 376 - MINOR: task: limit the number of subsequent heavy tasks with flag TASK_HEAVY 377 - MINOR: ssl: mark the SSL handshake tasklet as heavy 378 - BUG/MEDIUM: ssl: properly remove the TASK_HEAVY flag at end of handshake 379 - MINOR: task: add an application specific flag to the state: TASK_F_USR1 380 - MEDIUM: muxes: mark idle conns tasklets with TASK_F_USR1 381 - MINOR: xprt: add new xprt_set_idle and xprt_set_used methods 382 - MEDIUM: ssl: implement xprt_set_used and xprt_set_idle to relax context checks 383 - MEDIUM: task: remove the tasks_run_queue counter and have one per thread 384 - MINOR: task: give the scheduler a bit more flexibility in the runqueue size 385 - OPTIM: task: automatically adjust the default runqueue-depth to the threads 386 - BUG/MEDIUM: stick-tables: fix ref counter in table entry using multiple http tracksc. 387 - BUILD: atomic/arm64: force the register pairs to use in __ha_cas_dw() 388 - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached 389 - BUG/MINOR: tcpcheck: Update .health threshold of agent inside an agent-check 390 - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters 391 - BUG/MINOR: session: Add some forgotten tests on session's listener 392 - BUG/MINOR: tcpcheck: Fix double free on error path when parsing tcp/http-check 393 - CLEANUP: tcp-rules: add missing actions in the tcp-request error message 394 - Revert "BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record" 395 - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error 396 - BUG/MINOR: resolvers: Reset server address on DNS error only on status change 397 - BUG/MINOR: resolvers: Unlink DNS resolution to set RMAINT on SRV resolution 398 - BUG/MEDIUM: resolvers: Don't set an address-less server as UP 399 - BUG/MEDIUM: resolvers: Fix the loop looking for an existing ADD item 400 - MINOR: resolvers: new function find_srvrq_answer_record() 401 - BUG/MINOR; resolvers: Ignore DNS resolution for expired SRV item 402 - BUG/MEDIUM: resolvers: Trigger a DNS resolution if an ADD item is obsolete 403 - MINOR: resolvers: Use a function to remove answers attached to a resolution 404 - MINOR: resolvers: Purge answer items when a SRV resolution triggers an error 405 - MINOR: resolvers: Add function to change the srv status based on SRV resolution 406 - MINOR: resolvers: Directly call srvrq_update_srv_state() when possible 407 - BUG/MEDIUM: resolvers: Don't release resolution from a requester callbacks 408 - BUG/MEDIUM: resolvers: Skip DNS resolution at startup if SRV resolution is set 409 - MINOR: resolvers: Use milliseconds for cached items in resolver responses 410 - MINOR: resolvers: Don't try to match immediatly renewed ADD items 411 - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames 412 4132021/03/03 : 2.3.6 414 - MINOR: check: do not ignore a connection header for http-check send 415 - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro 416 - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro 417 - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro 418 - BUG/MINOR: intops: fix mul32hi()'s off-by-one 419 - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors 420 - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state 421 - BUG/MINOR: server: re-align state file fields number 422 - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints() 423 - BUG/MINOR: backend: hold correctly lock when killing idle conn 424 - BUG/MINOR: server: Fix server-state-file-name directive 425 - CLEANUP: deinit: release global and per-proxy server-state variables on deinit 426 - BUG/MEDIUM: config: don't pick unset values from last defaults section 427 - BUG/MINOR: stats: revert the change on ST_CONVDONE 428 - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines 429 - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL 430 - DOC: tune: explain the origin of block size for ssl.cachesize 431 - CLEANUP: channel: fix comment in ci_putblk. 432 - BUG/MINOR: server: Remove RMAINT from admin state when loading server state 433 - BUG/MINOR: session: atomically increment the tracked sessions counter 434 - BUG/MINOR: checks: properly handle wrapping time in __health_adjust() 435 - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust() 436 - BUG/MINOR: sample: Always consider zero size string samples as unsafe 437 - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions 438 - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared 439 - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ(). 440 - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer 441 - BUG/MINOR: http-rules: Always replace the response status on a return action 442 - BUG/MINOR: server: Init params before parsing a new server-state line 443 - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line 444 - BUG/MEDIUM: mux-h1: Fix handling of responses to CONNECT other than 200-ok 445 - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert" 446 - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes 447 - BUG/MINOR: sample: secure convs that accept base64 string and var name as args 448 - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe 449 - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop 450 - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe 451 - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal 452 - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl() 453 - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned 454 - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record 455 - BUG/MINOR: resolvers: new callback to properly handle SRV record errors 456 - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records 457 - BUG/MEDIUM: resolvers: Reset address for unresolved servers 458 - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup() 459 - CLEANUP: muxes: Remove useless if condition in show_fd function 460 - BUG/MINOR: stats: fix compare of no-maint url suffix 461 - BUG/MINOR: mux-h1: Immediately report H1C errors from h1_snd_buf() 462 - BUG/MINOR: http-ana: Only consider dst address to process originalto option 463 - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule 464 - BUG/MINOR: connection: Use the client's dst family for adressless servers 465 - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1 466 - DOC: spoe: Add a note about fragmentation support in HAProxy 467 - BUG/MINOR: mux-h2: Fix typo in scheme adjustment 468 - BUG/MINOR: http-ana: Don't increment HTTP error counter on read error/timeout 469 4702021/02/06 : 2.3.5 471 - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable 472 - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities 473 - MINOR: server: Forbid server definitions in frontend sections 474 - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac. 475 - MINOR: peers: Add traces for peer control messages. 476 - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2) 477 - BUILD: peers: fix build warning about unused variable 478 - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition 479 - BUG/MINOR: peers: Possible appctx pointer dereference. 480 - MINOR: build: discard echoing in help target 481 - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command. 482 - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper 483 - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal() 484 - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context 485 - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames 486 - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX 487 - DOC: Improve documentation of the various hdr() fetches 488 - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown 489 - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name 490 - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file() 491 - BUG/MEDIUM: session: only retrieve ready idle conn from session 492 - REORG: backend: simplify conn_backend_get 493 - BUG/MEDIUM: backend: never reuse a connection for tcp mode 494 - BUG/MINOR: backend: check available list allocation for reuse 495 - MINOR: contrib: Make the wireshark peers dissector compile for more distribs. 496 - CLEANUP: tools: make resolve_sym_name() take a const pointer 497 - CLEANUP: cli: make "show fd" use a const connection to access other fields 498 - MINOR: cli: make "show fd" also report the xprt and xprt_ctx 499 - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps. 500 - MINOR: ssl: provide a "show fd" helper to report important SSL information 501 - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them 502 - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known 503 - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known 504 - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known 505 - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry 506 - MINOR: cli/show_fd: report some easily detectable suspicious states 507 - MINOR: ssl/show_fd: report some FDs as suspicious when possible 508 - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls 509 - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls 510 - MINOR: h1: Raise the chunk size limit up to (2^52 - 1) 511 - DOC: management: fix "show resolvers" alphabetical ordering 512 - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list 513 - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store 514 - BUG/MEDIUM: ssl: check a connection's status before computing a handshake 515 - BUG/MINOR: mux_h2: fix incorrect stat titles 516 - BUG/MINOR: xxhash: make sure armv6 uses memcpy() 517 - BUG/MINOR: ssl: do not try to use early data if not configured 518 - BUILD: ssl: fix build breakage with last commit 519 - MINOR: cli/show_fd: report local and report ports when known 520 - BUILD: Makefile: move REGTESTST_TYPE default setting 521 - BUG/MEDIUM: mux-h2: handle remaining read0 cases 522 - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED 523 - BUG/MINOR: sock: Unclosed fd in case of connection allocation failure 524 - MINOR: config: Deprecate and ignore tune.chksize global option 525 5262021/01/13 : 2.3.4 527 - MINOR: reg-tests: add a way to add service dependency 528 - BUG/MINOR: sample: check alloc_trash_chunk return value in concat() 529 - BUG/MINOR: reg-tests: fix service dependency script 530 - MINOR: reg-tests: add base prometheus test 531 - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records" 532 - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error 533 - BUG/MINOR: check: Don't perform any check on servers defined in a frontend 534 - BUG/MINOR: init: enforce strict-limits when using master-worker 535 - MINOR: contrib/prometheus-exporter: avoid connection close header 536 - MINOR: contrib/prometheus-exporter: use fill_info for process dump 537 5382021/01/08 : 2.3.3 539 - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction 540 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list. 541 - MINOR: task: remove __tasklet_remove_from_tasklet_list() 542 - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link 543 - BUG/MEDIUM: local log format regression. 544 - BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate 545 - BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors 546 - BUG/MINOR: lua: missing "\n" in error message 547 - BUG/MINOR: lua: lua-load doesn't check its parameters 548 - BUG/MINOR: lua: Post init register function are not executed beyond the first one 549 - BUG/MINOR: lua: Some lua init operation are processed unsafe 550 - MINOR: actions: Export actions lookup functions 551 - MINOR: actions: add a function returning a service pointer from its name 552 - MINOR: cli: add a function to look up a CLI service description 553 - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times 554 - BUG/MAJOR: ring: tcp forward on ring can break the reader counter. 555 - BUILD/MINOR: haproxy DragonFlyBSD affinity build update. 556 - DOC/MINOR: Fix formatting in Management Guide 557 - BUG/MINOR: listener: use sockaddr_in6 for IPv6 558 - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections 559 - MINOR: protocol: add a ->set_port() helper to address families 560 - MINOR: listener: automatically set the port when creating listeners 561 - MINOR: listener: now use a generic add_listener() function 562 - MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1 563 - BUG/MAJOR: spoa/python: Fixing return None 564 - DOC: spoa/python: Fixing typo in IP related error messages 565 - DOC: spoa/python: Rephrasing memory related error messages 566 - DOC: spoa/python: Fixing typos in comments 567 - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations 568 - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails 569 - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments 570 - BUG/MEDIUM: spoa/python: Fixing references to None 571 - DOC: email change of the DeviceAtlas maintainer 572 - BUG/MINOR: http-check: Use right condition to consider HTX message as full 573 - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read 574 - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules 575 - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity 576 - BUG/MINOR: tools: Reject size format not starting by a digit 577 - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight 578 - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert" 579 - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default 580 - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call 581 - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well 582 - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests 583 - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode 584 - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request 585 - CONTRIB: halog: fix build issue caused by %L printf format 586 - CONTRIB: halog: mark the has_zero* functions unused 587 - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps 588 - CONTRIB: debug: address "poll" utility build on non-linux platforms 589 - BUILD: plock: remove dead code that causes a warning in gcc 11 590 - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call 591 - BUG/MINOR: dns: SRV records ignores duplicated AR records 592 - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments 593 - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup 594 - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h 595 - MINOR: atomic: don't use ; to separate instruction on aarch64. 596 - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails 597 - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails 598 - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule 599 - DOC: Improve the message printed when running `make` w/o `TARGET` 600 - BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local 601 - SCRIPTS: improve announce-release to support different tag and versions 602 - SCRIPTS: make announce release support preparing announces before tag exists 603 - BUG/MINOR: srv: do not init address if backend is disabled 604 - BUG/MINOR: srv: do not cleanup idle conns if pool max is null 605 - MINOR: converter: adding support for url_enc 606 - BUILD: Makefile: exclude broken tests by default 607 - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error 608 - MINOR: contrib/prometheus-exporter: export build_info 609 - DOC: fix some spelling issues over multiple files 610 - SCRIPTS: announce-release: fix typo in help message 611 - DOC: Add maintainers for the Prometheus exporter 612 - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables 613 6142020/11/28 : 2.3.2 615 - BUILD: http-htx: fix build warning regarding long type in printf 616 - CLEANUP: cfgparse: remove duplicate registration for transparent build options 617 - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering 618 - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests 619 - DOC: add missing 3.10 in the summary 620 - BUG/MINOR: ssl: segv on startup when AKID but no keyid 621 - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages 622 - BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list 623 - BUG/MEDIUM: ssl: error when no certificate are found 624 - BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated 625 - BUG/MEDIUM: ssl/crt-list: fix error when no file found 626 - BUILD: makefile: enable crypt(3) for OpenBSD 627 - DOC: clarify how to create a fallback crt 628 - CLEANUP: connection: do not use conn->owner when the session is known 629 - BUG/MAJOR: connection: reset conn->owner when detaching from session list 630 - BUG/MINOR: http_htx: Fix searching headers by substring 631 - DOC: better describes how to configure a fallback crt 632 - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering 633 - MEDIUM: cache: Change caching conditions 634 - DOC: cache: Add new caching limitation information 635 - REGTESTS: Add sample_fetches/cook.vtc 636 - REGTESTS: converter: add url_dec test 637 - MINOR: http_act: Add -m flag for del-header name matching method 638 - BUILD: Make DEBUG part of .build_opts 639 - BUILD: Show the value of DEBUG= in haproxy -vv 640 - BUG/MEDIUM: http_act: Restore init of log-format list 641 - BUG/MAJOR: peers: fix partial message decoding 642 - DOC: better document the config file format and escaping/quoting rules 643 - DOC: Clarify %HP description in log-format 644 - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check 645 - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main 646 - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool 647 - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section 648 - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check 649 6502020/11/13 : 2.3.1 651 - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher 652 - MINOR: http-htx: Add understandable errors for the errorfiles parsing 653 - DOC: config: Fix a typo on ssl_c_chain_der 654 - BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded 655 - BUG/MINOR: pattern: a sample marked as const could be written 656 - BUG/MINOR: lua: set buffer size during map lookups 657 - BUG/MINOR: stats: free dynamically stats fields/lines on shutdown 658 - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries. 659 - BUG/MINOR: peers: Missing TX cache entries reset. 660 - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages 661 - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name 662 - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches 663 - BUG/MEDIUM: check: reuse srv proto only if using same mode 664 - MINOR: check: report error on incompatible proto 665 - MINOR: check: report error on incompatible connect proto 666 - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors 667 - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet 668 - MINOR: spoe: Don't close connection in sync mode on processing timeout 669 - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after 670 - MINOR: init: Fix the prototype for per-thread free callbacks 671 - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status 672 - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error. 673 - REGTEST: ssl: test wildcard and multi-type + exclusions 674 - REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken 675 - MINOR: peers: Add traces to peer_treat_updatemsg(). 676 - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2 677 6782020/11/05 : 2.3.0 679 - CLEANUP: pattern: remove unused entry "tree" in pattern.val 680 - BUILD: ssl: use SSL_CTRL_GET_RAW_CIPHERLIST instead of OpenSSL versions 681 - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies 682 - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies 683 - BUG/MINOR: checks: Report a socket error before any connection attempt 684 - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup 685 - MINOR: server: Copy configuration file and line for server templates 686 - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade 687 - BUILD: ssl: use HAVE_OPENSSL_KEYLOG instead of OpenSSL versions 688 - MINOR: debug: don't count free(NULL) in memstats 689 - BUG/MINOR: filters: Skip disabled proxies during startup only 690 - MINOR: mux_h2: capitalize frame type in stats 691 - MINOR: mux_h2: add stat for total count of connections/streams 692 - MINOR: stats: do not display empty stat module title on html 693 - BUG/MEDIUM: stick-table: limit the time spent purging old entries 694 - BUG/MEDIUM: listener: only enable a listening listener if needed 695 - BUG/MEDIUM: listener: never suspend inherited sockets 696 - BUG/MEDIUM: listener: make the master also keep workers' inherited FDs 697 - MINOR: fd: add fd_want_recv_safe() 698 - MEDIUM: listeners: make use of fd_want_recv_safe() to enable early receivers 699 - REGTESTS: mark abns_socket as working now 700 - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream 701 - MINOR: sock: add a check against cross worker<->master socket activities 702 - CI: github actions: limit OpenSSL no-deprecated builds to "default,bug,devel" reg-tests 703 - BUG/MEDIUM: server: make it possible to kill last idle connections 704 - MINOR: mworker/cli: the master CLI use its own applet 705 - MINOR: ssl: define SSL_CTX_set1_curves_list to itself on BoringSSL 706 - BUILD: ssl: use feature macros for detecting ec curves manipulation support 707 - DOC: Add dns as an available domain to show stat 708 - BUILD: makefile: usual reorder of objects for faster builds 709 - DOC: update INSTALL to mention that TCC is supported 710 - DOC: mention in INSTALL that haproxy 2.3 is a stable version 711 - MINOR: version: mention that it's stable now 712 7132020/10/31 : 2.3-dev9 714 - CLEANUP: http_ana: remove unused assignation of `att_beg` 715 - BUG/MEDIUM: ssl: OCSP must work with BoringSSL 716 - BUG/MINOR: log: fix memory leak on logsrv parse error 717 - BUG/MINOR: log: fix risk of null deref on error path 718 - BUILD: ssl: more elegant OpenSSL early data support check 719 - CI: github actions: update h2spec to 2.6.0 720 - BUG/MINOR: cache: Check the return value of http_replace_res_status 721 - MINOR: cache: Store the "Last-Modified" date in the cache_entry 722 - MINOR: cache: Process the If-Modified-Since header in conditional requests 723 - MINOR: cache: Create res.cache_hit and res.cache_name sample fetches 724 - MINOR: mux-h2: register a stats module 725 - MINOR: mux-h2: add counters instance to h2c 726 - MINOR: mux-h2: add stats for received frame types 727 - MINOR: mux-h2: report detected error on stats 728 - MINOR: mux-h2: count open connections/streams on stats 729 - BUG/MINOR: server: fix srv downtime calcul on starting 730 - BUG/MINOR: server: fix down_time report for stats 731 - BUG/MINOR: lua: initialize sample before using it 732 - MINOR: cache: Add Expires header value parsing 733 - MINOR: ist: Add a case insensitive istmatch function 734 - BUG/MINOR: cache: Manage multiple values in cache-control header value 735 - BUG/MINOR: cache: Inverted variables in http_calc_maxage function 736 - MINOR: pattern: make pat_ref_append() return the newly added element 737 - MINOR: pattern: make pat_ref_add() rely on pat_ref_append() 738 - MINOR: pattern: export pat_ref_push() 739 - CLEANUP: pattern: use calloc() rather than malloc for structures 740 - CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments 741 7422020/10/24 : 2.3-dev8 743 - MINOR: backend: replace the lbprm lock with an rwlock 744 - MINOR: lb/map: use seek lock and read locks where appropriate 745 - MINOR: lb/leastconn: only take a read lock in fwlc_get_next_server() 746 - MINOR: lb/first: use a read lock in fas_get_next_server() 747 - MINOR: lb/chash: use a read lock in chash_get_server_hash() 748 - BUG/MINOR: disable dynamic OCSP load with BoringSSL 749 - BUILD: ssl: make BoringSSL use its own version numbers 750 - CLEANUP: threads: don't register an initcall when not debugging 751 - MINOR: threads: change lock_t to an unsigned int 752 - CLEANUP: tree-wide: reorder a few structures to plug some holes around locks 753 - CLEANUP: task: remove the unused and mishandled global_rqueue_size 754 - BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns 755 - MEDIUM: config: report that "nbproc" is deprecated 756 - BUG/MINOR: listener: close before free in `listener_accept` 757 - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension 758 - BUG/MINOR: queue: properly report redistributed connections 759 - CONTRIB: tcploop: remove unused local variables in tcp_pause() 760 - BUILD: makefile: add entries to build common debugging tools 761 - BUG/MEDIUM: server: support changing the slowstart value from state-file 762 - MINOR: http: Add `enum etag_type http_get_etag_type(const struct ist)` 763 - MINOR: http: Add etag comparison function 764 - MEDIUM: cache: Store the ETag information in the cache_entry 765 - MEDIUM: cache: Add support for 'If-None-Match' request header 766 - REGTEST: cache: Add if-none-match test case 767 - CLEANUP: compression: Make use of http_get_etag_type() 768 - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests 769 - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible 770 - MINOR: threads/debug: only report used lock stats 771 - MINOR: threads/debug: only report lock stats for used operations 772 - MINOR: proxy; replace the spinlock with an rwlock 773 - MINOR: server: read-lock the cookie during srv_set_dyncookie() 774 - MINOR: proxy/cli: only take a read lock in "show errors" 775 - OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued 776 - MINOR: queue: split __pendconn_unlink() in per-srv and per-prx 777 - MINOR: queue: reduce the locked area in pendconn_add() 778 - OPTIM: queue: make the nbpend counters atomic 779 - OPTIM: queue: decrement the nbpend and totpend counters outside of the lock 780 - MINOR: leastconn: take the queue length into account when queuing servers 781 - MEDIUM: fwlc: re-enable per-server queuing up to maxqueue 782 - Revert "OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued" 783 - MINOR: stats: support the "up" output modifier for "show stat" 784 - MINOR: stats: also support a "no-maint" show stat modifier 785 - MINOR: stats: indicate the number of servers in a backend's status 786 - MEDIUM: ssl: ssl-load-extra-del-ext work only with .crt 787 - REGTEST: ssl: test "set ssl cert" with separate key / crt 788 - DOC: management: apply the "show stat" modifiers to "show stat", not "show info" 789 - MINOR: stats: report server's user-configured weight next to effective weight 790 - CI: travis-ci: switch to Ubuntu 20.04 791 - CONTRIB: release-estimator: Add release estimating tool 792 - BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend 793 - BUG/MINOR: extcheck: add missing checks on extchk_setenv() 794 7952020/10/17 : 2.3-dev7 796 - CI: travis-ci: replace not defined SSL_LIB, SSL_INC for BotringSSL builds 797 - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited 798 - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping 799 - MINOR: fd: report an error message when failing initial allocations 800 - MINOR: proto-tcp: make use of connect(AF_UNSPEC) for the pause 801 - MINOR: sock: add sock_accept_conn() to test a listening socket 802 - MINOR: protocol: make proto_tcp & proto_uxst report listening sockets 803 - MINOR: sockpair: implement the .rx_listening function 804 - CLEANUP: tcp: make use of sock_accept_conn() where relevant 805 - CLEANUP: unix: make use of sock_accept_conn() where relevant 806 - BUG/MINOR: listener: detect and handle shared sockets stopped in other processes 807 - CONTRIB: tcploop: implement a disconnect operation 'D' 808 - CLEANUP: protocol: intitialize all of the sockaddr when disconnecting 809 - BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner 810 - BUG/MINOR: connection: fix loop iter on connection takeover 811 - BUG/MEDIUM: connection: fix srv idle count on conn takeover 812 - MINOR: connection: improve list api usage 813 - MINOR: mux/connection: add a new mux flag for HOL risk 814 - MINOR: connection: don't check priv flag on free 815 - MEDIUM: backend: add new conn to session if mux marked as HOL blocking 816 - MEDIUM: backend: add reused conn to sess if mux marked as HOL blocking 817 - MEDIUM: h2: remove conn from session on detach 818 - MEDIUM: fcgi: remove conn from session on detach 819 - DOC: Describe reuse safe for HOL handling 820 - MEDIUM: proxy: remove obsolete "mode health" 821 - MEDIUM: proxy: remove obsolete "monitor-net" 822 - CLEANUP: protocol: remove the ->drain() function 823 - CLEANUP: fd: finally get rid of fd_done_recv() 824 - MINOR: connection: make sockaddr_alloc() take the address to be copied 825 - MEDIUM: listener: allocate the connection before queuing a new connection 826 - MINOR: session: simplify error path in session_accept_fd() 827 - MINOR: connection: add new error codes for accept_conn() 828 - MINOR: sock: rename sock_accept_conn() to sock_accepting_conn() 829 - MINOR: protocol: add a new function accept_conn() 830 - MINOR: sock: implement sock_accept_conn() to accept a connection 831 - MINOR: sockpair: implement sockpair_accept_conn() to accept a connection 832 - MEDIUM: listener: use protocol->accept_conn() to accept a connection 833 - MEDIUM: listener: remove the second pass of fd manipulation at the end 834 - MINOR: protocol: add a default I/O callback and put it into the receiver 835 - MINOR: log: set the UDP receiver's I/O handler in the receiver 836 - MINOR: protocol: register the receiver's I/O handler and not the protocol's 837 - CLEANUP: protocol: remove the now unused <handler> field of proto_fam->bind() 838 - DOC: improve the documentation for "option nolinger" 839 - BUG/MEDIUM: proxy: properly stop backends 840 - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once 841 - MINOR: threads: augment rwlock debugging stats to report seek lock stats 842 - MINOR: threads: add the transitions to/from the seek state 843 - MEDIUM: task: use an upgradable seek lock when scanning the wait queue 844 - BUILD: listener: avoir a build warning when threads are disabled 845 - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions. 846 - MINOR: ssl: add volatile flags to ssl samples 847 - MEDIUM: backend: reuse connection if using a static sni 848 - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided 849 - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages 850 - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn 851 - DOC: fix typo in MAX_SESS_STKCTR 852 8532020/10/10 : 2.3-dev6 854 - REGTESTS: use "command" instead of "which" for better POSIX compatibility 855 - BUILD: makefile: Update feature flags for OpenBSD 856 - DOC: agent-check: fix typo in "fail" word expected reply 857 - DOC: crt: advise to move away from cert bundle 858 - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line() 859 - REGTEST: fix host part in balance-uri-path-only.vtc 860 - REGTEST: make ssl_client_samples and ssl_server_samples requiret to 2.3 861 - REGTEST: the iif converter test requires 2.3 862 - REGTEST: make agent-check.vtc require 1.8 863 - REGTEST: make abns_socket.vtc require 1.8 864 - REGTEST: make map_regm_with_backref require 1.7 865 - BUILD: makefile: Update feature flags for FreeBSD 866 - OPTIM: backend/random: never queue on the server, always on the backend 867 - OPTIM: backend: skip LB when we know the backend is full 868 - BUILD: makefile: Fix building with closefrom() support enabled 869 - BUILD: makefile: add an EXTRAVERSION variable to ease local naming 870 - MINOR: tools: support for word expansion of environment in parse_line 871 - BUILD: tools: fix minor build issue on isspace() 872 - BUILD: makefile: Enable closefrom() support on Solaris 873 - CLEANUP: ssl: Use structured format for error line report during crt-list parsing 874 - MINOR: ssl: Add error if a crt-list might be truncated 875 - MINOR: ssl: remove uneeded check in crtlist_parse_file 876 - BUG/MINOR: Fix several leaks of 'log_tag' in init(). 877 - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules 878 - MEDIUM: tcp-rules: Warn if a track-sc* content rule doesn't depend on content 879 - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call 880 - DOC: ssl: new "cert bundle" behavior 881 - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe 882 - CLEANUP: ssl: "bundle" is not an OpenSSL wording 883 - MINOR: counters: fix a typo in comment 884 - BUG/MINOR: stats: fix validity of the json schema 885 - REORG: stats: export some functions 886 - MINOR: stats: add stats size as a parameter for csv/json dump 887 - MINOR: stats: hide px/sv/li fields in applet struct 888 - REORG: stats: extract proxy json dump 889 - REORG: stats: extract proxies dump loop in a function 890 - MINOR: hlua: Display debug messages on stderr only in debug mode 891 - MINOR: stats: define the concept of domain for statistics 892 - MINOR: stats: define additional flag px cap on domain 893 - MEDIUM: stats: add delimiter for static proxy stats on csv 894 - MEDIUM: stats: define an API to register stat modules 895 - MEDIUM: stats: add abstract type to store counters 896 - MEDIUM: stats: integrate static proxies stats in new stats 897 - MINOR: stats: support clear counters for dynamic stats 898 - MINOR: stats: display extra proxy stats on the html page 899 - MINOR: stats: add config "stats show modules" 900 - MINOR: dns/stats: integrate dns counters in stats 901 - MINOR: stats: remove for loop declaration 902 - DOC: ssl: fix typo about ocsp files 903 - BUG/MINOR: peers: Inconsistency when dumping peer status codes. 904 - DOC: update INSTALL with supported OpenBSD / FreeBSD versions 905 - BUG/MINOR: proto_tcp: Report warning messages when listeners are bound 906 - CLEANUP: cache: Fix leak of cconf->c.name during config check 907 - CLEANUP: ssl: Release cached SSL sessions on deinit 908 - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read 909 - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream 910 - MINOR: mux-h1: Don't wakeup the H1C when output buffer become available 911 - CLEANUP: sock-unix: Remove an unreachable goto clause 912 - BUG/MINOR: proxy: inc req counter on new syslog messages. 913 - BUG/MEDIUM: log: old processes with log foward section don't die on soft stop. 914 - MINOR: stats: inc req counter on listeners. 915 - MINOR: channel: new getword and getchar functions on channel. 916 - MEDIUM: log: syslog TCP support on log forward section. 917 - BUG/MINOR: proxy/log: frontend/backend and log forward names must differ 918 - DOC: re-work log forward bind statement documentation. 919 - DOC: fix a confusing typo on a regsub example 920 - BUILD: Add a DragonFlyBSD target 921 - BUG/MINOR: makefile: fix a tiny typo in the target list 922 - BUILD: makefile: Update feature flags for NetBSD 923 - CI: travis-ci: help Coverity to detect BUG_ON() as a real stop 924 - DOC: Add missing stats fields in the management doc 925 - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams 926 - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams 927 - DOC: Fix typos in configuration.txt 928 - BUG/MINOR: http: Fix content-length of the default 500 error 929 - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses 930 - REGTESTS: mark abns_socket as broken 931 - MEDIUM: fd: always wake up one thread when enabling a foreing FD 932 - MEDIUM: listeners: don't bounce listeners management between queues 933 - MEDIUM: init: stop disabled proxies after initializing fdtab 934 - MEDIUM: listeners: make unbind_listener() converge if needed 935 - MEDIUM: deinit: close all receivers/listeners before scanning proxies 936 - MEDIUM: listeners: remove the now unused ZOMBIE state 937 - MINOR: listeners: do not uselessly try to close zombie listeners in soft_stop() 938 - CLEANUP: proxy: remove the first_to_listen hack in zombify_proxy() 939 - MINOR: listeners: introduce listener_set_state() 940 - MINOR: proxy: maintain per-state counters of listeners 941 - MEDIUM: proxy: remove the unused PR_STFULL state 942 - MEDIUM: proxy: remove the PR_STERROR state 943 - MEDIUM: proxy: remove state PR_STPAUSED 944 - MINOR: startup: don't rely on PR_STNEW to check for listeners 945 - CLEANUP: peers: don't use the PR_ST* states to mark enabled/disabled 946 - MEDIUM: proxy: replace proxy->state with proxy->disabled 947 - MEDIUM: proxy: remove start_proxies() 948 - MEDIUM: proxy: merge zombify_proxy() with stop_proxy() 949 - MINOR: listeners: check the current listener state in pause_listener() 950 - MINOR: listeners: check the current listener earlier state in resume_listener() 951 - MEDIUM: listener/proxy: make the listeners notify about proxy pause/resume 952 - MINOR: protocol: introduce protocol_{pause,resume}_all() 953 - MAJOR: signals: use protocol_pause_all() and protocol_resume_all() 954 - CLEANUP: proxy: remove the now unused pause_proxies() and resume_proxies() 955 - MEDIUM: proto_tcp: make the pause() more robust in multi-process 956 - BUG/MEDIUM: listeners: correctly report pause() errors 957 - MINOR: listeners: move fd_stop_recv() to the receiver's socket code 958 - CLEANUP: protocol: remove the ->disable_all method 959 - CLEANUP: listeners: remove unused disable_listener and disable_all_listeners 960 - MINOR: listeners: export enable_listener() 961 - MINOR: protocol: directly call enable_listener() from protocol_enable_all() 962 - CLEANUP: protocol: remove the ->enable_all method 963 - CLEANUP: listeners: remove the now unused enable_all_listeners() 964 - MINOR: protocol: rename the ->listeners field to ->receivers 965 - MINOR: protocol: replace ->pause(listener) with ->rx_suspend(receiver) 966 - MINOR: protocol: implement an ->rx_resume() method 967 - MINOR: listener: use the protocol's ->rx_resume() method when available 968 - MINOR: sock: provide a set of generic enable/disable functions 969 - MINOR: protocol: add a new pair of rx_enable/rx_disable methods 970 - MINOR: protocol: add a new pair of enable/disable methods for listeners 971 - MEDIUM: listeners: now use the listener's ->enable/disable 972 - MINOR: listeners: split delete_listener() in two versions 973 - MINOR: listeners: count unstoppable jobs on creation, not deletion 974 - MINOR: listeners: add a new stop_listener() function 975 - MEDIUM: proxy: make stop_proxy() now use stop_listener() 976 - MEDIUM: proxy: add mode PR_MODE_PEERS to flag peers frontends 977 - MEDIUM: proxy: centralize proxy status update and reporting 978 - MINOR: protocol: add protocol_stop_now() to instant-stop listeners 979 - MEDIUM: proxy: make soft_stop() stop most listeners using protocol_stop_now() 980 - MEDIUM: udp: implement udp_suspend() and udp_resume() 981 - MINOR: listener: add a few BUG_ON() statements to detect inconsistencies 982 - MEDIUM: listeners: always close master vs worker listeners 983 - BROKEN/MEDIUM: listeners: rework the unbind logic to make it idempotent 984 - MEDIUM: listener: let do_unbind_listener() decide whether to close or not 985 - CLEANUP: listeners: remove the do_close argument to unbind_listener() 986 - MINOR: listeners: move the LI_O_MWORKER flag to the receiver 987 - MEDIUM: receivers: add an rx_unbind() method in the protocols 988 - MINOR: listeners: split do_unbind_listener() in two 989 - MEDIUM: listeners: implement protocol level ->suspend/resume() calls 990 - MEDIUM: config: mark "grace" as deprecated 991 - MEDIUM: config: remove the deprecated and dangerous global "debug" directive 992 - BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen 993 - MINOR: peers: heartbeat, collisions and handshake information for "show peers" command. 994 - BUILD: makefile: Enable getaddrinfo() on OS/X 995 9962020/09/25 : 2.3-dev5 997 - DOC: Fix typo in iif() example 998 - CLEANUP: Update .gitignore 999 - BUILD: introduce possibility to define ABORT_NOW() conditionally 1000 - CI: travis-ci: help Coverity to recognize abort() 1001 - BUG/MINOR: Fix type passed of sizeof() for calloc() 1002 - CLEANUP: Do not use a fixed type for 'sizeof' in 'calloc' 1003 - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions 1004 - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup 1005 - BUG/MINOR: ssl: verifyhost is case sensitive 1006 - BUILD: makefile: change default value of CC from gcc to cc 1007 - CI: travis-ci: split asan step out of running tests 1008 - BUG/MINOR: server: report correct error message for invalid port on "socks4" 1009 - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly. 1010 - BUG/MINOR: ssl/crt-list: crt-list could end without a \n 1011 - BUG/MINOR: log-forward: fail on unknown keywords 1012 - MEDIUM: log-forward: use "dgram-bind" instead of "bind" for the listener 1013 - BUG/MEDIUM: log-forward: always quit on parsing errors 1014 - MEDIUM: ssl: remove bundle support in crt-list and directories 1015 - MEDIUM: ssl/cli: remove support for multi certificates bundle 1016 - MINOR: ssl: crtlist_dup_ssl_conf() duplicates a ssl_bind_conf 1017 - MINOR: ssl: crtlist_entry_dup() duplicates a crtlist_entry 1018 - MEDIUM: ssl: emulates the multi-cert bundles in the crtlist 1019 - MEDIUM: ssl: emulate multi-cert bundles loading in standard loading 1020 - CLEANUP: ssl: remove test on "multi" variable in ckch functions 1021 - CLEANUP: ssl/cli: remove test on 'multi' variable in CLI functions 1022 - CLEANUP: ssl: remove utility functions for bundle 1023 - DOC: explain bundle emulation in configuration.txt 1024 - BUILD: fix build with openssl < 1.0.2 since bundle removal 1025 - BUG/MINOR: log: gracefully handle the "udp@" address format for log servers 1026 - BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers 1027 - MINOR: listener: create a new struct "settings" in bind_conf 1028 - MINOR: listener: move bind_proc and bind_thread to struct settings 1029 - MINOR: listener: move the interface to the struct settings 1030 - MINOR: listener: move the network namespace to the struct settings 1031 - REORG: listener: create a new struct receiver 1032 - REORG: listener: move the listening address to a struct receiver 1033 - REORG: listener: move the receiving FD to struct receiver 1034 - REORG: listener: move the listener's proto to the receiver 1035 - MINOR: listener: make sock_find_compatible_fd() check the socket type 1036 - REORG: listener: move the receiver part to a new file 1037 - MINOR: receiver: link the receiver to its settings 1038 - MINOR: receiver: link the receiver to its owner 1039 - MINOR: listener: prefer to retrieve the socket's settings via the receiver 1040 - MINOR: receiver: add a receiver-specific flag to indicate the socket is bound 1041 - MINOR: listener: move the INHERITED flag down to the receiver 1042 - MINOR: receiver: move the FOREIGN and V6ONLY options from listener to settings 1043 - MINOR: sock: make sock_find_compatible_fd() only take a receiver 1044 - MINOR: protocol: rename the ->bind field to ->listen 1045 - MINOR: protocol: add a new ->bind() entry to bind the receiver 1046 - MEDIUM: sock_inet: implement sock_inet_bind_receiver() 1047 - MEDIUM: tcp: make use of sock_inet_bind_receiver() 1048 - MEDIUM: udp: make use of sock_inet_bind_receiver() 1049 - MEDIUM: sock_unix: implement sock_unix_bind_receiver() 1050 - MEDIUM: uxst: make use of sock_unix_bind_receiver() 1051 - MEDIUM: sockpair: implement sockpair_bind_receiver() 1052 - MEDIUM: proto_sockpair: make use of sockpair_bind_receiver() 1053 - MEDIUM: protocol: explicitly start the receiver before the listener 1054 - MEDIUM: protocol: do not call proto->bind() anymore from bind_listener() 1055 - MINOR: protocol: add a new proto_fam structure for protocol families 1056 - MINOR: protocol: retrieve the family-specific fields from the family 1057 - CLEANUP: protocol: remove family-specific fields from struct protocol 1058 - MINOR: protocol: add a real family for existing FDs 1059 - CLEANUP: tools: make str2sa_range() less awful for fd@ and sockpair@ 1060 - MINOR: tools: make str2sa_range() take more options than just resolve 1061 - MINOR: tools: add several PA_O_PORT_* flags in str2sa_range() callers 1062 - MEDIUM: tools: make str2sa_range() validate callers' port specifications 1063 - MEDIUM: config: remove all checks for missing/invalid ports/ranges 1064 - MINOR: tools: add several PA_O_* flags in str2sa_range() callers 1065 - MINOR: listener: remove the inherited arg to create_listener() 1066 - MINOR: tools: make str2sa_range() optionally return the fd 1067 - MINOR: log: detect LOG_TARGET_FD from the fd and not from the syntax 1068 - MEDIUM: tools: make str2sa_range() resolve pre-bound listeners 1069 - MINOR: config: do not test an inherited socket again 1070 - MEDIUM: tools: make str2sa_range() check for the sockpair's FD usability 1071 - MINOR: tools: start to distinguish stream and dgram in str2sa_range() 1072 - MEDIUM: tools: make str2sa_range() only report AF_CUST_UDP on listeners 1073 - MINOR: tools: remove the central test for "udp" in str2sa_range() 1074 - MINOR: cfgparse: add str2receiver() to parse dgram receivers 1075 - MINOR: log-forward: use str2receiver() to parse the dgram-bind address 1076 - MEDIUM: config: make str2listener() not accept datagram sockets anymore 1077 - MINOR: listener: pass the chosen protocol to create_listeners() 1078 - MINOR: tools: make str2sa_range() directly return the protocol 1079 - MEDIUM: tools: make str2sa_range() check that the protocol has ->connect() 1080 - MINOR: protocol: add the control layer type in the protocol struct 1081 - MEDIUM: protocol: store the socket and control type in the protocol array 1082 - MEDIUM: tools: make str2sa_range() use protocol_lookup() 1083 - MEDIUM: proto_udp: replace last AF_CUST_UDP* with AF_INET* 1084 - MINOR: tools: drop listener detection hack from str2sa_range() 1085 - BUILD: sock_unix: add missing errno.h 1086 - MINOR: sock_inet: report the errno string in binding errors 1087 - MINOR: sock_unix: report the errno string in binding errors 1088 - BUILD: sock_inet: include errno.h 1089 - MINOR: h2/trace: also display the remaining frame length in traces 1090 - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK 1091 - BUG/MEDIUM: h2: report frame bits only for handled types 1092 - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch 1093 - BUG/MINOR: Fix memory leaks cfg_parse_peers 1094 - BUG/MINOR: config: Fix memory leak on config parse listen 1095 - MINOR: backend: make the "whole" option of balance uri take only one bit 1096 - MINOR: backend: add a new "path-only" option to "balance uri" 1097 - REGTESTS: add a few load balancing tests 1098 - BUG/MEDIUM: listeners: do not pause foreign listeners 1099 - BUG/MINOR: listeners: properly close listener FDs 1100 - BUILD: trace: include tools.h 1101 11022020/09/11 : 2.3-dev4 1103 - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode 1104 - BUG/MEDIUM: ssl: crt-list negative filters don't work 1105 - DOC: overhauling github issue templates 1106 - MEDIUM: cfgparse: Emit hard error on truncated lines 1107 - DOC: cache: Use '<name>' instead of '<id>' in error message 1108 - MINOR: cache: Reject duplicate cache names 1109 - REGTEST: remove stray leading spaces in converteers_ref_cnt_never_dec.vtc 1110 - MINOR: stats: prevent favicon.ico requests for stats page 1111 - BUILD: tools: include auxv a bit later 1112 - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1 1113 - MEDIUM: ssl: Support certificate chaining for certificate generation 1114 - MINOR: ssl: Support SAN extension for certificate generation 1115 - MINOR: tcp: don't try to set/clear v6only on inherited sockets 1116 - BUG/MINOR: reload: detect the OS's v6only status before choosing an old socket 1117 - MINOR: reload: determine the foreing binding status from the socket 1118 - MEDIUM: reload: stop passing listener options along with FDs 1119 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards 1120 - MEDIUM: fd: replace usages of fd_remove() with fd_stop_both() 1121 - CLEANUP: fd: remove fd_remove() and rename fd_dodelete() to fd_delete() 1122 - MINOR: fd: add a new "exported" flag and use it for all regular listeners 1123 - MEDIUM: reload: pass all exportable FDs, not just listeners 1124 - DOC: add description of pidfile in master-worker mode 1125 - BUG/MINOR: reload: do not fail when no socket is sent 1126 - REORG: tcp: move TCP actions from proto_tcp.c to tcp_act.c 1127 - CLEANUP: tcp: stop exporting smp_fetch_src() 1128 - REORG: tcp: move TCP sample fetches from proto_tcp.c to tcp_sample.c 1129 - REORG: tcp: move TCP bind/server keywords from proto_tcp.c to cfgparse-tcp.c 1130 - REORG: unix: move UNIX bind/server keywords from proto_uxst.c to cfgparse-unix.c 1131 - REORG: sock: start to move some generic socket code to sock.c 1132 - MINOR: sock: introduce sock_inet and sock_unix 1133 - MINOR: tcp/udp/unix: make use of proto->addrcmp() to compare addresses 1134 - MINOR: sock_inet: implement sock_inet_get_dst() 1135 - REORG: inet: replace tcp_is_foreign() with sock_inet_is_foreign() 1136 - REORG: sock_inet: move v6only_default from proto_tcp.c to sock_inet.c 1137 - REORG: sock_inet: move default_tcp_maxseg from proto_tcp.c 1138 - REORG: listener: move xfer_sock_list to sock.{c,h}. 1139 - MINOR: sock: add interface and namespace length to xfer_sock_list 1140 - MINOR: sock: implement sock_find_compatible_fd() 1141 - MINOR: sock_inet: move the IPv4/v6 transparent mode code to sock_inet 1142 - REORG: sock: move get_old_sockets() from haproxy.c 1143 - MINOR: sock: do not use LI_O_* in xfer_sock_list anymore 1144 - MINOR: sock: distinguish dgram from stream types when retrieving old sockets 1145 - BUILD: sock_unix: fix build issue with isdigit() 1146 - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers 1147 - MINOR: http-htx: Add an option to eval query-string when the path is replaced 1148 - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action 1149 - MINOR: http-htx: Handle an optional reason when replacing the response status 1150 - MINOR: contrib/spoa-server: allow MAX_FRAME_SIZE override 1151 - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak 1152 - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed 1153 - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL 1154 - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure 1155 - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address 1156 - CLEANUP: http: silence a cppcheck warning in get_http_auth() 1157 - REGTEST: increase some short timeouts to make tests more reliable 1158 - BUG/MINOR: threads: work around a libgcc_s issue with chrooting 1159 - BUILD: thread: limit the libgcc_s workaround to glibc only 1160 - MINOR: protocol: do not call proto->bind_all() anymore 1161 - MINOR: protocol: do not call proto->unbind_all() anymore 1162 - CLEANUP: protocol: remove all ->bind_all() and ->unbind_all() functions 1163 - MAJOR: init: start all listeners via protocols and not via proxies anymore 1164 - BUG/MINOR: startup: haproxy -s cause 100% cpu 1165 - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action" 1166 - BUG/MEDIUM: doc: Fix replace-path action description 1167 - MINOR: http-rules: Add set-pathq and replace-pathq actions 1168 - MINOR: http-fetch: Add pathq sample fetch 1169 - REGTEST: Add a test for request path manipulations, with and without the QS 1170 - MINOR: Commit .gitattributes 1171 - CLEANUP: Update .gitignore 1172 - BUG/MEDIUM: dns: Don't store additional records in a linked-list 1173 - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers 1174 - MINOR: server: Improve log message sent when server address is updated 1175 - DOC: ssl-load-extra-files only applies to certificates on bind lines 1176 - BUG/MINOR: auth: report valid crypto(3) support depending on build options 1177 - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections 1178 - BUILD: threads: better workaround for late loading of libgcc_s 1179 - BUILD: compiler: reserve the gcc version checks to the gcc compiler 1180 - BUILD: compiler: workaround a glibc madness around __attribute__() 1181 - BUILD: intops: on x86_64, the bswap instruction is called bswapq 1182 - BUILD: trace: always have an argument before variadic args in macros 1183 - BUILD: traces: don't pass an empty argument for missing ones 1184 - BUG/MINOR: haproxy: Free uri_auth->scope during deinit 1185 - CLEANUP: Free old_argv on deinit 1186 - CLEANUP: haproxy: Free post_proxy_check_list in deinit() 1187 - CLEANUP: haproxy: Free per_thread_*_list in deinit() 1188 - CLEANUP: haproxy: Free post_check_list in deinit() 1189 - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned 1190 - REORG: tools: move PARSE_OPT_* from tools.h to tools-t.h 1191 - MINOR: sample: Add iif(<true>,<false>) converter 1192 11932020/08/14 : 2.3-dev3 1194 - SCRIPTS: git-show-backports: make -m most only show the left branch 1195 - SCRIPTS: git-show-backports: emit the shell command to backport a commit 1196 - BUILD: Makefile: require SSL_LIB, SSL_INC to be explicitly set 1197 - CI: travis-ci: specify SLZ_LIB, SLZ_INC for travis builds 1198 - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send 1199 - CLEANUP: dns: typo in reported error message 1200 - BUG/MAJOR: dns: disabled servers through SRV records never recover 1201 - BUG/MINOR: spoa-server: fix size_t format printing 1202 - DOC: spoa-server: fix false friends `actually` 1203 - BUG/MINOR: ssl: fix memory leak at OCSP loading 1204 - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free() 1205 - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime 1206 - MINOR: arg: Add an argument type to keep a reference on opaque data 1207 - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter 1208 - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created 1209 - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters 1210 - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation 1211 - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation 1212 - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation 1213 - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array 1214 - MEDIUM: lua: Don't filter exported fetches and converters 1215 - MINOR: lua: Add support for userlist as fetches and converters arguments 1216 - MINOR: lua: Add support for regex as fetches and converters arguments 1217 - MINOR: arg: Use chunk_destroy() to release string arguments 1218 - BUG/MINOR: snapshots: leak of snapshots on deinit() 1219 - CLEANUP: ssl: ssl_sock_crt2der semicolon and spaces 1220 - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods 1221 - CLEANUP: fix all duplicated semicolons 1222 - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option 1223 - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2 1224 - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states 1225 - BUILD: makefile: don't disable -Wstringop-overflow anymore 1226 - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der() 1227 - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction 1228 - BUG/MEDIUM: ssl: never generates the chain from the verify store 1229 - OPTIM: regex: PCRE2 use JIT match when JIT optimisation occured. 1230 - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate 1231 - CLEANUP: ssl: remove poorly readable nested ternary 1232 12332020/07/31 : 2.3-dev2 1234 - DOC: ssl: req_ssl_sni needs implicit TLS 1235 - BUG/MEDIUM: arg: empty args list must be dropped 1236 - BUG/MEDIUM: resolve: fix init resolving for ring and peers section. 1237 - BUG/MAJOR: tasks: don't requeue global tasks into the local queue 1238 - MINOR: tasks/debug: make the thread affinity BUG_ON check a bit stricter 1239 - MINOR: tasks/debug: add a few BUG_ON() to detect use of wrong timer queue 1240 - MINOR: tasks/debug: add a BUG_ON() check to detect requeued task on free 1241 - BUG/MAJOR: dns: Make the do-resolve action thread-safe 1242 - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed 1243 - MEDIUM: htx: Add a flag on a HTX message when no more data are expected 1244 - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected 1245 - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering 1246 - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response() 1247 - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one 1248 - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore 1249 - BUILD: tools: fix build with static only toolchains 1250 - DOC: Use gender neutral language 1251 - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized 1252 - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status 1253 - BUG/MAJOR: dns: don't treat Authority records as an error 1254 - CI : travis-ci : prepare for using stock OpenSSL 1255 - CI: travis-ci : switch to stock openssl when openssl-1.1.1 is used 1256 - MEDIUM: lua: Add support for the Lua 5.4 1257 - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation 1258 - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation 1259 - MINOR: tcp-rules: Return an internal error if an action yields on a final eval 1260 - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort 1261 - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields 1262 - MEDIUM: tcp-rules: Use a dedicated expiration date for tcp ruleset 1263 - MEDIUM: lua: Set the analyse expiration date with smaller wake_time only 1264 - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect 1265 - MINOR: connection: Preinstall the mux for non-ssl connect 1266 - MINOR: stream-int: Be sure to have a mux to do sends and receives 1267 - BUG/MINOR: lua: Fix a possible null pointer deref on lua ctx 1268 - SCRIPTS: announce-release: add the link to the wiki in the announce messages 1269 - CI: travis-ci: use better name for Coverity scan job 1270 - CI: travis-ci: use proper linking flags for SLZ build 1271 - BUG/MEDIUM: backend: always attach the transport before installing the mux 1272 - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux 1273 - MINOR: connection: avoid a useless recvfrom() on outgoing connections 1274 - MINOR: mux-h1: do not even try to receive if the connection is not fully set up 1275 - MINOR: mux-h1: do not try to receive on backend before sending a request 1276 - CLEANUP: assorted typo fixes in the code and comments 1277 - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp() 1278 12792020/07/17 : 2.3-dev1 1280 - MINOR: config: make strict limits enabled by default 1281 - BUG/MINOR: acl: Fix freeing of expr->smp in prune_acl_expr 1282 - BUG/MINOR: sample: Fix freeing of conv_exprs in release_sample_expr 1283 - BUG/MINOR: haproxy: Free proxy->format_unique_id during deinit 1284 - BUG/MINOR: haproxy: Add missing free of server->(hostname|resolvers_id) 1285 - BUG/MINOR: haproxy: Free proxy->unique_id_header during deinit 1286 - BUG/MINOR: haproxy: Free srule->file during deinit 1287 - BUG/MINOR: haproxy: Free srule->expr during deinit 1288 - BUG/MINOR: sample: Free str.area in smp_check_const_bool 1289 - BUG/MINOR: sample: Free str.area in smp_check_const_meth 1290 - CLEANUP: haproxy: Free proxy_deinit_list in deinit() 1291 - CLEANUP: haproxy: Free post_deinit_list in deinit() 1292 - CLEANUP: haproxy: Free server_deinit_list in deinit() 1293 - CLEANUP: haproxy: Free post_server_check_list in deinit() 1294 - CLEANUP: Add static void vars_deinit() 1295 - CLEANUP: Add static void hlua_deinit() 1296 - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric 1297 - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD() 1298 - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ 1299 - MINOR: tcp: Support TCP keepalive parameters customization 1300 - BUILD: tcp: condition TCP keepalive settings to platforms providing them 1301 - MINOR: lists: rename some MT_LIST operations to clarify them 1302 - MINOR: buffer: use MT_LIST_ADDQ() for buffer_wait lists additions 1303 - MINOR: connection: use MT_LIST_ADDQ() to add connections to idle lists 1304 - MINOR: tasks: use MT_LIST_ADDQ() when killing tasks. 1305 - CONTRIB: da: fix memory leak in dummy function da_atlas_open() 1306 - CI: travis-ci: speed up osx build by running brew scripted, switch to latest osx image 1307 - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list 1308 - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list 1309 - MINOR: connection: Set the SNI on server connections before installing the mux 1310 - MINOR: connection: Set new connection as private on reuse never 1311 - MINOR: connection: Add a wrapper to mark a connection as private 1312 - MEDIUM: connection: Add private connections synchronously in session server list 1313 - MINOR: connection: Use a dedicated function to look for a session's connection 1314 - MINOR: connection: Set the conncetion target during its initialisation 1315 - MINOR: session: Take care to decrement idle_conns counter in session_unown_conn 1316 - MINOR: server: Factorize code to deal with reuse of server idle connections 1317 - MINOR: server: Factorize code to deal with connections removed from an idle list 1318 - CLEANUP: connection: remove unused field idle_time from the connection struct 1319 - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode 1320 - MINOR: raw_sock: Report the number of bytes emitted using the splicing 1321 - MINOR: contrib/prometheus-exporter: Add missing global and per-server metrics 1322 - MINOR: backend: Add sample fetches to get the server's weight 1323 - BUG/MINOR: mux-fcgi: Handle empty STDERR record 1324 - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding 1325 - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT 1326 - BUG/MINOR: backend: fix potential null deref on srv_conn 1327 - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers. 1328 - MEDIUM: udp: adds minimal proto udp support for message listeners. 1329 - MEDIUM: log/sink: re-work and merge of build message API. 1330 - MINOR: log: adds syslog udp message handler and parsing. 1331 - MEDIUM: log: adds log forwarding section. 1332 - MINOR: log: adds counters on received syslog messages. 1333 - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers 1334 - BUG/MEDIUM: server: resolve state file handle leak on reload 1335 - BUG/MEDIUM: server: fix possibly uninitialized state file on close 1336 - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked 1337 - BUILD: config: address build warning on raspbian+rpi4 1338 - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed 1339 - BUILD: config: fix again bugs gcc warnings on calloc 1340 13412020/07/07 : 2.3-dev0 1342 - [RELEASE] Released version 2.3-dev0 1343 - MINOR: version: back to development, update status message 1344 13452020/07/07 : 2.3-dev0 1346 - exact copy of 2.2.0 1347 13482020/07/07 : 2.2.0 1349 - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK 1350 - CLEANUP: makefile: update the outdated list of DEBUG_xxx options 1351 - BUILD: tools: make resolve_sym_name() return a const 1352 - CLEANUP: auth: fix useless self-include of auth-t.h 1353 - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char 1354 - CLEANUP: assorted typo fixes in the code and comments 1355 - WIP/MINOR: ssl: add sample fetches for keylog in frontend 1356 - DOC: fix tune.ssl.keylog sample fetches array 1357 - BUG/MINOR: ssl: check conn in keylog sample fetch 1358 - DOC: configuration: various typo fixes 1359 - MINOR: log: Remove unused case statement during the log-format string parsing 1360 - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode 1361 - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive 1362 - BUG/MINOR: mux-h1: Disable splicing only if input data was processed 1363 - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received 1364 - MINOR: mux-h1: Improve traces about the splicing 1365 - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server 1366 - BUG/MEDIUM: connection: Don't consider new private connections as available 1367 - BUG/MINOR: connection: See new connection as available only on reuse always 1368 - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x 1369 - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog() 1370 - DOC: update INSTALL with new compiler versions 1371 - DOC: minor update to coding style file 1372 - MINOR: version: mention that it's an LTS release now 1373 13742020/07/04 : 2.2-dev12 1375 - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb() 1376 - MINOR: cli: make "show sess" stop at the last known session 1377 - CLEANUP: buffers: remove unused buffer_wq_lock lock 1378 - BUG/MEDIUM: buffers: always allocate from the local cache first 1379 - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns 1380 - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY 1381 - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections. 1382 - BUG/MEDIUM: checks: Increment the server's curr_used_conns 1383 - REORG: buffer: rename buffer.c to dynbuf.c 1384 - REORG: includes: create tinfo.h for the thread_info struct 1385 - CLEANUP: pool: only include the type files from types 1386 - MINOR: pools: move the LRU cache heads to thread_info 1387 - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD 1388 - MINOR: stats: add 3 new output values for the per-server idle conn state 1389 - MINOR: activity: add per-thread statistics on FD takeover 1390 - BUG/MINOR: server: start cleaning idle connections from various points 1391 - MEDIUM: server: improve estimate of the need for idle connections 1392 - MINOR: stats: add the estimated need of concurrent connections per server 1393 - BUG/MINOR: threads: Don't forget to init each thread toremove_lock. 1394 - BUG/MEDIUM: lists: Lock the element while we check if it is in a list. 1395 - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list." 1396 - BUG/MINOR: haproxy: don't wake already stopping threads on exit 1397 - BUG/MINOR: server: always count one idle slot for current thread 1398 - MEDIUM: server: use the two thresholds for the connection release algorithm 1399 - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules 1400 - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race 1401 - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks 1402 - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks 1403 - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks 1404 - MINOR: pools: increase MAX_BASE_POOLS to 64 1405 - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list 1406 - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible 1407 - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string() 1408 - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash 1409 - BUG/MINOR: proxy: always initialize the trash in show servers state 1410 - MINOR: cli/proxy: add a new "show servers conn" command 1411 - MINOR: server: skip servers with no idle conns earlier 1412 - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions 1413 - MEDIUM: server: add a new pool-low-conn server setting 1414 - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one 1415 - MINOR: backend: don't always takeover from the same threads 1416 - MINOR: sched: make sched->task_list_size atomic 1417 - MEDIUM: sched: create a new TASK_KILLED task flag 1418 - MEDIUM: sched: implement task_kill() to kill a task 1419 - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup() 1420 - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup() 1421 - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup() 1422 - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK() 1423 - CLEANUP: connections: rename the toremove_lock to takeover_lock 1424 - MEDIUM: connections: Don't use a lock when moving connections to remove. 1425 - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio 1426 - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio 1427 - MINOR: config: add a new tune.idle-pool.shared global setting. 1428 - MINOR: 51d: silence a warning about null pointer dereference 1429 - MINOR: debug: add a new "debug dev memstats" command 1430 - MINOR: log-format: allow to preserve spacing in log format strings 1431 - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS 1432 - BUG/MAJOR: sched: make sure task_kill() always queues the task 1433 - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it. 1434 - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none 1435 - BUILD: haproxy: fix build error when RLIMIT_AS is not set 1436 - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT 1437 - MINOR: log: add time second fraction field to rfc5424 log timestamp. 1438 - BUG/MINOR: log: missing timezone on iso dates. 1439 - BUG/MEDIUM: server: don't kill all idle conns when there are not enough 1440 - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on() 1441 - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover. 1442 - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened. 1443 - BUG/MINOR: http_act: don't check capture id in backend (2) 1444 - BUILD: makefile: disable threads by default on OpenBSD 1445 - BUILD: peers: fix build warning with gcc 4.2.1 1446 - CI: cirrus-ci: exclude slow reg-tests 1447 14482020/06/26 : 2.2-dev11 1449 - REGTEST: Add a simple script to tests errorfile directives in proxy sections 1450 - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer 1451 - BUG/MINOR: spoe: correction of setting bits for analyzer 1452 - BUG/MINOR: cfgparse: Support configurations without newline at EOF 1453 - MINOR: cfgparse: Warn on truncated lines / files 1454 - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry 1455 - MINOR: debug: add a new DEBUG_FD build option 1456 - BUG/MINOR: tasks: make sure never to exceed max_processed 1457 - MINOR: task: add a new pointer to current tasklet queue 1458 - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT 1459 - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message 1460 - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message 1461 - BUG/MEDIUM: ssl: fix ssl_bind_conf double free 1462 - MINOR: ssl: free bind_conf_node in crtlist_free() 1463 - MINOR: ssl: free the crtlist and the ckch during the deinit() 1464 - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit() 1465 - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted 1466 - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c 1467 - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes 1468 - MINOR: tasks: make current_queue an index instead of a pointer 1469 - MINOR: tasks: add a mask of the queues with active tasklets 1470 - MINOR: tasks: pass the queue index to run_task_from_list() 1471 - MINOR: tasks: make run_tasks_from_lists() scan the queues itself 1472 - MEDIUM: tasks: add a tune.sched.low-latency option 1473 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key 1474 - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines 1475 - MINOR: tools: make parse_line() always terminate the args list 1476 - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated 1477 - MINOR: cfgparse: sanitize the output a little bit 1478 - MINOR: cli/ssl: handle trailing slashes in crt-list commands 1479 - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate 1480 - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response 1481 - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages 1482 - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses 1483 - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy 1484 - MINOR: spoe: Don't systematically create new applets if processing rate is low 1485 - DOC: fix some typos in the ssl_s_{s|i}_dn documentation 1486 - BUILD: fix ssl_sample.c when building against BoringSSL 1487 - CI: travis-ci: switch BoringSSL builds to ninja 1488 - CI: extend spellchecker whitelist 1489 - DOC: assorted typo fixes in the documentation 1490 - CLEANUP: assorted typo fixes in the code and comments 1491 - MINOR: http: Add support for http 413 status 1492 - REGTEST: ssl: tests the ssl_f_* sample fetches 1493 - REGTEST: ssl: add some ssl_c_* sample fetches test 1494 - DOC: ssl: update the documentation of "commit ssl cert" 1495 - BUG/MINOR: cfgparse: correctly deal with empty lines 1496 - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL 1497 14982020/06/19 : 2.2-dev10 1499 - BUILD: include: add sys/types before netinet/tcp.h 1500 - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor 1501 - BUILD: Remove nowarn for warnings that do not trigger 1502 - BUG/MEDIUM: pattern: fix thread safety of pattern matching 1503 - BUILD: Re-enable -Wimplicit-fallthrough 1504 - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0 1505 - BUILD: thread: add parenthesis around values of locking macros 1506 - BUILD: proto_uxst: shut up yet another gcc's absurd warning 1507 - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd 1508 - CI: travis-ci: use "-O1" for clang builds 1509 - MINOR: haproxy: Add void deinit_and_exit(int) 1510 - MINOR: haproxy: Make use of deinit_and_exit() for clean exits 1511 - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules 1512 - BUILD: compression: make gcc 10 happy with free_zlib() 1513 - BUILD: atomic: add string.h for memcpy() on ARM64 1514 - BUG/MINOR: http: make smp_fetch_body() report that the contents may change 1515 - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness 1516 - BUILD: haproxy: mark deinit_and_exit() as noreturn 1517 - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules 1518 - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks 1519 - MINOR: tools: add a new configurable line parse, parse_line() 1520 - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines 1521 - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error 1522 - MINOR: http: do not close connections anymore after internal responses 1523 - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case 1524 - BUG/MINOR: spoe: add missing key length check before checking key names 1525 - MINOR: version: put the compiler version output into version.c not haproxy.c 1526 - MINOR: compiler: always define __has_feature() 1527 - MINOR: version: report the presence of the compiler's address sanitizer 1528 - BUILD: Fix build by including haproxy/global.h 1529 - BUG/MAJOR: connection: always disable ready events once reported 1530 - CLEANUP: activity: remove unused counter fd_lock 1531 - DOC: fd: make it clear that some fields ordering must absolutely be respected 1532 - MINOR: activity: report the number of times poll() reports I/O 1533 - MINOR: activity: rename confusing poll_* fields in the output 1534 - MINOR: fd: Fix a typo in a coment. 1535 - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own. 1536 - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd. 1537 - MINOR: activity: group the per-loop counters at the top 1538 - MINOR: activity: rename the "stream" field to "stream_calls" 1539 - MEDIUM: fd: refine the fd_takeover() migration lock 1540 - MINOR: fd: slightly optimize the fd_takeover double-CAS loop 1541 - MINOR: fd: factorize the fd_takeover() exit path to make it safer 1542 - MINOR: peers: do not use localpeer as an array anymore 1543 - MEDIUM: peers: add the "localpeer" global option 1544 - MEDIUM: fd: add experimental support for edge-triggered polling 1545 - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST 1546 - MINOR: haproxy: process signals before runnable tasks 1547 - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks() 1548 - MEDIUM: tasks: also process late wakeups in process_runnable_tasks() 1549 - BUG/MINOR: cli: allow space escaping on the CLI 1550 - BUG/MINOR: mworker/cli: fix the escaping in the master CLI 1551 - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI 1552 - REGTEST: http-rules: test spaces in ACLs 1553 - REGTEST: http-rules: test spaces in ACLs with master CLI 1554 - BUG/MAJOR: init: properly compute the default global.maxpipes value 1555 - MEDIUM: map: make the "clear map" operation yield 1556 - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding 1557 - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send. 1558 - BUG/MINOR: systemd: Wait for network to be online 1559 - DOC: configuration: Unindent non-code sentences in the protobuf example 1560 - DOC: configuration: http-check send was missing from matrix 1561 15622020/06/11 : 2.2-dev9 1563 - BUG/MINOR: http-htx: Don't forget to release the http reply in release function 1564 - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing 1565 - MINOR: checks: Remove dead code from process_chk_conn() 1566 - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used 1567 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv 1568 - MINOR: lua: Use vars_unset_by_name_ifexist() 1569 - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*) 1570 - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value 1571 - MINOR: lua: Make `set_var()` and `unset_var()` return success 1572 - MEDIUM: lua: Add `ifexist` parameter to `set_var` 1573 - MEDIUM: ring: new section ring to declare custom ring buffers. 1574 - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation 1575 - REGTESTS: Require the version 2.2 to execute lua/set_var 1576 - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect 1577 - MINOR: checks: Remove useless tests on the connection and conn-stream 1578 - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail 1579 - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections 1580 - BUG/MINOR: connection: Always get the stream when available to send PP2 line 1581 - BUG/MEDIUM: backend: set the connection owner to the session when using alpn. 1582 - MINOR: pools: compute an estimate of each pool's average needed objects 1583 - MEDIUM: pools: directly free objects when pools are too much crowded 1584 - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn 1585 - MINOR: http-ana: Make the function http_reply_to_htx() public 1586 - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses 1587 - MINOR: http-rules: Use an action function to eval http-request auth rules 1588 - CLEANUP: http: Remove unused HTTP message templates 1589 - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect 1590 - MINOR: checks: I/O callback function only rely on the data layer wake callback 1591 - BUG/MINOR: lua: Add missing string length for lua sticktable lookup 1592 - BUG/MEDIUM: logs: fix trailing zeros on log message. 1593 - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6 1594 - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf 1595 - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree 1596 - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines 1597 - CLEANUP: pools: use the regular lock for the flush operation on lockless pools 1598 - SCRIPTS: publish-release: pass -n to gzip to remove timestamp 1599 - MINOR: ring: re-work ring attach generic API. 1600 - BUG/MINOR: error on unknown statement in ring section. 1601 - MEDIUM: ring: add server statement to forward messages from a ring 1602 - MEDIUM: ring: add new srv statement to support octet counting forward 1603 - MINOR: ssl: set ssl-min-ver in ambiguous configurations 1604 - CLEANUP: ssl: remove comment from dump_crtlist_sslconf() 1605 - BUILD: sink: address build warning on 32-bit architectures 1606 - BUG/MINOR: peers: fix internal/network key type mapping. 1607 - CLEANUP: regex: remove outdated support for regex actions 1608 - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent" 1609 - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade 1610 - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action 1611 - DOC: add a line about comments in crt-list 1612 - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations 1613 - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check 1614 - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics 1615 - BUG/MEDIUM: mworker: fix the copy of options in copy_argv() 1616 - BUG/MINOR: init: -x can have a parameter starting with a dash 1617 - BUG/MINOR: init: -S can have a parameter starting with a dash 1618 - BUG/MEDIUM: mworker: fix the reload with an -- option 1619 - BUG/MINOR: ssl: fix a trash buffer leak in some error cases 1620 - BUG/MINOR: mworker: fix a memleak when execvp() failed 1621 - MINOR: sample: Add secure_memcmp converter 1622 - REORG: ebtree: move the C files from ebtree/ to src/ 1623 - REORG: ebtree: move the include files from ebtree to include/import/ 1624 - REORG: ebtree: clean up remains of the ebtree/ directory 1625 - REORG: include: create new file haproxy/api-t.h 1626 - REORG: include: create new file haproxy/api.h 1627 - REORG: include: update all files to use haproxy/api.h or api-t.h if needed 1628 - CLEANUP: include: remove common/config.h 1629 - CLEANUP: include: remove unused template.h 1630 - REORG: include: move MIN/MAX from tools.h to compat.h 1631 - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h 1632 - CLEANUP: include: remove unused common/tools.h 1633 - REORG: include: move the base files from common/ to haproxy/ 1634 - REORG: include: move version.h to haproxy/ 1635 - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/ 1636 - REORG: include: move openssl-compat.h from common/ to haproxy/ 1637 - REORG: include: move ist.h from common/ to import/ 1638 - REORG: include: move the BUG_ON() code to haproxy/bug.h 1639 - REORG: include: move debug.h from common/ to haproxy/ 1640 - CLEANUP: debug: drop unused function p_malloc() 1641 - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h 1642 - REORG: include: move istbuf.h to haproxy/ 1643 - REORG: include: split mini-clist into haproxy/list and list-t.h 1644 - REORG: threads: extract atomic ops from hathreads.h 1645 - CLEANUP: threads: remove a few needless includes of hathreads.h 1646 - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h 1647 - CLEANUP: thread: rename __decl_hathreads() to __decl_thread() 1648 - REORG: include: move time.h from common/ to haproxy/ 1649 - REORG: include: move integer manipulation functions from standard.h to intops.h 1650 - CLEANUP: include: remove excessive includes of common/standard.h 1651 - REORG: include: move freq_ctr to haproxy/ 1652 - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions 1653 - REORG: memory: move the pool type definitions to haproxy/pool-t.h 1654 - REORG: memory: move the OS-level allocator to haproxy/pool-os.h 1655 - MINOR: memory: don't let __pool_get_first() pick from the cache 1656 - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself 1657 - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free() 1658 - MEDIUM: memory: make local pools independent on lockless pools 1659 - REORG: include: move common/memory.h to haproxy/pool.h 1660 - REORG: include: move common/chunk.h to haproxy/chunk.h 1661 - REORG: include: move activity to haproxy/ 1662 - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h 1663 - REORG: include: move common/net_helper.h to haproxy/net_helper.h 1664 - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h 1665 - REORG: include: split common/regex.h into haproxy/regex{,-t}.h 1666 - REORG: include: split common/xref.h into haproxy/xref{,-t}.h 1667 - REORG: include: move common/ticks.h to haproxy/ticks.h 1668 - REORG: include: split common/http.h into haproxy/http{,-t}.h 1669 - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h 1670 - REORG: include: move common/h1.h to haproxy/h1.h 1671 - REORG: include: split common/htx.h into haproxy/htx{,-t}.h 1672 - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl 1673 - REORG: include: move common/h2.h to haproxy/h2.h 1674 - REORG: include: move common/fcgi.h to haproxy/ 1675 - REORG: include: move protocol.h to haproxy/protocol{,-t}.h 1676 - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h 1677 - REORG: include: move dict.h to hparoxy/dict{,-t}.h 1678 - REORG: include: move shctx to haproxy/shctx{,-t}.h 1679 - REORG: include: move port_range.h to haproxy/port_range{,-t}.h 1680 - REORG: include: move fd.h to haproxy/fd{,-t}.h 1681 - REORG: include: move ring to haproxy/ring{,-t}.h 1682 - REORG: include: move sink.h to haproxy/sink{,-t}.h 1683 - REORG: include: move pipe.h to haproxy/pipe{,-t}.h 1684 - CLEANUP: include: remove empty raw_sock.h 1685 - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h 1686 - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h 1687 - REORG: include: move compression.h to haproxy/compression{,-t}.h 1688 - REORG: include: move h1_htx.h to haproxy/h1_htx.h 1689 - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h 1690 - REORG: include: move hlua.h to haproxy/hlua{,-t}.h 1691 - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h 1692 - REORG: include: move action.h to haproxy/action{,-t}.h 1693 - REORG: include: move arg.h to haproxy/arg{,-t}.h 1694 - REORG: include: move auth.h to haproxy/auth{,-t}.h 1695 - REORG: include: move dns.h to haproxy/dns{,-t}.h 1696 - REORG: include: move flt_http_comp.h to haproxy/ 1697 - REORG: include: move counters.h to haproxy/counters-t.h 1698 - REORG: include: split mailers.h into haproxy/mailers{,-t}.h 1699 - REORG: include: move capture.h to haproxy/capture{,-t}.h 1700 - REORG: include: move frontend.h to haproxy/frontend.h 1701 - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h 1702 - REORG: include: move http_rules.h to haproxy/http_rules.h 1703 - CLEANUP: include: remove unused mux_pt.h 1704 - REORG: include: move mworker.h to haproxy/mworker{,-t}.h 1705 - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h 1706 - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h 1707 - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h 1708 - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h 1709 - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h 1710 - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h 1711 - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h 1712 - REORG: include: move listener.h to haproxy/listener{,-t}.h 1713 - REORG: include: move pattern.h to haproxy/pattern{,-t}.h 1714 - REORG: include: move map to haproxy/map{,-t}.h 1715 - REORG: include: move payload.h to haproxy/payload.h 1716 - REORG: include: move sample.h to haproxy/sample{,-t}.h 1717 - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h 1718 - REORG: include: move vars.h to haproxy/vars{,-t}.h 1719 - REORG: include: split global.h into haproxy/global{,-t}.h 1720 - REORG: include: move task.h to haproxy/task{,-t}.h 1721 - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h 1722 - REORG: include: move signal.h to haproxy/signal{,-t}.h 1723 - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h 1724 - REORG: include: move connection.h to haproxy/connection{,-t}.h 1725 - REORG: include: move checks.h to haproxy/check{,-t}.h 1726 - REORG: include: move http_fetch.h to haproxy/http_fetch.h 1727 - REORG: include: move peers.h to haproxy/peers{,-t}.h 1728 - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h 1729 - REORG: include: move session.h to haproxy/session{,-t}.h 1730 - REORG: include: move trace.h to haproxy/trace{,-t}.h 1731 - REORG: include: move acl.h to haproxy/acl.h{,-t}.h 1732 - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h 1733 - REORG: move applet.h to haproxy/applet{,-t}.h 1734 - REORG: include: move stats.h to haproxy/stats{,-t}.h 1735 - REORG: include: move cli.h to haproxy/cli{,-t}.h 1736 - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h 1737 - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h 1738 - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h 1739 - REORG: include: move channel.h to haproxy/channel{,-t}.h 1740 - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h 1741 - REORG: include: move filters.h to haproxy/filters{,-t}.h 1742 - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h 1743 - REORG: include: move log.h to haproxy/log{,-t}.h 1744 - REORG: include: move proxy.h to haproxy/proxy{,-t}.h 1745 - REORG: include: move spoe.h to haproxy/spoe{,-t}.h 1746 - REORG: include: move backend.h to haproxy/backend{,-t}.h 1747 - REORG: include: move queue.h to haproxy/queue{,-t}.h 1748 - REORG: include: move server.h to haproxy/server{,-t}.h 1749 - REORG: include: move stream.h to haproxy/stream{,-t}.h 1750 - REORG: include: move cfgparse.h to haproxy/cfgparse.h 1751 - CLEANUP: hpack: export debug functions and move inlines to .h 1752 - REORG: check: move the e-mail alerting code to mailers.c 1753 - REORG: check: move tcpchecks away from check.c 1754 - REORG: check: move email_alert* from proxy-t.h to mailers-t.h 1755 - REORG: check: extract the external checks from check.{c,h} 1756 - CLEANUP: include: don't include stddef.h directly 1757 - CLEANUP: include: don't include proxy-t.h in global-t.h 1758 - CLEANUP: include: move sample_data out of sample-t.h 1759 - REORG: include: move the error reporting functions to from log.h to errors.h 1760 - BUILD: reorder objects in the Makefile for faster builds 1761 - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate 1762 - CLEANUP: include: make atomic.h part of the base API 1763 - REORG: include: move MAX_THREADS to defaults.h 1764 - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h 1765 - CLEANUP: include: tree-wide alphabetical sort of include files 1766 - REORG: include: make list-t.h part of the base API 1767 - REORG: dgram: rename proto_udp to dgram 1768 17692020/05/22 : 2.2-dev8 1770 - MINOR: checks: Improve report of unexpected errors for expect rules 1771 - MEDIUM: checks: Add matching on log-format string for expect rules 1772 - DOC: Fix req.body and co documentation to be accurate 1773 - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead 1774 - CLEANUP: checks: sort and rename tcpcheck_expect_type types 1775 - MINOR: checks: Use dedicated actions to send log-format strings in send rules 1776 - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules 1777 - MINOR: checks/sample: Remove unnecessary tests on the sample session 1778 - REGTEST: checks: Adapt SSL error message reported when connection is rejected 1779 - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly 1780 - MINOR: checks: Support log-format string to set the URI for HTTP send rules 1781 - MINOR: checks: Support log-format string to set the body for HTTP send rules 1782 - DOC: Be more explicit about configurable check ok/error/timeout status 1783 - MINOR: checks: Make matching on HTTP headers for expect rules less obscure 1784 - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT 1785 - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur 1786 - REGTESTS: make the http-check-send test require version 2.2 1787 - BUG/MINOR: http-ana: fix NTLM response parsing again 1788 - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer 1789 - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered 1790 - MINOR: cfgparse: Improve error message for invalid \x sequences 1791 - CI: travis-ci: enable arm64 builds again 1792 - MEDIUM: ssl: increase default-dh-param to 2048 1793 - CI: travis-ci: skip pcre2 on arm64 build 1794 - CI: travis-ci: extend the build time for SSL to 60 minutes 1795 - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM 1796 - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET 1797 - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h 1798 - CLEANUP: remove THREAD_LOCAL from config.h 1799 - CI: travis-ci: upgrade LibreSSL versions 1800 - DOC: assorted typo fixes in the documentation 1801 - CI: extend spellchecker whitelist 1802 - CLEANUP: assorted typo fixes in the code and comments 1803 - MAJOR: contrib: porting spoa_server to support python3 1804 - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect 1805 - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done 1806 - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection 1807 - MINOR: checks: Don't try to send outgoing data if waiting to be able to send 1808 - MINOR: sample: Move aes_gcm_dec implementation into sample.c 1809 - MINOR: sample: Add digest and hmac converters 1810 - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed 1811 - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0 1812 - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools" 1813 - BUG/MINOR: pollers: remove uneeded free in global init 1814 - CLEANUP: select: enhance readability in init 1815 - BUG/MINOR: soft-stop: always wake up waiting threads on stopping 1816 - MINOR: soft-stop: let the first stopper only signal other threads 1817 - BUILD: select: only declare existing local labels to appease clang 1818 - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry. 1819 - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP. 1820 - DOC: retry-on can only be used with mode http 1821 - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages 1822 - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism 1823 - MINOR: ssl: add a new function ssl_sock_get_ssl_object() 1824 - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate 1825 - REORG: ssl: move macros and structure definitions to ssl_sock.h 1826 - CLEANUP: ssl: remove the shsess_* macros 1827 - REORG: move the crt-list structures in their own .h 1828 - REORG: ssl: move the ckch structures to types/ssl_ckch.h 1829 - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h 1830 - REORG: ssl: move crtlist functions to src/ssl_crtlist.c 1831 - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h 1832 - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c 1833 - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c 1834 - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c 1835 - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c 1836 - REORG: ssl: move ssl configuration to cfgparse-ssl.c 1837 - MINOR: ssl: remove static keyword in some SSL utility functions 1838 - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues 1839 - REORG: ssl: move sample fetches to src/ssl_sample.c 1840 - REORG: ssl: move utility functions to src/ssl_utils.c 1841 - DOC: ssl: update MAINTAINERS file 1842 - CI: travis-ci: switch arm64 builds to use openssl from distro 1843 - MINOR: stats: Prepare for more accurate moving averages 1844 - MINOR: stats: Expose native cum_req metric for a server 1845 - MEDIUM: stats: Enable more accurate moving average calculation for stats 1846 - BUILD: ssl: include buffer common headers for ssl_sock_ctx 1847 - BUILD: ssl: include errno.h in ssl_crtlist.c 1848 - CLEANUP: acl: remove unused assignment 1849 - DOC/MINOR: halog: Add long help info for ic flag 1850 - BUILD: ssl: fix build without OPENSSL_NO_ENGINE 1851 - DOC: SPOE is no longer experimental 1852 - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt() 1853 - MINOR: config: Don't dump keywords if argument is NULL 1854 - MEDIUM: checks: Make post-41 the default mode for mysql checks 1855 - BUG/MINOR: logs: prevent double line returns in some events. 1856 - MEDIUM: sink: build header in sink_write for log formats 1857 - MEDIUM: logs: buffer targets now rely on new sink_write 1858 - MEDIUM: sink: add global statement to create a new ring (sink buffer) 1859 - MEDIUM: hpack: use a pool for the hpack table 1860 - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason 1861 - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching 1862 - MINOR: applet: adopt the wait list entry from the CLI 1863 - MINOR: ring: make the applet code not depend on the CLI 1864 - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)" 1865 - CI: travis-ci: fix libslz download URL 1866 - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver 1867 - CLEANUP: http_ana: Remove unused TXN flags 1868 - BUG/MINOR: http-rules: Mark http return rules as final 1869 - MINOR: http-htx: Add http_reply type based on what is used for http return rules 1870 - CLEANUP: http-htx: Rename http_error structure into http_error_msg 1871 - MINOR: http-rules: Use http_reply structure for http return rules 1872 - MINOR: http-htx: Use a dedicated function to release http_reply objects 1873 - MINOR: http-htx: Use a dedicated function to parse http reply arguments 1874 - MINOR: http-htx: Use a dedicated function to check http reply validity 1875 - MINOR: http-ana: Use a dedicated function to send a response from an http reply 1876 - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules 1877 - MINOR: http-htx: Store default error messages in a global http reply array 1878 - MINOR: http-htx: Store messages of an http-errors section in a http reply array 1879 - MINOR: http-htx: Store errorloc/errorfile messages in http replies 1880 - MINOR: proxy: Add references on http replies for proxy error messages 1881 - MINOR: http-htx: Use http reply from the http-errors section 1882 - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation 1883 - MEDIUM: http-ana: Use http replies for HTTP error messages 1884 - CLEANUP: http-htx: Remove unused storage of error messages in buffers 1885 - MINOR: htx: Add a function to copy a buffer in an HTX message 1886 - CLEANUP: channel: Remove channel_htx_copy_msg() function 1887 - MINOR: http-ana: Add a function to write an http reply in an HTX message 1888 - MINOR: http-htx/proxy: Add http-error directive using http return syntax 1889 - DOC: Fix "errorfile" description in the configuration manual 1890 - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified 1891 - BUILD: hpack: make sure the hpack table can still be built standalone 1892 - CONTRIB: hpack: make use of the simplified standalone HPACK API 1893 - MINOR: connection: add pp2-never-send-local to support old PP2 behavior 1894 18952020/05/05 : 2.2-dev7 1896 - MINOR: version: Show uname output in display_version() 1897 - CI: run weekly OpenSSL "no-deprecated" builds 1898 - CLEANUP: log: fix comment of parse_logformat_string() 1899 - DOC: Improve documentation on http-request set-src 1900 - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list' 1901 - MINOR: ssl/cli: restrain certificate path when inserting into a directory 1902 - MINOR: ssl: add ssl-skip-self-issued-ca global option 1903 - BUG/MINOR: ssl: default settings for ssl server options are not used 1904 - MINOR: config: add a global directive to set default SSL curves 1905 - BUG/MEDIUM: http-ana: Handle NTLM messages correctly. 1906 - DOC: internals: update the SSL architecture schema 1907 - BUG/MINOR: tools: fix the i386 version of the div64_32 function 1908 - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom() 1909 - BUG/MINOR: http: make url_decode() optionally convert '+' to SP 1910 - DOC: option logasap does not depend on mode 1911 - MEDIUM: memory: make pool_gc() run under thread isolation 1912 - MINOR: contrib: make the peers wireshark dissector a plugin 1913 - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors 1914 - BUG/MINOR: check: Update server address and port to execute an external check 1915 - MINOR: mini-clist: Add functions to iterate backward on a list 1916 - MINOR: checks: Add a way to send custom headers and payload during http chekcs 1917 - MINOR: server: respect warning and alert semantic 1918 - BUG/MINOR: checks: Respect the no-check-ssl option 1919 - BUG/MEDIUM: server/checks: Init server check during config validity check 1920 - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port 1921 - BUG/MINOR: checks: chained expect will not properly wait for enough data 1922 - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented 1923 - MINOR: checks: Use an enum to describe the tcp-check rule type 1924 - MINOR: checks: Simplify connection flag parsing in tcp-check connect 1925 - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data 1926 - MINOR: checks: simplify tcp expect config parser 1927 - MINOR: checks: add min-recv tcp-check expect option 1928 - MINOR: checks: add linger option to tcp connect 1929 - MINOR: checks: define a tcp expect type 1930 - MEDIUM: checks: rewrite tcp-check expect block 1931 - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules 1932 - MINOR: checks: add rbinary expect match type 1933 - MINOR: checks: Simplify functions to get step id and comment 1934 - MEDIUM: checks: capture groups in expect regexes 1935 - MINOR: checks: Don't use a static tcp rule list head 1936 - MEDIUM: checks: Use a non-comment rule iterator to get next rule 1937 - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules 1938 - MINOR: checks: Set the tcp-check rule index during parsing 1939 - MINOR: checks: define tcp-check send type 1940 - MINOR: checks: define a tcp-check connect type 1941 - MEDIUM: checks: Add implicit tcp-check connect rule 1942 - MAJOR: checks: Refactor and simplify the tcp-check loop 1943 - MEDIUM: checks: Associate a session to each tcp-check healthcheck 1944 - MINOR: checks/vars: Add a check scope for variables 1945 - MEDIUM: checks: Parse custom action rules in tcp-checks 1946 - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks 1947 - MINOR: checks: Add the sni option for tcp-check connect rules 1948 - MINOR: checks: Add the via-socks4 option for tcp-check connect rules 1949 - MINOR: checks: Add the alpn option for tcp-check connect rules 1950 - MINOR: ssl: Export a generic function to parse an alpn string 1951 - MINOR: checks: Add the default option for tcp-check connect rules 1952 - MINOR: checks: Add the addr option for tcp-check connect rule 1953 - MEDIUM: checks: Support expression to set the port 1954 - MEDIUM: checks: Support log-format strings for tcp-check send rules 1955 - MINOR: log: Don't depends on a stream to process samples in log-format string 1956 - MINOR: log: Don't systematically set LW_REQ when a sample expr is added 1957 - MEDIUM: checks: Add a shared list of tcp-check rules 1958 - MINOR: sample: add htonl converter 1959 - MINOR: sample: add cut_crlf converter 1960 - MINOR: sample: add ltrim converter 1961 - MINOR: sample: add rtrim converter 1962 - MINOR: checks: Use a name for the healthcheck status enum 1963 - MINOR: checks: Add option to tcp-check expect rules to customize error status 1964 - MINOR: checks: Merge tcp-check comment rules with the others at config parsing 1965 - MINOR: checks: Add a sample fetch to extract a block from the input check buffer 1966 - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules 1967 - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules 1968 - MINOR: checks: Relax the default option for tcp-check connect rules 1969 - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset 1970 - MINOR: checks: Export the tcpcheck_eval_ret enum 1971 - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages 1972 - MINOR: checks: Support custom functions to eval a tcp-check expect rules 1973 - MEDIUM: checks: Implement redis check using tcp-check rules 1974 - MEDIUM: checks: Implement ssl-hello check using tcp-check rules 1975 - MEDIUM: checks: Implement smtp check using tcp-check rules 1976 - MEDIUM: checks: Implement postgres check using tcp-check rules 1977 - MEDIUM: checks: Implement MySQL check using tcp-check rules 1978 - MEDIUM: checks: Implement LDAP check using tcp-check rules 1979 - MEDIUM: checks: Implement SPOP check using tcp-check rules 1980 - MINOR: server/checks: Move parsing of agent keywords in checks.c 1981 - MINOR: server/checks: Move parsing of server check keywords in checks.c 1982 - MEDIUM: checks: Implement agent check using tcp-check rules 1983 - REGTEST: Adapt regtests about checks to recent changes 1984 - MINOR: Produce tcp-check info message for pure tcp-check rules only 1985 - MINOR: checks: Add an option to set success status of tcp-check expect rules 1986 - MINOR: checks: Improve log message of tcp-checks on success 1987 - MINOR: proxy/checks: Move parsing of httpchk option in checks.c 1988 - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c 1989 - MINOR: proxy/checks: Register a keyword to parse http-check rules 1990 - MINOR: proxy/checks: Move parsing of external-check option in checks.c 1991 - MINOR: proxy/checks: Register a keyword to parse external-check rules 1992 - MEDIUM: checks: Use a shared ruleset to store tcp-check rules 1993 - MINOR: checks: Use an indirect string to represent the expect matching string 1994 - MINOR: checks: Introduce flags to configure in tcp-check expect rules 1995 - MINOR: standard: Add my_memspn and my_memcspn 1996 - MINOR: checks: Add a reverse non-comment rule iterator to get last rule 1997 - MAJOR: checks: Implement HTTP check using tcp-check rules 1998 - MINOR: checks: Make resume conditions more explicit in tcpcheck_main() 1999 - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux 2000 - MEDIUM: checks: Refactor how data are received in tcpcheck_main() 2001 - MINOR: checks/obj_type: Add a new object type for checks 2002 - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function 2003 - MINOR: checks: Use the check as origin when a session is created 2004 - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule 2005 - MINOR: connection: Add a function to install a mux for a health-check 2006 - MAJOR: checks: Use the best mux depending on the protocol for health checks 2007 - MEDIUM: checks: Implement default TCP check using tcp-check rules 2008 - MINOR: checks: Remove unused code about pure TCP checks 2009 - CLEANUP: checks: Reorg checks.c file to be more readable 2010 - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes 2011 - MINOR: ist: Add a function to retrieve the ist pointer 2012 - MINOR: checks: Use ist API as far as possible 2013 - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains 2014 - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets 2015 - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks 2016 - REGTEST: Add scripts to test based tcp-check health-checks 2017 - Revert "MEDIUM: checks: capture groups in expect regexes" 2018 - DOC: Add documentation about comments for tcp-check and http-check directives 2019 - DOC: Fix the tcp-check and http-check directives layout 2020 - BUG/MEDIUM: checks: Use the mux protocol specified on the server line 2021 - MINOR: checks: Support mux protocol definition for tcp and http health checks 2022 - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it 2023 - MINOR: checks: Support list of status codes on http-check expect rules 2024 - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed 2025 - REGTEST: Add a script to validate agent checks 2026 - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable 2027 - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect 2028 - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support 2029 - BUG/MINOR: checks/server: use_ssl member must be signed 2030 - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux 2031 - BUG/MEDIUM: checks: Destroy the conn-stream before the session 2032 - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet 2033 - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6 2034 - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules 2035 - MINOR: checks: Use ver keyword to specify the HTTP version for http checks 2036 - BUG/MINOR: checks: Remove wrong variable redeclaration 2037 - BUG/MINOR: checks: Properly handle truncated mysql server messages 2038 - CLEANUP: checks: Remove unused code when ldap server message is parsed 2039 - MINOR: checks: Make the use of the check's server more explicit on connect 2040 - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed 2041 - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed 2042 - BUG/MINOR: checks: Don't lose warning on proxy capability 2043 - MINOR: log: Add "Tu" timer 2044 - BUG/MINOR: checks: Set the output buffer length before calling parse_binary() 2045 - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections 2046 - REGTEST: ssl: test the client certificate authentication 2047 - DOC: give a more accurate description of what check does 2048 - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream 2049 - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream 2050 - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam 2051 - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam 2052 - CLEANUP: http: add a few comments on certain functions' assumptions about streams 2053 - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream 2054 - MINOR: http-htx: Export functions to update message authority and host 2055 - MINOR: checks: Don't support multiple host header for http-check send rule 2056 - MINOR: checks: Skip some headers for http-check send rules 2057 - MINOR: checks: Keep the Host header and the request uri synchronized 2058 - CLEANUP: checks: Fix checks includes 2059 - DOC: Fix send rules in the http-check connect example 2060 - DOC: Add more info about request formatting in http-check send description 2061 - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script 2062 - REGTEST: ssl: remove curl from the "add ssl crt-list" test 2063 - REGTEST: ssl: improve the "set ssl cert" test 2064 - CLEANUP: ssl: silence a build warning when threads are disabled 2065 - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop 2066 - MINOR: threads: export the POSIX thread ID in panic dumps 2067 - BUG/MINOR: debug: properly use long long instead of long for the thread ID 2068 - BUG/MEDIUM: shctx: really check the lock's value while waiting 2069 - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock 2070 - MINOR: stream: report the list of active filters on stream crashes 2071 - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection 2072 - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release() 2073 - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach() 2074 - BUG/MEDIUM: connections: force connections cleanup on server changes 2075 - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed 2076 - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id() 2077 - CLEANUP: connections: align function declaration 2078 - BUG/MINOR: sample: Set the correct type when a binary is converted to a string 2079 - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples 2080 - DOC: Document the log-format parameter for tcp-check send/send-binary rules 2081 - MINOR: checks: Add support of payload-based sample fetches 2082 - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches 2083 - MINOR: checks: Add support of server side ssl sample fetches 2084 - MINOR: checks: Add support of HTTP response sample fetches 2085 - MINOR: http-htx: Support different methods to look for header names 2086 - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing 2087 - BUG/MINOR: checks: Support multiple HTTP expect rules 2088 - REGTEST: checks: Fix sync condition for agent-check 2089 - MEDIUM: checks: Support matching on headers for http-check expect rules 2090 - MINOR: lua: allow changing port with set_addr 2091 - BUG/MINOR: da: Fix HTX message prefetch 2092 - BUG/MINOR: wurfl: Fix HTX message prefetch 2093 - BUG/MINOR: 51d: Fix HTX message prefetch 2094 - MINOR: ist: add istadv() function 2095 - MINOR: ist: add istissame() function 2096 - MINOR: istbuf: add ist2buf() function 2097 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS() 2098 - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}() 2099 - DOC: update intro.txt for 2.2 2100 - DOC: intro: add a contacts section 2101 21022020/04/17 : 2.2-dev6 2103 - BUG/MINOR: ssl: memory leak when find_chain is NULL 2104 - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain 2105 - MINOR: ssl: rework add cert chain to CTX to be libssl independent 2106 - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized 2107 - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL 2108 - BUG/MINOR: peers: Use after free of "peers" section. 2109 - CI: github actions: add weekly h2spec test 2110 - BUG/MEDIUM: mux_h1: Process a new request if we already received it. 2111 - MINOR: build: Fix build in mux_h1 2112 - CLEANUP: remove obsolete comments 2113 - BUG/MEDIUM: dns: improper parsing of aditional records 2114 - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx 2115 - MINOR: listener: add so_name sample fetch 2116 - MEDIUM: stream: support use-server rules with dynamic names 2117 - MINOR: servers: Add a counter for the number of currently used connections. 2118 - MEDIUM: connections: Revamp the way idle connections are killed 2119 - MINOR: cli: add a general purpose pointer in the CLI struct 2120 - MINOR: ssl: add a list of bind_conf in struct crtlist 2121 - REORG: ssl: move SETCERT enum to ssl_sock.h 2122 - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry 2123 - REORG: ssl: move some functions above crtlist_load_cert_dir() 2124 - MINOR: ssl: use crtlist_free() upon error in directory loading 2125 - MINOR: ssl: add a list of crtlist_entry in ckch_store 2126 - MINOR: ssl: store a ptr to crtlist in crtlist_entry 2127 - MINOR: ssl/cli: update pointer to store in 'commit ssl cert' 2128 - MEDIUM: ssl/cli: 'add ssl crt-list' command 2129 - REGTEST: ssl/cli: test the 'add ssl crt-list' command 2130 - BUG/MINOR: ssl: entry->ckch_inst not initialized 2131 - REGTEST: ssl/cli: change test type to devel 2132 - REGTEST: make the PROXY TLV validation depend on version 2.2 2133 - CLEANUP: assorted typo fixes in the code and comments 2134 - BUG/MINOR: stats: Fix color of draining servers on stats page 2135 - DOC: internals: Fix spelling errors in filters.txt 2136 - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused. 2137 - REGTEST: make the unique-id test depend on version 2.0 2138 - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive 2139 - MINOR: ssl: split the line parsing of the crt-list 2140 - MINOR: ssl/cli: support filters and options in add ssl crt-list 2141 - MINOR: ssl: add a comment above the ssl_bind_conf keywords 2142 - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list 2143 - REGTEST: ssl: pollute the crt-list file 2144 - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping 2145 - BUG/MINOR: protocol_buffer: Wrong maximum shifting. 2146 - CLEANUP: src/fd.c: mask setsockopt with DISGUISE 2147 - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry 2148 - REGTEST: ssl/cli: add other cases of 'add ssl crt-list' 2149 - CLEANUP: assorted typo fixes in the code and comments 2150 - DOC: management: add the new crt-list CLI commands 2151 - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list' 2152 - MINOR: ssl/cli: 'del ssl crt-list' delete an entry 2153 - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option 2154 - CI: use better SSL library definition 2155 - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds 2156 - CI: travis-ci: upgrade openssl to 1.1.1f 2157 - MINOR: ssl: improve the errors when a crt can't be open 2158 - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD 2159 - CI: adopt openssl download script to download all versions 2160 - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete 2161 - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list 2162 - MINOR: ssl/cli: 'del ssl cert' deletes a certificate 2163 - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached 2164 - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert' 2165 - CLEANUP: ssl: use the refcount for the SSL_CTX' 2166 - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry 2167 - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain 2168 - CLEANUP: ssl: remove a commentary in struct ckch_inst 2169 - MINOR: ssl: initialize all list in ckch_inst_new() 2170 - MINOR: ssl: free instances and SNIs with ckch_inst_free() 2171 - MINOR: ssl: replace ckchs_free() by ckch_store_free() 2172 - BUG/MEDIUM: ssl/cli: trying to access to free'd memory 2173 - MINOR: ssl: ckch_store_new() alloc and init a ckch_store 2174 - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist 2175 - REORG: ssl: move some free/new functions 2176 - MINOR: ssl: crtlist_entry_{new, free} 2177 - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing 2178 - MINOR: ssl: don't alloc ssl_conf if no option found 2179 - BUG/MINOR: connection: always send address-less LOCAL PROXY connections 2180 - BUG/MINOR: peers: Incomplete peers sections should be validated. 2181 - MINOR: init: report in "haproxy -c" whether there were warnings or not 2182 - MINOR: init: add -dW and "zero-warning" to reject configs with warnings 2183 - MINOR: init: report the compiler version in haproxy -vv 2184 - CLEANUP: assorted typo fixes in the code and comments 2185 - MINOR: init: report the haproxy version and executable path once on errors 2186 - DOC: Make how "option redispatch" works more explicit 2187 - BUILD: Makefile: add linux-musl to TARGET 2188 - CLEANUP: assorted typo fixes in the code and comments 2189 - CLEANUP: http: Fixed small typo in parse_http_return 2190 - DOC: hashing: update link to hashing functions 2191 21922020/03/23 : 2.2-dev5 2193 - CLEANUP: ssl: is_default is a bit in ckch_inst 2194 - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters 2195 - DOC: ssl: clarify security implications of TLS tickets 2196 - CLEANUP: remove support for Linux i686 vsyscalls 2197 - CLEANUP: drop support for USE_MY_ACCEPT4 2198 - CLEANUP: remove support for USE_MY_EPOLL 2199 - CLEANUP: remove support for USE_MY_SPLICE 2200 - CLEANUP: remove the now unused common/syscall.h 2201 - BUILD: make dladdr1 depend on glibc version and not __USE_GNU 2202 - BUILD: wdt: only test for SI_TKILL when compiled with thread support 2203 - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS 2204 - CLEANUP: ssl: separate the directory loading in a new function 2205 - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer. 2206 - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL; 2207 - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock() 2208 - MEDIUM: init: always try to push the FD limit when maxconn is set from -m 2209 - BUG/MAJOR: list: fix invalid element address calculation 2210 - BUILD: stream-int: fix a few includes dependencies 2211 - MINOR: mt_lists: Appease gcc. 2212 - MINOR: lists: Implement function to convert list => mt_list and mt_list => list 2213 - MINOR: servers: Kill priv_conns. 2214 - MINOR: lists: fix indentation. 2215 - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64 2216 - BUG/MEDIUM: connections: Don't assume the connection has a valid session. 2217 - BUG/MEDIUM: pools: Always update free_list in pool_gc(). 2218 - BUG/MINOR: haproxy: always initialize sleeping_thread_mask 2219 - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping 2220 - BUG/MINOR: haproxy/threads: try to make all threads leave together 2221 - Revert "BUILD: travis-ci: enable s390x builds" 2222 - BUILD: travis-ci: enable regular s390x builds 2223 - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID 2224 - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections 2225 - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2 2226 - CLEANUP: connection: Add blank line after declarations in PP handling 2227 - CLEANUP: assorted typo fixes in the code and comments 2228 - CI: add spellcheck github action 2229 - DOC: correct typo in alert message about rspirep 2230 - CI: travis: switch linux builds to clang-9 2231 - MINOR: debug: add a new DISGUISE() macro to pass a value as identity 2232 - MINOR: debug: consume the write() result in BUG_ON() to silence a warning 2233 - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result 2234 - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF 2235 - CLEANUP: connection: Stop directly setting an ist's .ptr 2236 - CI: travis: revert to clang-7 for BoringSSL tests 2237 - BUILD: on ARM, must be linked to libatomic. 2238 - BUILD: makefile: fix regex syntax in ARM platform detection 2239 - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases. 2240 - REORG: ssl: move ssl_sock_load_cert() 2241 - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs() 2242 - MEDIUM: ssl: allow crt-list caching 2243 - MINOR: ssl: directories are loaded like crt-list 2244 - BUG/MINOR: ssl: can't open directories anymore 2245 - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area 2246 - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock. 2247 - MINOR: mux_pt: Don't try to remove the connection from the idle list. 2248 - MINOR: ssl/cli: show/dump ssl crt-list 2249 - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist 2250 - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock. 2251 - BUG/MINOR: ssl: memory leak in crtlist_parse_file() 2252 - MINOR: tasks: Provide the tasklet to the callback. 2253 - BUG/MINOR: ssl: memleak of struct crtlist_entry 2254 - BUG/MINOR: pattern: Do not pass len = 0 to calloc() 2255 - BUILD: makefile: fix expression again to detect ARM platform 2256 - CI: travis: re-enable ASAN on clang 2257 - CI: travis: proper group output redirection together with travis_wait 2258 - DOC: assorted typo fixes in the documentation 2259 - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h. 2260 - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue(). 2261 - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc. 2262 - MINOR: ssl/cli: 'new ssl cert' command 2263 - MINOR: ssl/cli: show certificate status in 'show ssl cert' 2264 - MEDIUM: sessions: Don't be responsible for connections anymore. 2265 - MEDIUM: servers: Split the connections into idle, safe, and available. 2266 - MINOR: fd: Implement fd_takeover(). 2267 - MINOR: connections: Add a new mux method, "takeover". 2268 - MINOR: connections: Make the "list" element a struct mt_list instead of list. 2269 - MINOR: connections: Add a flag to know if we're in the safe or idle list. 2270 - MEDIUM: connections: Attempt to get idle connections from other threads. 2271 - MEDIUM: mux_h1: Implement the takeover() method. 2272 - MEDIUM: mux_h2: Implement the takeover() method. 2273 - MEDIUM: mux_fcgi: Implement the takeover() method. 2274 - MEDIUM: connections: Kill connections even if we are reusing one. 2275 - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters. 2276 - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure 2277 - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements 2278 - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0 2279 - BUG/MEDIUM: build: Fix compilation by spelling decl correctly. 2280 - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern. 2281 - CI: run travis-ci builds on push only, skip pull requests 2282 - CI: temporarily disable unstable travis arm64 builds 2283 - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert' 2284 - BUG/MINOR: connections: Make sure we free the connection on failure. 2285 - BUG/MINOR: ssl/cli: fix a potential NULL dereference 2286 - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list. 2287 - BUG/MINOR: connections: Set idle_time before adding to idle list. 2288 - MINOR: muxes: Note that we can't usee a connection when added to the srv idle. 2289 - REGTEST: increase timeouts on the seamless-reload test 2290 - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection 2291 - CLEANUP: haproxy/threads: don't check global_tasks_mask twice 2292 22932020/03/09 : 2.2-dev4 2294 - MEDIUM: buffer: remove the buffer_wq lock 2295 - MINOR: ssl: move find certificate chain code to its own function 2296 - MINOR: ssl: resolve issuers chain later 2297 - MINOR: ssl: resolve ocsp_issuer later 2298 - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:" 2299 - BUG/MINOR: h2: reject again empty :path pseudo-headers 2300 - MINOR: wdt: always clear sigev_value to make valgrind happy 2301 - MINOR: epoll: always initialize all of epoll_event to please valgrind 2302 - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch 2303 - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null() 2304 - BUILD: cirrus-ci: suppress OS version check when installing packages 2305 - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits 2306 - CLEANUP: fd: remove the FD_EV_STATUS aggregate 2307 - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags 2308 - MINOR: fd: merge the read and write error bits into RW error 2309 - BUG/MINOR: dns: ignore trailing dot 2310 - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric 2311 - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name 2312 - MINOR: mux-h1: Remove useless case-insensitive comparisons 2313 - MINOR: rawsock: always mark the FD not ready when we're certain it happens 2314 - MEDIUM: connection: make the subscribe() call able to wakeup if ready 2315 - MEDIUM: connection: don't stop receiving events in the FD handler 2316 - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore 2317 - BUG/MINOR: arg: don't reject missing optional args 2318 - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log 2319 - MINOR: debug: report the task handler's pointer relative to main 2320 - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump 2321 - MINOR: haproxy: export main to ease access from debugger 2322 - MINOR: haproxy: export run_poll_loop 2323 - MINOR: task: export run_tasks_from_list 2324 - BUILD: tools: remove obsolete and conflicting trace() from standard.c 2325 - MINOR: tools: add new function dump_addr_and_bytes() 2326 - MINOR: tools: add resolve_sym_name() to resolve function pointers 2327 - MINOR: debug: use resolve_sym_name() to dump task handlers 2328 - MINOR: cli: make "show fd" rely on resolve_sym_name() 2329 - MEDIUM: debug: add support for dumping backtraces of stuck threads 2330 - MINOR: debug: call backtrace() once upon startup 2331 - MINOR: ssl: add "ca-verify-file" directive 2332 - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled 2333 - BUILD: Makefile: include librt before libpthread 2334 - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available 2335 - MINOR: wdt: do not depend on USE_THREAD 2336 - MINOR: debug: report the number of entries in the backtrace 2337 - MINOR: debug: improve backtrace() on aarch64 and possibly other systems 2338 - MINOR: debug: use our own backtrace function on clang+x86_64 2339 - MINOR: debug: dump the whole trace if we can't spot the starting point 2340 - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms 2341 - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr() 2342 - CLEANUP: contrib/spoa_example: Fix several typos 2343 - BUILD: makefile: do not modify the build options during make reg-tests 2344 - BUG/MEDIUM: connection: stop polling for sending when the event is ready 2345 - MEDIUM: stream-int: make sure to try to immediately validate the connection 2346 - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect() 2347 - MEDIUM: connection: only call ->wake() for connect() without I/O 2348 - OPTIM: connection: disable receiving on disabled events when the run queue is too high 2349 - OPTIM: mux-h1: subscribe rather than waking up at a few other places 2350 - REGTEST: Add unique-id reg-test 2351 - MINOR: stream: Add stream_generate_unique_id function 2352 - MINOR: stream: Use stream_generate_unique_id 2353 - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore 2354 - MINOR: ssl/cli: support crt-list filters 2355 - MINOR: ssl: reach a ckch_store from a sni_ctx 2356 - DOC: fix incorrect indentation of http_auth_* 2357 - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters 2358 - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size 2359 - MINOR: ist: Add `IST_NULL` macro 2360 - MINOR: ist: Add `int isttest(const struct ist)` 2361 - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)` 2362 - CLEANUP: Use `isttest()` and `istfree()` 2363 - MINOR: ist: Add `struct ist istdup(const struct ist)` 2364 - MINOR: proxy: Make `header_unique_id` a `struct ist` 2365 - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist` 2366 - OPTIM: startup: fast unique_id allocation for acl. 2367 - DOC: configuration.txt: fix various typos 2368 - DOC: assorted typo fixes in the documentation and Makefile 2369 - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits 2370 - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths 2371 - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs 2372 - MINOR: buf: Add function to insert a string at an absolute offset in a buffer 2373 - MINOR: htx: Add a function to return a block at a specific offset 2374 - MINOR: htx: Use htx_find_offset() to truncate an HTX message 2375 - MINOR: flt_trace: Use htx_find_offset() to get the available payload length 2376 - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data 2377 - BUG/MINOR: filters: Forward everything if no data filters are called 2378 - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload 2379 - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload 2380 - BUG/MINOR: http-ana: Reset request analysers on a response side error 2381 - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action 2382 - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not 2383 - MINOR: lua: Add function to know if a channel is a response one 2384 - MINOR: lua: Stop using the lua txn in hlua_http_get_headers() 2385 - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr() 2386 - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr() 2387 - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY 2388 - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time() 2389 - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function 2390 - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction 2391 - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action 2392 - BUG/MINOR: http-rules: Fix a typo in the reject action function 2393 - MINOR: cache/filters: Initialize the cache filter when stream is created 2394 - MINOR: compression/filters: Initialize the comp filter when stream is created 2395 - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action 2396 - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed 2397 - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop 2398 - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response 2399 - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h 2400 - BUILD: ssl: include mini-clist.h 2401 - BUILD: global: must not include common/standard.h but only types/freq_ctr.h 2402 - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h 2403 - BUILD: listener: types/listener.h must not include standard.h 2404 - BUG/MEDIUM: random: initialize the random pool a bit better 2405 - BUG/MEDIUM: random: implement per-thread and per-process random sequences 2406 - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences" 2407 - BUILD: cirrus-ci: get rid of unstable freebsd images 2408 - MINOR: tools: add 64-bit rotate operators 2409 - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG 2410 - MINOR: backend: use a single call to ha_random32() for the random LB algo 2411 - BUG/MINOR: checks/threads: use ha_random() and not rand() 2412 - MINOR: sample: make all bits random on the rand() sample fetch 2413 - MINOR: tools: add a generic function to generate UUIDs 2414 - DOC: fix typo about no-tls-tickets 2415 - DOC: improve description of no-tls-tickets 2416 - DOC: assorted typo fixes in the documentation 2417 - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions 2418 24192020/02/25 : 2.2-dev3 2420 - SCRIPTS: announce-release: place the send command in the mail's header 2421 - SCRIPTS: announce-release: allow the user to force to overwrite old files 2422 - SCRIPTS: backport: fix the master branch detection 2423 - BUG/MINOR: http-act: Set stream error flag before returning an error 2424 - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions 2425 - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init 2426 - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules 2427 - DOC: schematic of the SSL certificates architecture 2428 - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed 2429 - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit 2430 - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming 2431 - BUILD: cirrus-ci: workaround "pkg install" bug 2432 - BUILD: cirrus-ci: add ERR=1 to freebsd builds 2433 - BUG/MINOR: connection: correctly retry I/O on signals 2434 - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0) 2435 - BUILD: http_act: cast file sizes when reporting file size error 2436 - BUG/MEDIUM: listener: only consider running threads when resuming listeners 2437 - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init 2438 - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener 2439 - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs 2440 - BUILD: travis-ci: no more allowed failures for openssl-1.0.2 2441 - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors) 2442 - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME} 2443 - BUG/MINOR: tcp: don't try to set defaultmss when value is negative 2444 - SCRIPTS: make announce-release executable again 2445 - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat 2446 - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method. 2447 - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param 2448 - CLEANUP: ssl: remove unused functions in openssl-compat.h 2449 - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex 2450 - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier 2451 - MINOR: chunk: implement chunk_strncpy() to copy partial strings 2452 - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name 2453 - MEDIUM: arg: make make_arg_list() stop after its own arguments 2454 - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them 2455 - MEDIUM: arg: make make_arg_list() support quotes in arguments 2456 - MINOR: sample: make sample_parse_expr() able to return an end pointer 2457 - MEDIUM: log-format: make the LF parser aware of sample expressions' end 2458 - BUG/MINOR: arg: report an error if an argument is larger than bufsize 2459 - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft 2460 - BUILD: enable ERR=1 in github cygwin builds 2461 - BUG/MINOR: arg: fix again incorrect argument length check 2462 - MINOR: sample: regsub now supports backreferences 2463 - BUG/MINOR: tools: also accept '+' as a valid character in an identifier 2464 - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message 2465 - MINOR: filters: Forward data only if the last filter forwards something 2466 - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them 2467 - BUG/MINOR: http-htx: Don't return error if authority is updated without changes 2468 - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed 2469 - BUG/MINOR: sample: exit regsub() in case of trash allocation error 2470 - MINOR: ssl: add "issuers-chain-path" directive. 2471 - REGTESTS: use "command -v" instead of "which" 2472 - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive 2473 - MINOR: http-ana: Match on the path if the monitor-uri starts by a / 2474 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments 2475 - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered 2476 - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage 2477 - MINOR: checks: do not call conn_xprt_stop_send() anymore 2478 - CLEANUP: epoll: place the struct epoll_event in the stack 2479 - MEDIUM: connection: remove the intermediary polling state from the connection 2480 - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send() 2481 - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send() 2482 - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_* 2483 - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv} 2484 - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE 2485 - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant 2486 - MINOR: ist: add an iststop() function 2487 - BUG/MINOR: http: http-request replace-path duplicates the query string 2488 - CLEANUP: sample: use iststop instead of a for loop 2489 - BUG/MEDIUM: shctx: make sure to keep all blocks aligned 2490 - MINOR: compiler: move CPU capabilities definition from config.h and complete them 2491 - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support 2492 - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families 2493 - BUILD: fix recent build failure on unaligned archs 2494 - MINOR: ssl: load the key from a dedicated file 2495 - BUG/MINOR: ssl: load .key in a directory only after PEM 2496 - MINOR: compiler: drop special cases of likely/unlikely for older compilers 2497 - CLEANUP: conn: Do not pass a pointer to likely 2498 - CLEANUP: net_helper: Do not negate the result of unlikely 2499 - BUILD: remove obsolete support for -mregparm / USE_REGPARM 2500 - CLEANUP: cfgparse: Fix type of second calloc() parameter 2501 - BUILD: ssl: only pass unsigned chars to isspace() 2502 - BUILD: general: always pass unsigned chars to is* functions 2503 - BUG/MINOR: sample: fix the json converter's endian-sensitivity 2504 - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions 2505 - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings 2506 - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash 2507 - CLEANUP: stick-tables: use read_u32() to display a node's key 2508 - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask 2509 - MINOR: pattern: fix all remaining strict aliasing issues 2510 - CLEANUP: lua: fix aliasing issues in the address matching code 2511 - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser 2512 - BUILD: makefile: re-enable strict aliasing 2513 - BUG/MINOR: connection: make sure to correctly tag local PROXY connections 2514 - MINOR: compiler: add new alignment macros 2515 - BUILD: ebtree: improve architecture-specific alignment 2516 - MINOR: config: mark global.debug as deprecated 2517 - BUILD: travis-ci: enable s390x builds 2518 - MINOR: ssl/cli: 'show ssl cert' displays the chain 2519 - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain 2520 - MINOR: ssl/cli: reorder 'show ssl cert' output 2521 - CLEANUP: ssl: move issuer_chain tree and definition 2522 - DOC: proxy-protocol: clarify IPv6 address representation in the spec 2523 25242020/02/07 : 2.2-dev2 2525 - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure 2526 - MEDIUM: cli: Allow multiple filter entries for "show table" 2527 - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst. 2528 - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent 2529 - BUILD: stick-table: fix build errors introduced by last stick-table change 2530 - BUG/MINOR: cli: Missing arg offset for filter data values. 2531 - MEDIUM: streams: Always create a conn_stream in connect_server(). 2532 - MEDIUM: connections: Get ride of the xprt_done callback. 2533 - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1 2534 - BUILD: CI: move cygwin builds to Github Actions 2535 - MINOR: cli: Report location of errors or any extra data for "show table" 2536 - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded 2537 - CLEANUP: backend: remove useless test for inexistent connection 2538 - CLEANUP: backend: shut another false null-deref in back_handle_st_con() 2539 - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2 2540 - BUG/MINOR: ssl: increment issuer refcount if in chain 2541 - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer 2542 - BUG/MINOR: ssl: typo in previous patch 2543 - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session(). 2544 - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert" 2545 - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_* 2546 - BUG/MEDIUM: 0rtt: Only consider the SSL handshake. 2547 - MINOR: stream-int: always report received shutdowns 2548 - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE 2549 - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE 2550 - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O 2551 - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early 2552 - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes 2553 - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending 2554 - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH 2555 - BUG/MINOR: stktable: report the current proxy name in error messages 2556 - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers" 2557 - MINOR: lua: Add hlua_prepend_path function 2558 - MINOR: lua: Add lua-prepend-path configuration option 2559 - MINOR: lua: Add HLUA_PREPEND_C?PATH build option 2560 - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines 2561 - BUG/MINOR: http-ana: Increment the backend counters on the backend 2562 - BUG/MINOR: stream: Be sure to have a listener to increment its counters 2563 - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL. 2564 - REGTESTS: make the set_ssl_cert test require version 2.2 2565 - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer. 2566 - MINOR: ssl: Remove dead code. 2567 - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure. 2568 - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con(). 2569 - MEDIUM: streams: Don't close the connection in back_handle_st_con(). 2570 - MEDIUM: streams: Don't close the connection in back_handle_st_rdy(). 2571 - BUILD: CI: disable slow regtests on Travis 2572 - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack 2573 - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions 2574 - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2 2575 - BUG/MINOR: dns: allow 63 char in hostname 2576 - MINOR: proxy: clarify number of connections log when stopping 2577 - DOC: word converter ignores delimiters at the start or end of input string 2578 - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv} 2579 - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2 2580 - MEDIUM: pipe/thread: reduce the locking overhead 2581 - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes 2582 - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters 2583 - MINOR: tasks: move the list walking code to its own function 2584 - MEDIUM: tasks: implement 3 different tasklet classes with their own queues 2585 - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet 2586 - OPTIM: task: refine task classes default CPU bandwidth ratios 2587 - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection. 2588 - MINOR: task: permanently flag tasklets waking themselves up 2589 - MINOR: task: make sched->current also reflect tasklets 2590 - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING 2591 - OPTIM: task: readjust CPU bandwidth distribution since last update 2592 - MINOR: task: don't set TASK_RUNNING on tasklets 2593 - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush(). 2594 - MINOR: memory: Only init the pool spinlock once. 2595 - BUG/MEDIUM: memory: Add a rwlock before freeing memory. 2596 - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty. 2597 - MINOR: ssl: ssl-load-extra-files configure loading of files 2598 - SCRIPTS: add a new "backport" script to simplify long series of backports 2599 - BUG/MINOR: ssl: we may only ignore the first 64 errors 2600 - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts 2601 - BUG/MINOR: ssl: clear the SSL errors on DH loading failure 2602 - CLEANUP: hpack: remove a redundant test in the decoder 2603 - CLEANUP: peers: Remove unused static function `free_dcache` 2604 - CLEANUP: peers: Remove unused static function `free_dcache_tx` 2605 - CONTRIB: debug: add missing flags SF_HTX and SF_MUX 2606 - CONTRIB: debug: add the possibility to decode the value as certain types only 2607 - CONTRIB: debug: support reporting multiple values at once 2608 - BUG/MINOR: http-act: Use the good message to test strict rewritting mode 2609 - MINOR: global: Set default tune.maxrewrite value during global structure init 2610 - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails 2611 - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve 2612 - MINOR: htx: Add a function to append an HTX message to another one 2613 - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer 2614 - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported 2615 - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size 2616 - MINOR: dns: Add function to release memory allocated for a do-resolve rule 2617 - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response 2618 - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect 2619 - MINOR: http-rules: Add a flag on redirect rules to know the rule direction 2620 - MINOR: http-rules: Handle the rule direction when a redirect is evaluated 2621 - MINOR: http-ana: Rely on http_reply_and_close() to handle server error 2622 - MINOR: http-ana: Add a function for forward internal responses 2623 - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses 2624 - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding 2625 - MEDIUM: http-rules: Add the return action to HTTP rules 2626 - MEDIUM: http-rules: Support extra headers for HTTP return actions 2627 - CLEANUP: lua: Remove consistency check for sample fetches and actions 2628 - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response 2629 - MINOR: lua: Get the action return code on the stack when an action finishes 2630 - MINOR: lua: Create the global 'act' object to register all action return codes 2631 - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields 2632 - MEDIUM: lua: Add ability for actions to intercept HTTP messages 2633 - REGTESTS: Add reg tests for the HTTP return action 2634 - REGTESTS: Add a reg test for http-after-response rulesets 2635 - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn 2636 - MINOR: acl: Warn when an ACL is named 'or' 2637 - CONTRIB: debug: also support reading values from stdin 2638 - SCRIPTS: backport: use short revs and resolve the initial commit 2639 - BUG/MINOR: acl: Fix type of log message when an acl is named 'or' 2640 26412020/01/22 : 2.2-dev1 2642 - DOC: this is development again 2643 - MINOR: version: this is development again, update the status 2644 - SCRIPTS: update create-release to fix the changelog on new branches 2645 - CLEANUP: ssl: Clean up error handling 2646 - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only 2647 - BUG/MINOR: h1: Don't test the host header during response parsing 2648 - BUILD/MINOR: trace: fix use of long type in a few printf format strings 2649 - DOC: Clarify behavior of server maxconn in HTTP mode 2650 - MINOR: ssl: deduplicate ca-file 2651 - MINOR: ssl: compute ca-list from deduplicate ca-file 2652 - MINOR: ssl: deduplicate crl-file 2653 - CLEANUP: dns: resolution can never be null 2654 - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty 2655 - DOC: ssl/cli: set/commit/abort ssl cert 2656 - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2 2657 - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive 2658 - BUG/MINOR: stats: Fix HTML output for the frontends heading 2659 - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0 2660 - DOC: clarify matching strings on binary fetches 2661 - DOC: Fix ordered list in summary 2662 - DOC: move the "group" keyword at the right place 2663 - MEDIUM: init: prevent process and thread creation at runtime 2664 - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights 2665 - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data 2666 - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible 2667 - BUG/MINOR: ssl/cli: don't overwrite the filters variable 2668 - BUG/MEDIUM: listener/thread: fix a race when pausing a listener 2669 - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1 2670 - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending 2671 - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN 2672 - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data 2673 - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity(). 2674 - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting. 2675 - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec" 2676 - MEDIUM: init: set NO_NEW_PRIVS by default when supported 2677 - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added 2678 - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted 2679 - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state 2680 - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events 2681 - BUG/MINOR: listener: also clear the error flag on a paused listener 2682 - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept() 2683 - MINOR: listener: make the wait paths cleaner and more reliable 2684 - MINOR: listener: split dequeue_all_listener() in two 2685 - REORG: listener: move the global listener queue code to listener.c 2686 - DOC: document the listener state transitions 2687 - BUG/MEDIUM: kqueue: Make sure we report read events even when no data. 2688 - BUG/MAJOR: dns: add minimalist error processing on the Rx path 2689 - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive. 2690 - DOC: listeners: add a few missing transitions 2691 - BUG/MINOR: tasks: only requeue a task if it was already in the queue 2692 - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups 2693 - DOC: proxies: HAProxy only supports 3 connection modes 2694 - DOC: remove references to the outdated architecture.txt 2695 - BUG/MINOR: log: fix minor resource leaks on logformat error path 2696 - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers 2697 - BUG/MINOR: listener: do not immediately resume on transient error 2698 - BUG/MINOR: server: make "agent-addr" work on default-server line 2699 - BUG/MINOR: listener: fix off-by-one in state name check 2700 - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy() 2701 - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state 2702 - MINOR: http-htx: Add some htx sample fetches for debugging purpose 2703 - REGTEST: Add an HTX reg-test to check an edge case 2704 - DOC: clarify the fact that replace-uri works on a full URI 2705 - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter 2706 - BUG/MINOR: sample: always check converters' arguments 2707 - MINOR: sample: Validate the number of bits for the sha2 converter 2708 - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early. 2709 - MINOR: ssl/cli: 'show ssl cert' give information on the certificates 2710 - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2 2711 - MINOR: debug: support logging to various sinks 2712 - MINOR: http: add a new "replace-path" action 2713 - REGTEST: ssl: test the "set ssl cert" CLI command 2714 - REGTEST: run-regtests: implement #REQUIRE_BINARIES 2715 - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task 2716 - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing 2717 - BUG/MEDIUM: ssl: Revamp the way early data are handled. 2718 - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute 2719 - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd 2720 - REGTEST: make the "set ssl cert" require version 2.1 2721 - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines 2722 - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry 2723 - BUG/MINOR: state-file: do not store duplicates in the global tree 2724 - BUG/MINOR: state-file: do not leak memory on parse errors 2725 - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty 2726 - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream 2727 - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility 2728 - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH 2729 - BUILD: travis-ci: reenable address sanitizer for clang builds 2730 - BUG/MINOR: checks: refine which errno values are really errors. 2731 - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active 2732 - CLEANUP: connection: conn->xprt is never NULL 2733 - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP 2734 - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP 2735 - REORG: connection: move tcp_connect_probe() to conn_fd_check() 2736 - MINOR: connection: check for connection validation earlier 2737 - MINOR: connection: remove the double test on xprt_done_cb() 2738 - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE 2739 - MINOR: poller: do not call the IO handler if the FD is not active 2740 - OPTIM: epoll: always poll for recv if neither active nor ready 2741 - OPTIM: polling: do not create update entries for FD removal 2742 - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready. 2743 - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection. 2744 - BUILD: CI: modernize cirrus-ci 2745 - MINOR: config: disable busy polling on old processes 2746 - MINOR: ssl: Remove unused variable "need_out". 2747 - BUG/MINOR: h1: Report the right error position when a header value is invalid 2748 - BUG/MINOR: proxy: Fix input data copy when an error is captured 2749 - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied 2750 - BUG/MINOR: channel: inject output data at the end of output 2751 - BUG/MEDIUM: session: do not report a failure when rejecting a session 2752 - MEDIUM: dns: implement synchronous send 2753 - MINOR: raw_sock: make sure to disable polling once everything is sent 2754 - MINOR: http: Add 410 to http-request deny 2755 - MINOR: http: Add 404 to http-request deny 2756 - CLEANUP: mux-h2: remove unused goto "out_free_h2s" 2757 - BUILD: cirrus-ci: choose proper openssl package name 2758 - BUG/MAJOR: listener: do not schedule a task-less proxy 2759 - CLEANUP: server: remove unused err section in server_finalize_init 2760 - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf" 2761 - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached 2762 - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free(). 2763 - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send() 2764 - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch 2765 - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert 2766 - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections 2767 - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary 2768 - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs 2769 - REGTEST: mcli/mcli_start_progs: start 2 programs 2770 - BUG/MEDIUM: mworker: remain in mworker mode during reload 2771 - DOC: clarify crt-base usage 2772 - CLEANUP: compression: remove unused deinit_comp_ctx section 2773 - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed(). 2774 - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync. 2775 - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks 2776 - BUG/MAJOR: hashes: fix the signedness of the hash inputs 2777 - REGTEST: add sample_fetches/hashes.vtc to validate hashes 2778 - BUG/MEDIUM: cli: _getsocks must send the peers sockets 2779 - CLEANUP: cli: deduplicate the code in _getsocks 2780 - BUG/MINOR: stream: don't mistake match rules for store-request rules 2781 - BUG/MEDIUM: connection: add a mux flag to indicate splice usability 2782 - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns 2783 - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only 2784 - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf() 2785 - MEDIUM: connection: get rid of CO_FL_CURR_* flags 2786 - BUILD: pattern: include errno.h 2787 - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux 2788 - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux 2789 - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut 2790 - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut 2791 - REORG: stream/backend: move backend-specific stuff to backend.c 2792 - MEDIUM: backend: move the connection finalization step to back_handle_st_con() 2793 - MEDIUM: connection: merge the send_wait and recv_wait entries 2794 - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake 2795 - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock 2796 - MEDIUM: mux-h1: merge recv_wait and send_wait 2797 - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications 2798 - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications 2799 - MINOR: connection: make the last arg of subscribe() a struct wait_event* 2800 - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format. 2801 - DOC: Fix copy and paste mistake in http-response replace-value doc 2802 - BUG/MINOR: cache: Fix leak of cache name in error path 2803 - BUG/MINOR: dns: Make dns_query_id_seed unsigned 2804 - BUG/MINOR: 51d: Fix bug when HTX is enabled 2805 - MINOR: http-htx: Move htx sample fetches in the scope "internal" 2806 - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data' 2807 - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string 2808 - DOC: Add a section to document the internal sample fetches 2809 - MINOR: mux-h1: Inherit send flags from the upper layer 2810 - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics 2811 - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters 2812 - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules 2813 - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing 2814 - MEDIUM: http-rules: Register an action keyword for all http rules 2815 - MINOR: tcp-rules: Always set from which ruleset a rule comes from 2816 - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action 2817 - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR 2818 - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR 2819 - MINOR: counters: Add a counter to report internal processing errors 2820 - MEDIUM: http-ana: Properly handle internal processing errors 2821 - MINOR: http-rules: Add a rule result to report internal error 2822 - MINOR: http-rules: Handle internal errors during HTTP rules evaluation 2823 - MINOR: http-rules: Add more return codes to let custom actions act as normal ones 2824 - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules 2825 - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules 2826 - MINOR: stats: Report internal errors in the proxies/listeners/servers stats 2827 - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server 2828 - MINOR: counters: Remove failed_secu counter and use denied_resp instead 2829 - MINOR: counters: Review conditions to increment counters from analysers 2830 - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites 2831 - MINOR: http-rules: Handle all message rewrites the same way 2832 - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode 2833 - MEDIUM: http-rules: Enable the strict rewriting mode by default 2834 - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc 2835 - MINOR: actions: Add a function pointer to release args used by actions 2836 - MINOR: actions: Regroup some info about HTTP rules in the same struct 2837 - MINOR: http-rules/tcp-rules: Call the defined action function first if defined 2838 - MINOR: actions: Rename the act_flag enum into act_opt 2839 - MINOR: actions: Add flags to configure the action behaviour 2840 - MINOR: actions: Use an integer to set the action type 2841 - MINOR: http-rules: Use a specific action type for some custom HTTP actions 2842 - MINOR: http-rules: Make replace-header and replace-value custom actions 2843 - MINOR: http-rules: Make set-header and add-header custom actions 2844 - MINOR: http-rules: Make set/del-map and add/del-acl custom actions 2845 - MINOR: http-rules: Group all processing of early-hint rule in its case clause 2846 - MEDIUM: http-rules: Make early-hint custom actions 2847 - MINOR: http-rule/tcp-rules: Make track-sc* custom actions 2848 - MINOR: tcp-rules: Make tcp-request capture a custom action 2849 - MINOR: http-rules: Add release functions for existing HTTP actions 2850 - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing 2851 - MINOR: tcp-rules: Add release functions for existing TCP actions 2852 - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing 2853 - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX 2854 - MINOR: http-htx: Add functions to create HTX redirect message 2855 - MINOR: config: Use dedicated function to parse proxy's errorfiles 2856 - MINOR: config: Use dedicated function to parse proxy's errorloc 2857 - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages 2858 - MINOR: proxy: Register keywords to parse errorfile and errorloc directives 2859 - MINOR: http-htx: Add a new section to create groups of custom HTTP errors 2860 - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy 2861 - MINOR: http-rules: Update txn flags and status when a deny rule is executed 2862 - MINOR: http-rules: Support an optional status on deny rules for http reponses 2863 - MINOR: http-rules: Use same function to parse request and response deny actions 2864 - MINOR: http-ana: Add an error message in the txn and send it when defined 2865 - MEDIUM: http-rules: Support an optional error message in http deny rules 2866 - REGTEST: Add a strict rewriting mode reg test 2867 - REGEST: Add reg tests about error files 2868 - MINOR: ssl: accept 'verify' bind option with 'set ssl cert' 2869 - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak 2870 - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak 2871 - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak 2872 - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded 2873 - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved 2874 - BUILD: CI: introduce ARM64 builds 2875 - BUILD: ssl: more elegant anti-replay feature presence check 2876 - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive 2877 - MEDIUM: dns: use Additional records from SRV responses 2878 - CLEANUP: Consistently `unsigned int` for bitfields 2879 - CLEANUP: pattern: remove the pat_time definition 2880 - BUG/MINOR: http_act: don't check capture id in backend 2881 - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x 2882 28832019/11/25 : 2.2-dev0 2884 - exact copy of 2.1.0 2885 28862019/11/25 : 2.1.0 2887 - BUG/MINOR: init: fix set-dumpable when using uid/gid 2888 - MINOR: init: avoid code duplication while setting identify 2889 - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer 2890 - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1 2891 - MINOR: peers: Alway show the table info for disconnected peers. 2892 - MINOR: peers: Add TX/RX heartbeat counters. 2893 - MINOR: peers: Add debugging information to "show peers". 2894 - BUG/MINOR: peers: Wrong null "server_name" data field handling. 2895 - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction 2896 - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec 2897 - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting. 2898 - BUILD/MINOR: ssl: fix compiler warning about useless statement 2899 - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported 2900 - MINOR: contrib/prometheus-exporter: filter exported metrics by scope 2901 - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance 2902 - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests 2903 - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path 2904 - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding 2905 - DOC: Update http-buffer-request description to remove the part about chunks 2906 - BUG/MINOR: stream-int: Fix si_cs_recv() return value 2907 - DOC: internal: document the init calls 2908 - MEDIUM: dns: Add resolve-opts "ignore-weight" 2909 - MINOR: ssl: ssl_sock_prepare_ctx() return an error code 2910 - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit 2911 - MINOR: ssl/cli: display warning during 'commit ssl cert' 2912 - MINOR: version: report the version status in "haproxy -v" 2913 - MINOR: version: emit the link to the known bugs in output of "haproxy -v" 2914 - DOC: Add documentation about the use-service action 2915 - MINOR: ssl: fix possible null dereference in error handling 2916 - BUG/MINOR: ssl: fix curve setup with LibreSSL 2917 - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments 2918 - CLEANUP: ssl: check if a transaction exists once before setting it 2919 - BUG/MINOR: cli: fix out of bounds in -S parser 2920 - MINOR: ist: add ist_find_ctl() 2921 - BUG/MAJOR: h2: reject header values containing invalid chars 2922 - BUG/MAJOR: h2: make header field name filtering stronger 2923 - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state 2924 - MINOR: h2: add a function to report H2 error codes as strings 2925 - MINOR: mux-h2/trace: report the connection and/or stream error code 2926 - SCRIPTS: create-release: show the correct origin name in suggested commands 2927 - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands 2928 - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error 2929 - BUILD: reorder the objects in the makefile 2930 - DOC: mention in INSTALL haproxy 2.1 is a stable stable version 2931 - MINOR: version: indicate that this version is stable 2932 29332019/11/15 : 2.1-dev5 2934 - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found 2935 - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension 2936 - BUG/MINOR: ssl/cli: fix an error when a file is not found 2937 - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert' 2938 - DOC: fix date and http_date keywords syntax 2939 - MINOR: peers: Add "log" directive to "peers" section. 2940 - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages 2941 - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it 2942 - MINOR: flt_trace: Rename macros to print trace messages 2943 - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug 2944 - MEDIUM: stream/trace: Register a new trace source with its events 2945 - MINOR: doc: http-reuse connection pool fix 2946 - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams 2947 - MINOR: http-ana: Remove the unused function http_reset_txn() 2948 - BUG/MINOR: action: do-resolve now use cached response 2949 - BUG: dns: timeout resolve not applied for valid resolutions 2950 - DOC: management: fix typo on "cache_lookups" stats output 2951 - BUG/MINOR: stream: init variables when the list is empty 2952 - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet. 2953 - BUG/MINOR: queue/threads: make the queue unlinking atomic 2954 - BUG/MEDIUM: Make sure we leave the session list in session_free(). 2955 - CLEANUP: session: slightly simplify idle connection cleanup logic 2956 - MINOR: memory: also poison the area on freeing 2957 - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it 2958 - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it 2959 - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition 2960 - BUILD: contrib/da: remove an "unused" warning 2961 - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams 2962 - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams 2963 - MINOR: freq_ctr: Make the sliding window sums thread-safe 2964 - MINOR: stream: Remove the lock on the proxy to update time stats 2965 - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time 2966 - MINOR: stats: Report max times in addition of the averages for sessions 2967 - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions 2968 - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics 2969 - MINOR: contrib/prometheus-exporter: report the number of idle conns per server 2970 - DOC: Add missing stats fields in the management manual 2971 - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers 2972 - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe 2973 - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state 2974 - MINOR: sink: Set the default max length for a message to BUFSIZE 2975 - MINOR: ring: make the parse function automatically set the handler/release 2976 - BUG/MINOR: log: make "show startup-log" use a ring buffer instead 2977 - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression 2978 29792019/11/03 : 2.1-dev4 2980 - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed 2981 - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent 2982 - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached 2983 - DOC: remove obsolete section about header manipulation 2984 - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error 2985 - MINOR: ssl/cli: rework the 'set ssl cert' IO handler 2986 - BUILD: CI: comment out cygwin build, upgrade various ssl libraries 2987 - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri) 2988 - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset() 2989 - BUG/MINOR: spoe: fix off-by-one length in UUID format string 2990 - BUILD/MINOR: ssl: shut up a build warning about format truncation 2991 - BUILD: do not disable -Wformat-truncation anymore 2992 - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk 2993 - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist" 2994 - MINOR: mux: Add a new method to get informations about a mux. 2995 - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready. 2996 - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready. 2997 - MINOR: doc: fix busy-polling performance reference 2998 - MINOR: config: allow no set-dumpable config option 2999 - MINOR: init: always fail when setrlimit fails 3000 - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit' 3001 - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2) 3002 - REGTEST: vtest can now enable mcli with its own flag 3003 - BUG/MINOR: config: Update cookie domain warn to RFC6265 3004 - MINOR: sample: add us/ms support to date/http_date 3005 - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert() 3006 - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors 3007 - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list 3008 - BUG/MEDIUM: mux-h2: immediately report connection errors on streams 3009 - BUG/MINOR: stats: properly check the path and not the whole URI 3010 - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl 3011 - BUG/MINOR: ssl: ckch->chain must be initialized 3012 - BUG/MINOR: ssl: double free on error for ckch->{key,cert} 3013 - MINOR: ssl: BoringSSL ocsp_response does not need issuer 3014 - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert 3015 - MINOR: backend: Add srv_name sample fetche 3016 - DOC: Add GitHub issue config.yml 3017 30182019/10/25 : 2.1-dev3 3019 - MINOR: mux-h2/trace: missing conn pointer in demux full message 3020 - MINOR: mux-h2: add a per-connection list of blocked streams 3021 - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const 3022 - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections 3023 - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue. 3024 - BUG/MINOR: peers: crash on reload without local peer. 3025 - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization 3026 - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1 3027 - MINOR: htx: Adapt htx_dump() to be used from traces 3028 - MINOR: mux-h1/trace: register a new trace source with its events 3029 - MINOR: proxy: Store http-send-name-header in lower case 3030 - MINOR: http: Remove headers matching the name of http-send-name-header option 3031 - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request 3032 - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message 3033 - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation 3034 - MINOR: fcgi: Add function to get the string representation of a record type 3035 - MINOR: mux-fcgi/trace: Register a new trace source with its events 3036 - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri 3037 - DOC: clarify some points around http-send-name-header's behavior 3038 - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS 3039 - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces 3040 - DOC: fix typo in Prometheus exporter doc 3041 - MINOR: h2: clarify the rules for how to convert an H2 request to HTX 3042 - MINOR: htx: Add 2 flags on the start-line to have more info about the uri 3043 - MINOR: http: Add a function to get the authority into a URI 3044 - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing 3045 - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized 3046 - MINOR: h1-htx: Only use the path of a normalized URI to format a request line 3047 - MEDIUM: h2: make the request parser rebuild a complete URI 3048 - MINOR: h2: report in the HTX flags when the request has an authority 3049 - MEDIUM: mux-h2: do not map Host to :authority on output 3050 - MEDIUM: h2: use the normalized URI encoding for absolute form requests 3051 - MINOR: stats: mention in the help message support for "json" and "typed" 3052 - MINOR: stats: get rid of the ST_CONVDONE flag 3053 - MINOR: stats: replace the ST_* uri_auth flags with STAT_* 3054 - MINOR: stats: always merge the uri_auth flags into the appctx flags 3055 - MINOR: stats: set the appctx flags when initializing the applet only 3056 - MINOR: stats: get rid of the STAT_SHOWADMIN flag 3057 - MINOR: stats: make stats_dump_fields_json() directly take flags 3058 - MINOR: stats: uniformize the calling convention of the dump functions 3059 - MINOR: stats: support the "desc" output format modifier for info and stat 3060 - MINOR: stats: prepare to add a description with each stat/info field 3061 - MINOR: stats: make "show stat" and "show info" 3062 - MINOR: stats: fill all the descriptions for "show info" and "show stat" 3063 - BUG/MEDIUM: applet: always check a fast running applet's activity before killing 3064 - BUILD: stats: fix missing '=' sign in array declaration 3065 - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED 3066 - MINOR: list: add new macro MT_LIST_BEHEAD 3067 - MEDIUM: task: Split the tasklet list into two lists. 3068 - MINOR: h2: Document traps to be avoided on multithread. 3069 - MINOR: lists: Try to use local variables instead of macro arguments. 3070 - MINOR: lists: Fix alignement of \ when relevant. 3071 - MINOR: mux-h2: also support emitting CONTINUATION on trailers 3072 - MINOR: ssl: crt-list do ckchn_lookup 3073 - REORG: ssl: rename ckch_node to ckch_store 3074 - REORG: ssl: move structures to ssl_sock.h 3075 - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT 3076 - MINOR: ssl: initialize explicitly the sni_ctx trees 3077 - BUG/MINOR: ssl: abort on sni allocation failure 3078 - BUG/MINOR: ssl: free the sni_keytype nodes 3079 - BUG/MINOR: ssl: abort on sni_keytypes allocation failure 3080 - MEDIUM: ssl: introduce the ckch instance structure 3081 - MEDIUM: ssl: split ssl_sock_add_cert_sni() 3082 - MINOR: ssl: ssl_sock_load_ckchn() can properly fail 3083 - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail 3084 - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst 3085 - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO 3086 - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI 3087 - MINOR: ssl: load the sctl in/from the ckch 3088 - MINOR: ssl: load the ocsp in/from the ckch 3089 - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni() 3090 - BUG/MINOR: ssl: fix build without SSL 3091 - BUG/MINOR: ssl: fix build without multi-cert bundles 3092 - BUILD: ssl: wrong #ifdef for SSL engines code 3093 - BUG/MINOR: ssl: fix OCSP build with BoringSSL 3094 - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1 3095 - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data 3096 - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted 3097 - MINOR: mux-h1: Xfer as much payload data as possible during output processing 3098 - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c 3099 - BUG/MINOR: mux-h1: Capture ignored parsing errors 3100 - MINOR: h1: Reject requests with different occurrences of the header host 3101 - MINOR: h1: Reject requests if the authority does not match the header host 3102 - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings 3103 - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too 3104 - BUG/MINOR: WURFL: fix send_log() function arguments 3105 - BUG/MINOR: ssl: fix error messages for OCSP loading 3106 - BUG/MINOR: ssl: can't load ocsp files 3107 - MINOR: version: make the version strings variables, not constants 3108 - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive 3109 - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy 3110 - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request 3111 - BUILD: travis-ci: limit build to branches "master" and "next" 3112 - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info 3113 - BUILD/SMALL: threads: enable threads on osx 3114 - BUILD/MEDIUM: threads: enable cpu_affinity on osx 3115 - MINOR: istbuf: add b_fromist() to make a buffer from an ist 3116 - BUG/MINOR: cache: also cache absolute URIs 3117 - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally 3118 - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers 3119 - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD(). 3120 - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing. 3121 - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup() 3122 - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads 3123 - BUG/MEDIUM: task: make tasklets either local or shared but not both at once 3124 - Revert e8826ded5fea3593d89da2be5c2d81c522070995. 3125 - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached. 3126 - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive. 3127 - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI 3128 - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes 3129 - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_* 3130 - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings. 3131 - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn 3132 - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn 3133 - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn 3134 - CLEANUP: bind: handle warning label on bind keywords parsing. 3135 - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1 3136 - BUG/MINOR: mworker/cli: reload fail with inherited FD 3137 - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed 3138 - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr 3139 - BUG/MINOR: cache: alloc shctx after check config 3140 - BUG/MINOR: sample: Make the `field` converter compatible with `-m found` 3141 - BUG/MINOR: server: check return value of fopen() in apply_server_state() 3142 - REGTESTS: make seamless-reload depend on 1.9 and above 3143 - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum 3144 - BUG/MINOR: dns: allow srv record weight set to 0 3145 - BUG/MINOR: ssl: fix memcpy overlap without consequences. 3146 - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion 3147 - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless 3148 - BUG/MINOR: mux-h2: do not emit logs on backend connections 3149 - CLEANUP: ssl: remove old TODO commentary 3150 - CLEANUP: ssl: fix SNI/CKCH lock labels 3151 - MINOR: ssl: OCSP functions can load from file or buffer 3152 - MINOR: ssl: load sctl from buf OR from a file 3153 - MINOR: ssl: load issuer from file or from buffer 3154 - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch() 3155 - BUG/MINOR: ssl/cli: fix looking up for a bundle 3156 - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI 3157 - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents 3158 - MINOR: ssl: copy a ckch from src to dst 3159 - MINOR: ssl: new functions duplicate and free a ckch_store 3160 - MINOR: ssl/cli: assignate a new ckch_store 3161 - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler 3162 - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP 3163 - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl 3164 - BUG/MINOR: ssl: fix build with openssl < 1.1.0 3165 - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL 3166 - MINOR: tcp: avoid confusion in time parsing init 3167 - MINOR: debug: add a new "debug dev stream" command 3168 - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream" 3169 - REORG: move CLI access level definitions to cli.h 3170 - MINOR: cli: add an expert mode to hide dangerous commands 3171 - MINOR: debug: make most debug CLI commands accessible in expert mode 3172 - MINOR: stats/debug: maintain a counter of debug commands issued 3173 - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream" 3174 31752019/10/01 : 2.1-dev2 3176 - DOC: management: document reuse and connect counters in the CSV format 3177 - DOC: management: document cache_hits and cache_lookups in the CSV format 3178 - BUG/MINOR: dns: remove irrelevant dependency on a client connection 3179 - MINOR: applet: make appctx use their own pool 3180 - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed. 3181 - BUG/MEDIUM: http/htx: unbreak option http_proxy 3182 - BUG/MINOR: backend: do not try to install a mux when the connection failed 3183 - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf() 3184 - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules 3185 - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies 3186 - BUG/MINOR: cache/htx: Make maxage calculation HTX aware 3187 - BUG/MINOR: hlua: Make the function txn:done() HTX aware 3188 - MINOR: proto_htx: Directly call htx_check_response_for_cacheability() 3189 - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules 3190 - MINOR: proto_htx: Add the function htx_return_srv_error() 3191 - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection 3192 - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing 3193 - DOC: htx: Update comments in HTX files 3194 - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size() 3195 - MINOR: htx: Deduce the number of used blocks from tail and head values 3196 - MINOR: htx: Use an array of char to store HTX blocks 3197 - MINOR: htx: Slightly update htx_dump() to report better messages 3198 - DOC: htx: Add internal documentation about the HTX 3199 - MAJOR: http: Deprecate and ignore the option "http-use-htx" 3200 - MEDIUM: mux-h2: Remove support of the legacy HTTP mode 3201 - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones 3202 - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX 3203 - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones 3204 - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode 3205 - MINOR: config: Remove tests on the option 'http-use-htx' 3206 - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new() 3207 - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade 3208 - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets 3209 - MINOR: cache: Remove tests on the option 'http-use-htx' 3210 - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx' 3211 - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX 3212 - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore 3213 - MEDIUM: backend: Remove code relying on the HTTP legacy mode 3214 - MEDIUM: hlua: Remove code relying on the legacy HTTP mode 3215 - MINOR: http_act: Remove code relying on the legacy HTTP mode 3216 - MEDIUM: cache: Remove code relying on the legacy HTTP mode 3217 - MEDIUM: compression: Remove code relying on the legacy HTTP mode 3218 - MINOR: flt_trace: Remove code relying on the legacy HTTP mode 3219 - MINOR: stats: Remove code relying on the legacy HTTP mode 3220 - MAJOR: filters: Remove code relying on the legacy HTTP mode 3221 - MINOR: stream: Remove code relying on the legacy HTTP mode 3222 - MAJOR: http: Remove the HTTP legacy code 3223 - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags 3224 - MINOR: proto_http: Remove unused http txn flags 3225 - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN 3226 - CLEANUP: proto_http: Group remaining flags of the HTTP transaction 3227 - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT 3228 - CLEANUP: proto_http: Remove unecessary includes and comments 3229 - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c 3230 - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files 3231 - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA 3232 - MINOR: proxy: Remove support of the option 'http-tunnel' 3233 - DOC: config: Update as a result of the legacy HTTP removal 3234 - MEDIUM: config: Remove parsing of req* and rsp* directives 3235 - MINOR: proxy: Remove the unused list of block rules 3236 - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists 3237 - DOC: config: Remove unsupported req* and rsp* keywords 3238 - MINOR: global: Preset tune.max_http_hdr to its default value 3239 - MINOR: http: Don't store raw HTTP errors in chunks anymore 3240 - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection 3241 - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket 3242 - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_* 3243 - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop 3244 - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix 3245 - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction 3246 - MINOR: connection: add conn_get_src() and conn_get_dst() 3247 - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging 3248 - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping 3249 - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address 3250 - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst} 3251 - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy() 3252 - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output 3253 - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses 3254 - MINOR: http/htx: use conn_get_dst() to retrieve the destination address 3255 - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses 3256 - MINOR: http: check the source address via conn_get_src() in sample fetch functions 3257 - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr() 3258 - MINOR: connection: add new src and dst fields 3259 - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to} 3260 - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to 3261 - MINOR: lua: switch to conn->dst for a connection's target address 3262 - MINOR: peers: use conn->dst for the peer's target address 3263 - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst} 3264 - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst} 3265 - MINOR: proxy: switch to conn->src in error snapshots 3266 - MINOR: session: use conn->src instead of conn->addr.from 3267 - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst} 3268 - MINOR: unix: use conn->dst for the target address in ->connect() 3269 - MINOR: sockpair: use conn->dst for the target address in ->connect() 3270 - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to} 3271 - MINOR: checks: replace conn->addr.to with conn->dst 3272 - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst} 3273 - MINOR: http: convert conn->addr.from to conn->src in sample fetches 3274 - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst} 3275 - MINOR: connection: create a new pool for struct sockaddr_storage 3276 - MEDIUM: connection: make sure all address producers allocate their address 3277 - MAJOR: connection: remove the addr field 3278 - MINOR: connection: don't use clear_addr() anymore, just release the address 3279 - MINOR: stream: add a new target_addr entry in the stream structure 3280 - MAJOR: stream: store the target address into s->target_addr 3281 - MINOR: peers: now remove the remote connection setup code 3282 - MEDIUM: lua: do not allocate the remote connection anymore 3283 - MEDIUM: backend: always release any existing prior connection in connect_server() 3284 - MEDIUM: backend: remove impossible cases from connect_server() 3285 - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach() 3286 - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream 3287 - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error 3288 - BUG/MINOR: http_htx: Support empty errorfiles 3289 - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter 3290 - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff 3291 - BUG/MINOR: proxy: always lock stop_proxy() 3292 - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps 3293 - BUILD: threads: add the definition of PROTO_LOCK 3294 - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased 3295 - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send. 3296 - BUG/MINOR: log: make sure writev() is not interrupted on a file output 3297 - DOC: improve the wording in CONTRIBUTING about how to document a bug fix 3298 - MEDIUM: h1: Don't try to subscribe if we managed to read data. 3299 - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request. 3300 - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc 3301 - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called 3302 - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class 3303 - MINOR: hlua: Don't set request analyzers on response channel for lua actions 3304 - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used 3305 - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready 3306 - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion 3307 - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file() 3308 - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file() 3309 - MEDIUM: ssl: split the loading of the certificates 3310 - MEDIUM: ssl: lookup and store in a ckch_node tree 3311 - MEDIUM: ssl: load DH param in struct cert_key_and_chain 3312 - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue() 3313 - MINOR: ssl: use STACK_OF for chain certs 3314 - MINOR: ssl: add extra chain compatibility 3315 - MINOR: ssl: check private key consistency in loading 3316 - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH 3317 - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch 3318 - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn 3319 - MAJOR: fd: Get rid of the fd cache. 3320 - MEDIUM: pollers: Remember the state for read and write for each threads. 3321 - MEDIUM: mux-h2: don't try to read more than needed 3322 - BUG/BUILD: ssl: fix build with openssl < 1.0.2 3323 - BUG/MEDIUM: ssl: does not try to free a DH in a ckch 3324 - BUG/MINOR: debug: fix a small race in the thread dumping code 3325 - MINOR: wdt: also consider that waiting in the thread dumper is normal 3326 - REGTESTS: checks: make 4be_1srv_health_checks more reliable 3327 - BUILD: ssl: BoringSSL add EVP_PKEY_base_id 3328 - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle 3329 - BUG/MINOR: ssl: fix ressource leaks on error 3330 - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased 3331 - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion 3332 - BUG/MINOR: stream-int: make sure to always release empty buffers after sending 3333 - BUG/MEDIUM: ssl: open the right path for multi-cert bundle 3334 - BUG/MINOR: stream-int: also update analysers timeouts on activity 3335 - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames 3336 - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes 3337 - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2 3338 - DOC: Add 'Question.md' issue template, discouraging asking questions 3339 - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete(). 3340 - BUG/MEDIUM: pollers: Clear the poll_send bits as well. 3341 - BUILD: travis-ci: enable daily Coverity scan 3342 - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one 3343 - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data() 3344 - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads 3345 - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition 3346 - BUG/MINOR: mux-h2: always send stream window update before connection's 3347 - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame 3348 - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak 3349 - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing. 3350 - CLEANUP: mux-h2: move the demuxed frame check code in its own function 3351 - MINOR: cache: add method to cache hash 3352 - MINOR: cache: allow caching of OPTIONS request 3353 - BUG/MINOR: ssl: fix 0-RTT for BoringSSL 3354 - MINOR: ssl: ssl_fc_has_early should work for BoringSSL 3355 - BUG/MINOR: pools: don't mark the thread harmless if already isolated 3356 - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it 3357 - CLEANUP: buffer: replace b_drop() with b_free() 3358 - CLEANUP: task: move the cpu_time field to the task-only part 3359 - MINOR: cli: add two new states to print messages on the CLI 3360 - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr() 3361 - CLEANUP: cli: replace all occurrences of manual handling of return messages 3362 - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX. 3363 - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream. 3364 - BUG/MINOR: lua: fix setting netfilter mark 3365 - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers 3366 - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout 3367 - BUG/MINOR: stats: Wait the body before processing POST requests 3368 - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events() 3369 - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe. 3370 - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds. 3371 - MINOR: debug: indicate the applet name when the task is task_run_applet() 3372 - MINOR: tools: add append_prefixed_str() 3373 - MINOR: lua: export applet and task handlers 3374 - MEDIUM: debug: make the thread dump code show Lua backtraces 3375 - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf(). 3376 - MINOR: list: add LIST_SPLICE() to merge one list into another 3377 - MINOR: tools: add a DEFNULL() macro to use NULL for empty args 3378 - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe 3379 - MINOR: sink: create definitions a minimal code for event sinks 3380 - MINOR: sink: add a support for file descriptors 3381 - MINOR: trace: start to create a new trace subsystem 3382 - MINOR: trace: add allocation of buffer-sized trace buffers 3383 - MINOR: trace/cli: register the "trace" CLI keyword to list the sources 3384 - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity 3385 - MINOR: trace/cli: add "show trace" to report trace state and statistics 3386 - MINOR: trace: implement a very basic trace() function 3387 - MINOR: trace: add the file name and line number in the prefix 3388 - MINOR: trace: make trace() now also take a level in argument 3389 - MINOR: trace: implement a call to a decode function 3390 - MINOR: trace: add per-level macros to produce traces 3391 - MINOR: trace: add a definition of typed arguments to trace() 3392 - MINOR: trace: make sure to always stop the locking when stopping or pausing 3393 - MINOR: trace: add the possibility to lock on some arguments 3394 - MINOR: trace: parse the "lock" argument to trace 3395 - MINOR: trace: retrieve useful pointers and enforce lock-on 3396 - DOC: management: document the "trace" and "show trace" commands 3397 - BUILD: trace: make the lockon_ptr const to silence a warning without threads 3398 - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary 3399 - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full 3400 - DOC: fixed typo in management.txt 3401 - BUG/MINOR: mworker: disable SIGPROF on re-exec 3402 - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener() 3403 - BUG/MEDIUM: url32 does not take the path part into account in the returned hash. 3404 - MINOR: backend: Add srv_queue converter 3405 - MINOR: sink: set the fd-type sinks to non-blocking 3406 - MINOR: tools: add a function varint_bytes() to report the size of a varint 3407 - MINOR: buffer: add functions to read/write varints from/to buffers 3408 - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd 3409 - MINOR: sink: now call the generic fd write function 3410 - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers 3411 - MINOR: ring: add a ring_write() function 3412 - MINOR: ring: add a generic CLI io_handler to dump a ring buffer 3413 - MINOR: sink: add support for ring buffers 3414 - MINOR: sink: implement "show events" to show supported sinks and dump the rings 3415 - MINOR: sink: now report the number of dropped events on output 3416 - MINOR: trace: support a default callback for the source 3417 - MINOR: trace: extend the source location to 13 chars 3418 - MINOR: trace: show thread number and source name in the trace 3419 - MINOR: trace: change the TRACE() calling convention to put the args and cb last 3420 - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2 3421 - MINOR: tools: add a generic struct "name_desc" for name-description pairs 3422 - MINOR: trace: replace struct trace_lockon_args with struct name_desc 3423 - MINOR: trace: change the "payload" level to "data" and move it 3424 - MINOR: trace: prepend the function name for developer level traces 3425 - MINOR: trace: also report the trace level in the output 3426 - MINOR: trace: change the detail_level to per-source verbosity 3427 - MINOR: mux-h2/trace: register a new trace source with its events 3428 - MINOR: mux-h2/trace: add the default decoding callback 3429 - MEDIUM: mux-h2/trace: add lots of traces all over the code 3430 - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string 3431 - MINOR: mux-h2/trace: add a new verbosity level "clean" 3432 - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal" 3433 - MINOR: mux-h2/trace: always report the h2c/h2s state and flags 3434 - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID 3435 - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment 3436 - CLEANUP: mux-h2/trace: lower-case event names 3437 - MINOR: trace: extend default event names to 12 chars 3438 - BUG/MINOR: ring: fix the way watchers are counted 3439 - MINOR: cli: extend the CLI context with a list and two offsets 3440 - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H 3441 - MEDIUM: ring: implement a wait mode for watchers 3442 - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle 3443 - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces 3444 - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t 3445 - CLEANUP: fd: remove leftovers of the fdcache 3446 - MINOR: fd: add a new "initialized" bit in the fdtab struct 3447 - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit 3448 - MEDIUM: log: use the new generic fd_write_frag_line() function 3449 - MINOR: log: add a target type instead of hacking the address family 3450 - MEDIUM: log: add support for logging to a ring buffer 3451 - MINOR: send-proxy-v2: sends authority TLV according to TLV received 3452 - MINOR: build: add linux-glibc-legacy build TARGET 3453 - BUG/MEDIUM: peers: local peer socket not bound. 3454 - BUILD: connection: silence gcc warning with extra parentheses 3455 - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled 3456 - BUG/MINOR: h1: Properly reset h1m when parsing is restarted 3457 - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing 3458 - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached 3459 - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers 3460 - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks 3461 - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big 3462 - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe() 3463 - MEDIUM: fd: remove the FD_EV_POLLED status bit 3464 - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR 3465 - MINOR: fd: make updt_fd_polling() a normal function 3466 - CONTRIB: debug: add new program "poll" to test poll() events 3467 - BUG/MINOR: checks: stop polling for write when we have nothing left to send 3468 - BUG/MINOR: checks: start sending the request right after connect() 3469 - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing 3470 - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up 3471 - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser() 3472 - BUILD: CI: add basic CentOS 6 cirrus build 3473 - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers 3474 - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers 3475 - BUG/MAJOR: ssl: ssl_sock was not fully initialized. 3476 - MEDIUM: fd: mark the FD as ready when it's inserted 3477 - MINOR: fd: add two new calls fd_cond_{recv,send}() 3478 - MEDIUM: connection: enable reading only once the connection is confirmed 3479 - MINOR: fd: add two flags ERR and SHUT to describe FD states 3480 - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore 3481 - BUG/MEDIUM: connection: don't keep more idle connections than ever needed 3482 - MINOR: stats: report the number of idle connections for each server 3483 - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6 3484 - BUILD/MINOR: auth: enabling for osx 3485 - BUG/MINOR: listener: Fix a possible null pointer dereference 3486 - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context 3487 - MINOR: stats: Add JSON export from the stats page 3488 - BUG/MINOR: filters: Properly set the HTTP status code on analysis error 3489 - MINOR: sample: Add UUID-fetch 3490 - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK 3491 - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed 3492 - BUG/MINOR: backend: Fix a possible null pointer dereference 3493 - BUG/MINOR: Missing stat_field_names (since f21d17bb) 3494 - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument 3495 - BUILD: CI: temporarily disable ASAN 3496 - MINOR: htx: Add a flag on HTX message to report processing errors 3497 - MINOR: mux-h1: Report a processing error during output processing 3498 - MINOR: http-ana: Handle HTX errors first during message analysis 3499 - MINOR: http-ana: Remove err_state field from http_msg 3500 - MINOR: config: Support per-proxy and per-server deinit functions callbacks 3501 - MINOR: config: Support per-proxy and per-server post-check functions callbacks 3502 - MINOR: http_fetch: Add sample fetches to get auth method/user/pass 3503 - MINOR: istbuf: Add the function b_isteqi() 3504 - MINOR: log: Provide a function to emit a log for an application 3505 - MINOR: http: Add function to parse value of the header Status 3506 - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file 3507 - MINOR: h1-htx: Use the same function to copy message payload in all cases 3508 - MINOR: muxes/htx: Ignore pseudo header during message formatting 3509 - MINOR: fcgi: Add code related to FCGI protocol 3510 - MEDIUM: fcgi-app: Add FCGI application and filter 3511 - MEDIUM: mux-fcgi: Add the FCGI multiplexer 3512 - MINOR: doc: Add documentation about the FastCGI support 3513 - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL 3514 - BUILD: CI: install golang-1.13 when building BoringSSL 3515 - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe 3516 - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe 3517 - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer 3518 - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback 3519 - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame 3520 - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1 3521 - MEDIUM: list: Separate "locked" list from regular list. 3522 - MINOR: mt_lists: Add new macroes. 3523 - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL(). 3524 - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list. 3525 - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value. 3526 - MEDIUM: tasklets: Make the tasklet list a struct mt_list. 3527 - TESTS: Add a stress-test for mt_lists. 3528 - BUILD: travis-ci: add PCRE2, SLZ build 3529 - BUG/MINOR: build: fix event ports (Solaris) 3530 - BUG/MEDIUM: namespace: fix fd leak in master-worker mode 3531 - OPTIM: listeners: use tasklets for the multi-queue rings 3532 - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int) 3533 - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send() 3534 - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends 3535 - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv 3536 - CLEANUP: task: remove impossible test 3537 - CLEANUP: task: cache the task_per_thread pointer 3538 - MINOR: task: split the tasklet vs task code in process_runnable_tasks() 3539 - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff 3540 - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id() 3541 - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log() 3542 - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps. 3543 - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces 3544 - MINOR: h2/trace: report the frame type when known 3545 - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready 3546 - BUG/MEDIUM: namespace: close open namespaces during soft shutdown 3547 - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO 3548 - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO} 3549 - MINOR: sink: change ring buffer "buf0"'s format to "timed" 3550 - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams 3551 - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference 3552 - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach() 3553 - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream 3554 - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames 3555 - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request 3556 - BUG/MEDIUM: spoe: Use a different engine-id per process 3557 - MINOR: spoe: Improve generation of the engine-id 3558 - MINOR: spoe: Support the async mode with several threads 3559 - MINOR: http: Add server name header from HTTP multiplexers 3560 - CLEANUP: http-ana: Remove the unused function http_send_name_header() 3561 - MINOR: stats: Add the support of float fields in stats 3562 - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds 3563 - DOC: Fix documentation about the cli command to get resolver stats 3564 - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration 3565 - BUG/MINOR: stats: Add a missing break in a switch statement 3566 - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg) 3567 - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg) 3568 - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field 3569 - CLEANUP: proxy: Remove `proxy_tbl_by_name` 3570 - BUILD: ssl: fix a warning when built with openssl < 1.0.2 3571 - DOC: replace utf-8 quotes by ascii ones 3572 - BUG/MEDIUM: fd: HUP is an error only when write is active 3573 - BUG/MINOR: action: do-resolve does not yield on requests with body 3574 - Revert "MINOR: cache: allow caching of OPTIONS request" 3575 35762019/07/16 : 2.1-dev1 3577 - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built 3578 - DOC: this is a development branch again. 3579 - MEDIUM: Make 'block' directive fatal 3580 - MEDIUM: Make 'redispatch' directive fatal 3581 - MEDIUM: Make '(cli|con|srv)timeout' directive fatal 3582 - MEDIUM: Remove 'option independant-streams' 3583 - MINOR: sample: Add sha2([<bits>]) converter 3584 - MEDIUM: server: server-state global file stored in a tree 3585 - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware 3586 - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages 3587 - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses 3588 - MINOR: htx: Add the function htx_change_blk_value_len() 3589 - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed 3590 - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux 3591 - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked 3592 - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock 3593 - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition. 3594 - BUILD: mworker: silence two printf format warnings around getpid() 3595 - BUILD: makefile: use :space: instead of digits to count commits 3596 - BUILD: makefile: adjust the sed expression of "make help" for solaris 3597 - BUILD: makefile: do not rely on shell substitutions to determine git version 3598 - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse 3599 - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory 3600 - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit 3601 - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON. 3602 - BUG/MEDIUM: connections: Always add the xprt handshake if needed. 3603 - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx. 3604 - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore 3605 - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced 3606 - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted 3607 - BUG/MINOR: memory: Set objects size for pools in the per-thread cache 3608 - BUG/MINOR: log: Detect missing sampling ranges in config 3609 - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages 3610 - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages 3611 - BUG/MINOR: mux-h1: Make format errors during output formatting fatal 3612 - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL. 3613 - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported 3614 - BUG/MINOR: mworker/cli: don't output a \n before the response 3615 - BUG/MEDIUM: checks: unblock signals in external checks 3616 - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages 3617 - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses 3618 - BUG/MEDIUM: connections: Always call shutdown, with no linger. 3619 - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed. 3620 - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max() 3621 - BUG/MINOR: hlua: Don't use channel_htx_recv_max() 3622 - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit() 3623 - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent 3624 - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent 3625 - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux. 3626 - BUG/MEDIUM: servers: Authorize tfo in default-server. 3627 - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions. 3628 - MINOR: server: Add "no-tfo" option. 3629 - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks 3630 - MINOR: action: Add the return code ACT_RET_DONE for actions 3631 - BUG/MEDIUM: http/applet: Finish request processing when a service is registered 3632 - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock 3633 - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted 3634 - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred 3635 - MINOR: stream-int: Factorize processing done after sending data in si_cs_send() 3636 - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si 3637 - DOC: contrib: spoa_server Add some hints for building spoa_server 3638 - DOC: Fix typo in intro.txt 3639 - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it. 3640 - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2 3641 - MINOR: pools: release the pool's lock during the malloc/free calls 3642 - MINOR: pools: always pre-initialize allocated memory outside of the lock 3643 - MINOR: pools: make the thread harmless during the mmap/munmap syscalls 3644 - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept 3645 - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections 3646 - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection. 3647 - BUG/MEDIUM: da: cast the chunk to string. 3648 - DOC: Fix typos and grammer in configuration.txt 3649 - CLEANUP: proto_tcp: Remove useless header inclusions. 3650 - BUG/MEDIUM: servers: Fix a race condition with idle connections. 3651 - MINOR: task: introduce work lists 3652 - BUG/MAJOR: listener: fix thread safety in resume_listener() 3653 - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send 3654 - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used 3655 - BUG/MEDIUM: streams: Don't give up if we couldn't send the request. 3656 - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set. 3657 - BUG/MINOR: mux-pt: do not pretend there's more data after a read0 3658 - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again 3659 - MEDIUM: mworker-prog: Add user/group options to program section 3660 - REGTESTS: checks: tcp-check connect to multiple ports 3661 - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored 3662 36632019/06/16 : 2.1-dev0 3664 - exact copy of 2.0.0 3665 36662019/06/16 : 2.0.0 3667 - MINOR: fd: Don't use atomic operations when it's not needed. 3668 - DOC: mworker-prog: documentation for the program section 3669 - MINOR: http: add a new "http-request replace-uri" action 3670 - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware. 3671 - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing. 3672 - MINOR: mworker: change formatting in uptime field of "show proc" 3673 - MINOR: mworker: add the HAProxy version in "show proc" 3674 - MINOR: doc: Remove -Ds option in man page 3675 - MINOR: doc: add master-worker in the man page 3676 - MINOR: doc: mention HAPROXY_LOCALPEER in the man 3677 - BUILD: Silence gcc warning about unused return value 3678 - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib 3679 - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c 3680 - MINOR: doc: update the manpage and usage message about -S 3681 - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not. 3682 - BUG/MEDIUM: h1: Don't wait for handshake if we had an error. 3683 - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete. 3684 - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity 3685 - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM 3686 - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full() 3687 - BUG/MINOR: http: Use the global value to limit the number of parsed headers 3688 - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms 3689 - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis 3690 - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all() 3691 - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding 3692 - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes 3693 - MINOR: h2: Set flags about the request's scheme on the start-line 3694 - MINOR: mux-h1: Set flags about the request's scheme on the start-line 3695 - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags 3696 - MEDIUM: server: server-state only rely on server name 3697 - CLEANUP: connection: rename the wait_event.task field to .tasklet 3698 - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_* 3699 - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger. 3700 - DOC: add some environment variables in section 2.3 3701 - BUILD: makefile: clarify the "help" output and list options 3702 - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent 3703 - BUG: tasks: fix bug introduced by latest scheduler cleanup 3704 - BUG/MEDIUM: mux-h2: fix early close with option abortonclose 3705 - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP. 3706 - BUG/MEDIUM: connections: Don't try to send early data if we have no mux. 3707 - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX 3708 - BUILD: makefile: further clarify the "help" output and list targets 3709 - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets 3710 - BUILD: travis-ci: switch to linux-glibc instead of linux2628 3711 - DOC: update few references to the linux* targets and change them to linux-glibc 3712 - BUILD: makefile: detect and reject recently removed linux targets 3713 - BUILD: makefile: enable linux namespaces by default on linux 3714 - BUILD: makefile: enable TFO on linux platforms 3715 - BUILD: makefile: enable getaddrinfo on the linux-glibc target 3716 - DOC: small updates to the CONTRIBUTING file 3717 - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data. 3718 - CLEANUP: removed obsolete examples an move a few to better places 3719 - DOC: Fix typos in CONTRIBUTING 3720 - DOC: update the outdated ROADMAP file 3721 - DOC: create a BRANCHES file to explain the life cycle 3722 - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version 3723 - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default 3724 - BUILD: makefile: make the obsolete target detection compatible with make-3.80 3725 - BUILD: tools: work around an internal compiler bug in gcc-3.4 3726 - BUILD: pattern: work around an internal compiler bug in gcc-3.4 3727 - BUILD: makefile: enable USE_RT on Solaris 3728 - BUILD: makefile: do not use echo -n 3729 - DOC: mention a few common build errors in the INSTALL file 3730 37312019/06/11 : 2.0-dev7 3732 - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set 3733 - MINOR: tools: add new bitmap manipulation functions 3734 - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps 3735 - MINOR: chunks: Make sure trash_size is only set once. 3736 - Revert "MINOR: chunks: Make sure trash_size is only set once." 3737 - MINOR: threads: serialize threads initialization 3738 - MINOR peers: data structure simplifications for server names dictionary cache. 3739 - DOC: peers: Update for dictionary cache entries for peers protocol. 3740 - MINOR: dict: Store the length of the dictionary entries. 3741 - MINOR: peers: A bit of optimization when encoding cached server names. 3742 - MINOR: peers: Optimization for dictionary cache lookup. 3743 - MEDIUM: tools: improve time format error detection 3744 - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early. 3745 - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI. 3746 - MINOR: threads: avoid clearing harmless twice in thread_release() 3747 - MEDIUM: threads: add thread_sync_release() to synchronize steps 3748 - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others 3749 - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread 3750 - BUG/MINOR: dict: race condition fix when inserting dictionary entries. 3751 - MEDIUM: init/threads: don't use spinlocks during the init phase 3752 - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet 3753 - BUG/MEDIUM: compression/htx: Fix the adding of the last data block 3754 - MINOR: flt_trace: Don't scrash the original offset during the random forwarding 3755 - MAJOR: htx: Rework how free rooms are tracked in an HTX message 3756 - MINOR: htx: Add the function htx_move_blk_before() 3757 - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early." 3758 - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message 3759 - MINOR: http: turn default error files to HTTP/1.1 3760 - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error. 3761 - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done. 3762 - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0 3763 - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames 3764 - MINOR: contrib/spoa_server: Add random IP score 3765 - DOC/MINOR: contrib/spoa_server: Fix typo in README 3766 37672019/06/07 : 2.0-dev6 3768 - BUG/MEDIUM: connection: fix multiple handshake polling issues 3769 - MINOR: connection: also stop receiving after a SOCKS4 response 3770 - MINOR: mux-h1: don't try to recv() before the connection is ready 3771 - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one 3772 - MEDIUM: mux-h1: don't use CS_FL_REOS anymore 3773 - CLEANUP: connection: remove the now unused CS_FL_REOS flag 3774 - CONTRIB: debug: add 4 missing connection/conn_stream flags 3775 - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit 3776 - MINOR: server: increase the default pool-purge-delay to 5 seconds 3777 - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers 3778 - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars 3779 - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions 3780 - BUILD: task: fix a build warning when threads are disabled 3781 - CLEANUP: peers: Remove tabs characters. 3782 - CLEANUP: peers: Replace hard-coded values by macros. 3783 - BUG/MINOR: peers: Wrong stick-table update message building. 3784 - MINOR: dict: Add dictionary new data structure. 3785 - MINOR: peers: Add a LRU cache implementation for dictionaries. 3786 - MINOR: stick-table: Add "server_name" new data type. 3787 - MINOR: cfgparse: Space allocation for "server_name" stick-table data type. 3788 - MINOR: proxy: Add a "server by name" tree to proxy. 3789 - MINOR: server: Add a dictionary for server names. 3790 - MINOR: stream: Stickiness server lookup by name. 3791 - MINOR: peers: Make peers protocol support new "server_name" data type. 3792 - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type. 3793 - REGTEST: Add a basic server by name stickiness reg test. 3794 - MINOR: peers: Add dictionary cache information to "show peers" CLI command. 3795 - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros. 3796 - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros. 3797 - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL) 3798 - BUILD: travis-ci improvements 3799 - MINOR: SSL: add client/server random sample fetches 3800 - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message 3801 - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time 3802 - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing 3803 - MEDIUM: mux-h1: refactor output processing 3804 - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s 3805 - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers 3806 - MINOR: mux-h1: Don't count the EOM in the estimated size of headers 3807 - MEDIUM: cache/htx: Always store info about HTX blocks in the cache 3808 - MEDIUM: htx: Add the parsing of trailers of chunked messages 3809 - MINOR: htx: Don't use end-of-data blocks anymore 3810 - BUG/MINOR: mux-h1: Don't send more data than expected 3811 - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body. 3812 - BUG/MINOR: peers: Wrong "server_name" decoding. 3813 - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled. 3814 - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy(). 3815 - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled. 3816 - MEDIUM: ssl: Handle subscribe by itself. 3817 - MINOR: ssl: Make ssl_sock_handshake() static. 3818 - MINOR: connections: Add a new xprt method, remove_xprt. 3819 - MINOR: connections: Add a new xprt method, add_xprt(). 3820 - MEDIUM: connections: Introduce a handshake pseudo-XPRT. 3821 - MEDIUM: connections: Remove CONN_FL_SOCK* 3822 - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait. 3823 - BUG/MINOR: peers: Wrong server name parsing. 3824 - MINOR: server: really increase the pool-purge-delay default to 5 seconds 3825 - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states 3826 - MINOR: stream-int: use bit fields to match multiple stream-int states at once 3827 - MEDIUM: stream-int: remove dangerous interval checks for stream-int states 3828 - MEDIUM: stream-int: introduce a new state SI_ST_RDY 3829 - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O 3830 - MEDIUM: stream-int: make idle-conns switch to ST_RDY 3831 - MEDIUM: stream: re-arrange the connection setup status reporting 3832 - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx() 3833 - MINOR: stream-int: make si_sync_send() from the send code of si_update_both() 3834 - MEDIUM: stream: rearrange the events to remove the loop 3835 - MEDIUM: stream: only loop on flags relevant to the analysers 3836 - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW 3837 - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit() 3838 - BUILD: peers: fix a build warning about an incorrect intiialization 3839 - BUG/MINOR: time: make sure only one thread sets global_now at boot 3840 - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect. 3841 38422019/06/02 : 2.0-dev5 3843 - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value 3844 - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL 3845 - BUILD: watchdog: condition it to USE_RT 3846 - MINOR: raw_sock: report global traffic statistics 3847 - MINOR: stats: report the global output bit rate in human readable form 3848 - BUG/MINOR: proto-htx: Try to keep connections alive on redirect 3849 - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it 3850 - BUG/MINOR: lua: Set right direction and flags on new HTTP objects 3851 - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted 3852 - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade 3853 - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled 3854 - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag() 3855 - DOC: fix typos 3856 - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression 3857 - OPTIM: freq-ctr: don't take the date lock for most updates 3858 - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed 3859 - CLEANUP: debug: remove the TRACE() macro 3860 - MINOR: buffer: introduce b_make() to make a buffer from its parameters 3861 - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers 3862 - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring 3863 - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail 3864 - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring 3865 - MEDIUM: mux-h2: make the send() function iterate over all mux buffers 3866 - CLEANUP: mux-h2: consistently use a local variable for the mbuf 3867 - MINOR: mux-h2: report the mbuf's head and tail in "show fd" 3868 - MAJOR: mux-h2: switch to next mux buffer on buffer full condition. 3869 - BUILD: connections: shut up gcc about impossible out-of-bounds warning 3870 - BUILD: ssl: fix latest LibreSSL reg-test error 3871 - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity 3872 - MINOR: cli/activity: add 3 general purpose counters in development mode 3873 - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass 3874 - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute. 3875 - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms 3876 - MEDIUM: config: now alert when two servers have the same name 3877 - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead 3878 - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h 3879 - MINOR: htx: Store the head position instead of the wrap one 3880 - MINOR: htx: Store start-line block's position instead of address of its payload 3881 - MINOR: htx: Add functions to get the first block of an HTX message 3882 - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built 3883 - MINOR: htx: Replace the function http_find_stline() by http_get_stline() 3884 - CLEANUP: htx: Remove unused function htx_get_stline() 3885 - MINOR: http/htx: Use sl_pos directly to replace the start-line 3886 - MEDIUM: http/htx: Perform analysis relatively to the first block 3887 - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max() 3888 - MINOR: htx: Add function htx_get_max_blksz() 3889 - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata 3890 - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf() 3891 - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf() 3892 - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv() 3893 - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV 3894 - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf() 3895 - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line 3896 - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced 3897 - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced 3898 - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks() 3899 - MEDIUM: htx: 1xx messages are now part of the final reponses 3900 - MINOR: channel/htx: Add function to forward headers of an HTX message 3901 - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering 3902 - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses 3903 - MEDIUM: htx: Store the first block position instead of the start-line one 3904 - MINOR: stats/htx: don't use the first block position but the head one 3905 - MINOR: channel/htx: Add functions to forward a part or all HTX payload 3906 - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded 3907 - MEDIUM: filters/htx: Filter body relatively to the first block 3908 - MINOR: htx: Optimize htx_drain() when all data are drained 3909 - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate() 3910 - MINOR: htx: remove the unused function htx_find_blk() 3911 - MINOR: htx: Remove support of pseudo headers because it is unused 3912 - BUG/MEDIUM: http: fix "http-request reject" when not final 3913 - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail. 3914 - MINOR: ssl: Don't forget to call the close method of the underlying xprt. 3915 - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce() 3916 - MINOR: htx: make htx_add_data() return the transmitted byte count 3917 - MEDIUM: htx: make htx_add_data() never defragment the buffer 3918 - MINOR: activity: write totals on the "show activity" output 3919 - MINOR: activity: report totals and average separately 3920 - MEDIUM: poller: separate the wait time from the wake events 3921 - MINOR: activity: report the number of failed pool/buffer allocations 3922 - MEDIUM: buffers: relax the buffer lock a little bit 3923 - MINOR: task: turn the WQ lock to an RW_LOCK 3924 - MEDIUM: task: don't grab the WR lock just to check the WQ 3925 - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read 3926 - MEDIUM: sessions: Introduce session flags. 3927 - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs. 3928 - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop 3929 - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer 3930 - BUG/MEDIUM: connection: Use the session to get the origin address if needed. 3931 - MEDIUM: tasks: Get rid of active_tasks_mask. 3932 - MEDIUM: connection: Upstream SOCKS4 proxy support 3933 - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct 3934 - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit 3935 39362019/05/22 : 2.0-dev4 3937 - BUILD: enable freebsd builds on cirrus-ci 3938 - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()" 3939 - MEDIUM: Make 'option forceclose' actually warn 3940 - MEDIUM: Make 'resolution_pool_size' directive fatal 3941 - DOC: management: place "show activity" at the right place 3942 - MINOR: cli/activity: show the dumping thread ID starting at 1 3943 - MINOR: task: export global_task_mask 3944 - MINOR: cli/debug: add a thread dump function 3945 - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete. 3946 - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection. 3947 - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it 3948 - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task 3949 - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer 3950 - BUG/MINOR: debug: don't check the call date on tasklets 3951 - MINOR: thread: implement ha_thread_relax() 3952 - MINOR: task: put barriers after each write to curr_task 3953 - MINOR: task: always reset curr_task when freeing a task or tasklet 3954 - MINOR: stream: detach the stream from its own task on stream_free() 3955 - MEDIUM: debug/threads: implement an advanced thread dump system 3956 - REGTEST: extend the check duration on tls_health_checks and mark it slow 3957 - DOC: fix "successful" typo 3958 - MINOR: init: setenv HAPROXY_CFGFILES 3959 - MINOR: threads/init: synchronize the threads startup 3960 - MEDIUM: init/mworker: make the pipe register function a regular initcall 3961 - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label 3962 - CLEANUP: threads: remove the now unused START_LOCK label 3963 - MINOR: init/threads: make the global threads an array of structs 3964 - MINOR: threads: add each thread's clockid into the global thread_info 3965 - CLEANUP: stream: remove an obsolete debugging test 3966 - MINOR: tools: add dump_hex() 3967 - MINOR: debug: implement ha_panic() 3968 - MINOR: debug/cli: add some debugging commands for developers 3969 - MINOR: tools: provide a may_access() function and make dump_hex() use it 3970 - MINOR: debug: make ha_panic() report threads starting at 1 3971 - REORG: compat: move some integer limit definitions from standard.h to compat.h 3972 - REORG: threads: move the struct thread_info from global.h to hathreads.h 3973 - MINOR: compat: make sure to always define clockid_t 3974 - MINOR: threads: always place the clockid in the struct thread_info 3975 - MINOR: threads: add a thread-local thread_info pointer "ti" 3976 - MINOR: time: move the cpu, mono, and idle time to thread_info 3977 - MINOR: time: add a function to retrieve another thread's cputime 3978 - MINOR: debug: report each thread's cpu usage in "show thread" 3979 - BUILD: threads: only assign the clock_id when supported 3980 - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris 3981 - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris) 3982 - MAJOR: polling: add event ports support (Solaris) 3983 - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0. 3984 - CLEANUP: time: refine the test on _POSIX_TIMERS 3985 - MINOR: compat: define a new empty type empty_t for non-implemented fields 3986 - CLEANUP: time: switch clockid_t to empty_t when not available 3987 - BUG/MINOR: mworker: Fix memory leak of mworker_proc members 3988 - CLEANUP: objtype: make obj_type() and obj_type_name() take consts 3989 - MINOR: debug: switch to SIGURG for thread dumps 3990 - CLEANUP: threads: really move thread_info to hathreads.c 3991 - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads 3992 - CLEANUP: debug: always report harmless/want_rdv even without threads 3993 - MINOR: threads: implement ha_tkill() and ha_tkillall() 3994 - CLEANUP: debug: make use of ha_tkill() and remove ifdefs 3995 - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash() 3996 - MINOR: debug: dump streams when an applet, iocb or stream is known 3997 - MINOR: threads: add a "stuck" flag to the thread_info struct 3998 - MINOR: threads: add a timer_t per thread in thread_info 3999 - MAJOR: watchdog: implement a thread lockup detection mechanism 4000 - MINOR: stream: remove the cpu time detection from process_stream() 4001 - MINOR: connection: report the mux names in "haproxy -vv" 4002 - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name 4003 - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info. 4004 - MINOR: WURFL: call header_retireve_callback() in dummy library 4005 - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id 4006 - MINOR: WURFL: shows log messages during module initialization 4007 - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results 4008 - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails 4009 - MEDIUM: WURFL: HTX awareness. 4010 - MINOR: WURFL: module version bump to 2.0 4011 - MINOR: WURFL: do not emit warnings when not configured 4012 - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library 4013 - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks 4014 - BUILD: travis: add sanitizers to travis-ci builds 4015 - BUILD: time: remove the test on _POSIX_C_SOURCE 4016 - CLEANUP: build: rename some build macros to use the USE_* ones 4017 - CLEANUP: raw_sock: remove support for very old linux splice bug workaround 4018 - BUG/MEDIUM: dns: make the port numbers unsigned 4019 - MEDIUM: config: deprecate the antique req* and rsp* commands 4020 40212019/05/15 : 2.0-dev3 4022 - BUG/MINOR: peers: Really close the sessions with no heartbeat. 4023 - CLEANUP: peers: remove useless annoying tabulations. 4024 - CLEANUP: peers: replace timeout constants by macros. 4025 - REGTEST: Enable again reg tests with HEAD HTTP method usage. 4026 - DOC: The option httplog is no longer valid in a backend. 4027 - DOC: peers: Peers protocol documentation update. 4028 - REGTEST: remove unexpected "nbthread" statement from Lua test cases 4029 - BUILD: Makefile: remove 11-years old workarounds for deprecated options 4030 - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE 4031 - BUILD: Makefile: remove outdated support for dlmalloc 4032 - BUILD: Makefile: consider a variable's origin and not its value for the options list 4033 - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable 4034 - BUILD: Makefile: shorten default settings declaration 4035 - BUILD: Makefile: clean up the target declarations 4036 - BUILD: report the whole feature set with their status in haproxy -vv 4037 - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler 4038 - REGTEST: script: make the script use the new features list 4039 - REGTEST: script: remove platform-specific assigments of OPTIONS 4040 - BUG/MINOR: peers: Missing initializations after peer session shutdown. 4041 - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes 4042 - BUILD/MINOR: listener: Silent a few signedness warnings. 4043 - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output 4044 - BUG/MEDIUM: mworker: don't free the wrong child when not found 4045 - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error. 4046 - BUG/MAJOR: checks: segfault during tcpcheck_main 4047 - BUILD: makefile: work around an old bug in GNU make-3.80 4048 - BUILD: makefile: work around another bug in make 3.80 4049 - BUILD: http: properly mark some struct as extern 4050 - BUILD: chunk: properly declare pool_head_trash as extern 4051 - BUILD: cache: avoid a build warning with some compilers/linkers 4052 - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf() 4053 - MINOR: tools: add an unsetenv() implementation 4054 - BUILD: re-implement an initcall variant without using executable sections 4055 - BUILD: use inttypes.h instead of stdint.h 4056 - BUILD: connection: fix naming of ip_v field 4057 - BUILD: makefile: fix build of IPv6 header on aix51 4058 - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51 4059 - BUILD: define unsetenv on AIX 5.1 4060 - BUILD: Makefile: disable shared cache on AIX 5.1 4061 - MINOR: ssl: Add aes_gcm_dec converter 4062 - REORG: mworker: move serializing functions to mworker.c 4063 - REORG: mworker: move signals functions to mworker.c 4064 - REORG: mworker: move IPC functions to mworker.c 4065 - REORG: mworker: move signal handlers and related functions 4066 - REORG: mworker: move mworker_cleanlisteners to mworker.c 4067 - MINOR: mworker: calloc mworker_proc structures 4068 - MINOR: mworker: don't use children variable anymore 4069 - MINOR: cli: export cli_parse_default() definition in cli.h 4070 - REORG: mworker/cli: move CLI functions to mworker.c 4071 - MEDIUM: mworker-prog: implement program for master-worker 4072 - MINOR: mworker/cli: show programs in 'show proc' 4073 - BUG/MINOR: cli: correctly handle abns in 'show cli sockets' 4074 - MINOR: cli: start addresses by a prefix in 'show cli sockets' 4075 - MINOR: cli: export HAPROXY_CLI environment variable 4076 - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error 4077 - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE 4078 - REGTEST: http-capture/h00000: Relax a regex matching the log message 4079 - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled 4080 - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301 4081 - REGTEST: log/b00000: Be sure the client always hits its timeout 4082 - REGTEST: lua/b00003: Relax the regex matching the log message 4083 - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed 4084 - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release. 4085 - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed. 4086 - BUG/MEDIUM: htx: fix random premature abort of data transfers 4087 - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both(). 4088 - BUG/MEDIUM: streams: Store prev_state before calling si_update_both(). 4089 - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both. 4090 - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols. 4091 - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD. 4092 - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity 4093 - MINOR: skip get_gmtime where tm is unused 4094 - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL 4095 - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state. 4096 - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected. 4097 - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks 4098 - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value 4099 - BUG/MINOR: listener: renice the accept ring processing task 4100 - MINOR: cli/listener: report the number of accepts on "show activity" 4101 - MINOR: cli/activity: report the accept queue sizes in "show activity" 4102 - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream 4103 - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages 4104 - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded 4105 - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap 4106 - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block 4107 - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX 4108 - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers 4109 - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections 4110 - MINOR: mux-h1: Simplify handling of 1xx responses 4111 - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses 4112 - MEDIUM: h1: Add an option to sanitize connection headers during parsing 4113 - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers 4114 - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed 4115 - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write 4116 - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode 4117 - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX 4118 - MINOR: stream: Set a flag when the stream uses the HTX 4119 - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX 4120 - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx 4121 - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter 4122 - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn 4123 - MEDIUM: muxes: Add an optional input buffer during mux initialization 4124 - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection 4125 - MEDIUM: muxes: Be prepared to don't own connection during the release 4126 - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades 4127 - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too 4128 - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode 4129 - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2 4130 - MAJOR: htx: Enable the HTX mode by default for all proxies 4131 - REGTEST: Use HTX by default and add '--no-htx' option to disable it 4132 - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions 4133 - CLEANUP: task: do not export rq_next anymore 4134 - MEDIUM: tasks: improve fairness between the local and global queues 4135 - MEDIUM: tasks: only base the nice offset on the run queue depth 4136 - MINOR: tasks: restore the lower latency scheduling when niced tasks are present 4137 - BUG/MEDIUM: map: Fix memory leak in the map converter 4138 - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation 4139 - BUILD: task/thread: fix single-threaded build of task.c 4140 - BUILD: cli/threads: fix build in single-threaded mode 4141 - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx. 4142 - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe(). 4143 - BUG/MEDIUM: h2: Revamp the way send subscriptions works. 4144 - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag. 4145 - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7. 4146 - BUILD: address a few cases of "static <type> inline foo()" 4147 - BUILD: do not specify "const" on functions returning structs or scalars 4148 - BUILD: htx: fix a used uninitialized warning on is_cookie2 4149 - MINOR: peers: Add a new command to the CLI for peers. 4150 - DOC: update for "show peers" CLI command. 4151 - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB 4152 - MEDIUM: mworker: store the leaving state of a process 4153 - MEDIUM: mworker-prog: implements 'option start-on-reload' 4154 - CLEANUP: mworker: remove the type field in mworker_proc 4155 - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable 4156 - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI 4157 - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode 4158 - MINOR: init: add a "set-dumpable" global directive to enable core dumps 4159 - BUG/MINOR: listener/mq: correctly scan all bound threads under low load 4160 - BUG/MINOR: mworker: mworker_kill should apply on every children 4161 - BUG/MINOR: mworker: don't exit with an ambiguous value 4162 - BUG/MINOR: mworker: ensure that we still quits with SIGINT 4163 - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled 4164 - BUG/MINOR: mux-h1: Process input even if the input buffer is empty 4165 - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done 4166 - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty 4167 - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only 4168 - MINOR: mux-h1: Handle read0 during TCP splicing 4169 - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty 4170 - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used 4171 - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX 4172 - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode 4173 - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq. 4174 - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock. 4175 - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup(). 4176 - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock. 4177 - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list. 4178 - BUG/MEDIUM: applets: Don't use task_in_rq(). 4179 - BUG/MAJOR: task: make sure never to delete a queued task 4180 - MINOR: task/thread: factor out a wake-up condition 4181 - CLEANUP: task: remain consistent when using the task's handler 4182 - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy(). 4183 - MEDIUM: tasks: Don't account a destroyed task as a runned task. 4184 - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type 4185 - MINOR: contrib/prometheus-exporter: Remove usless rate metrics 4186 - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable 4187 - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type 4188 - BUG/MINOR: mworker: disable busy polling in the master process 4189 - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask. 4190 - MEDIUM: ssl: Give ssl_sock its own context. 4191 - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx. 4192 - MEDIUM: ssl: provide its own subscribe/unsubscribe function. 4193 - MEDIUM: connections: Provide a xprt_ctx for each xprt method. 4194 - MEDIUM: ssl: provide our own BIO. 4195 - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0 4196 - MINOR: peers: adds counters on show peers about tasks calls. 4197 - MEDIUM: enable travis-ci builds 4198 - MINOR: fd: Add a counter of used fds. 4199 - MEDIUM: connections: Add a way to control the number of idling connections. 4200 - BUG/MEDIUM: maps: only try to parse the default value when it's present 4201 - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR 4202 - REGTEST: Missing REQUIRE_VERSION declarations. 4203 - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var 4204 - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available 4205 - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules 4206 - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled 4207 - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST() 4208 - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST() 4209 - MINOR: gcc: Fix a silly gcc warning in connect_server() 4210 - MINOR: ssl/cli: async fd io-handlers printable on show fd 4211 - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code" 4212 - BUILD: add USE_WURFL to the list of known build options 4213 - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use 4214 - BUILD: wurfl: build fix for 1.9/2.0 code base 4215 - CLEANUP: wurfl: removed deprecated methods 4216 - DOC: wurfl: added point of contact in MAINTAINERS file 4217 - MINOR: wurfl: enabled multithreading mode 4218 - MINOR: contrib: dummy wurfl library 4219 - MINOR: dns: dns_requester structures are now in a memory pool 4220 - MINOR: dns: move callback affection in dns_link_resolution() 4221 - MINOR: obj_type: new object type for struct stream 4222 - MINOR: action: new '(http-request|tcp-request content) do-resolve' action 4223 - MINOR: log: Extract some code to send syslog messages. 4224 - REGTEST: replace LEVEL option by a more human readable one. 4225 - REGTEST: rename the reg test files. 4226 - REGTEST: adapt some reg tests after renaming. 4227 - REGTEST: make the "run-regtests" script search for tests in reg-tests by default 4228 - BUG/MAJOR: stream: Missing DNS context initializations. 4229 - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled 4230 - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler 4231 - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN. 4232 - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB 4233 - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only 4234 - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup 4235 - CLEANUP: task: report calls as unsigned in show sess 4236 - MINOR: tasks/activity: report the context switch and task wakeup rates 4237 - MINOR: stream: measure and report a stream's call rate in "show sess" 4238 - MINOR: applet: measure and report an appctx's call rate in "show sess" 4239 - BUILD: extend Travis CI config to support more platforms 4240 - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks 4241 - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word 4242 - REGTEST: exclude OSX and generic targets from abns_socket.vtc 4243 - BUILD: travis: remove the "allow_failures" entry 4244 - BUG/MINOR: activity: always initialize the profiling variable 4245 - MINOR: activity: make the profiling status per thread and not global 4246 - MINOR: activity: enable automatic profiling turn on/off 4247 - CLEANUP: standard: use proper const to addr_to_str() and port_to_str() 4248 - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive 4249 - MINOR: connection: make the debugging helper functions safer 4250 - MINOR: stream/debug: make a stream dump and crash function 4251 - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever 4252 - MEDIUM: stream/debug: force a crash if a stream spins over itself forever 4253 - MEDIUM: streams: measure processing time and abort when detecting bugs 4254 - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API. 4255 - MEDIUM: da: HTX mode support. 4256 - BUG/MEDIUM: mux-h2: properly deal with too large headers frames 4257 - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request 4258 - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed 4259 - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding 4260 - DOC: contrib/modsecurity: Typos and fix the reject example 4261 - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it 4262 - MINOR: log: Add "sample" new keyword to "log" lines. 4263 - MINOR: log: Enable the log sampling and load-balancing feature. 4264 - DOC: log: Document the sampling and load-balancing logging feature. 4265 - REGTEST: Add a new reg test for log load-balancing feature. 4266 - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI 4267 - REGTEST: Make this reg test be Linux specific. 4268 - CLEANUP: task: move the task_per_thread definition to task.h 4269 - MINOR: activity: report context switch counts instead of rates 4270 - MINOR: threads: Implement HA_ATOMIC_LOAD(). 4271 - BUG/MEDIUM: port_range: Make the ring buffer lock-free. 4272 - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled 4273 - MINOR: config: Test validity of tune.maxaccept during the config parsing 4274 - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1 4275 - BUG/MEDIUM: servers: fix typo "src" instead of "srv" 4276 - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w. 4277 - BUG/MINOR: haproxy: fix rule->file memory leak 4278 - BUG/MINOR: log: properly free memory on logformat parse error and deinit() 4279 - BUG/MINOR: checks: free memory allocated for tasklets 4280 - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions 4281 - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase(). 4282 - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown. 4283 - MINOR: threads: flatten the per-thread cpu-map 4284 - MINOR: init/threads: remove the useless tids[] array 4285 - MINOR: init/threads: make the threads array global 4286 - BUG/MEDIUM: ssl: Use the early_data API the right way. 4287 - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected. 4288 - MEDIUM: streams: Add the ability to retry a request on L7 failure. 4289 - MEDIUM: streams: Add a way to replay failed 0rtt requests. 4290 - MEDIUM: streams: Add a new keyword for retry-on, "junk-response" 4291 - BUG/MINOR: stream: also increment the retry stats counter on L7 retries 4292 - BUG/MEDIUM: checks: make sure the warmup task takes the server lock 4293 - BUG/MINOR: logs/threads: properly split the log area upon startup 4294 - BUILD: extend travis-ci matrix 4295 - CLEANUP: Remove appsession documentation 4296 - DOC: Fix typo in keyword matrix 4297 - BUILD: remove "build_libressl" duplicate declaration 4298 - BUILD: travis-ci: get back to osx without openssl support 4299 - BUILD: enable several LibreSSL hacks, including 4300 - BUILD: temporarily mark LibreSSL builds as allowed to fail 4301 - BUILD: travis: TMPDIR replacement. 4302 - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl. 4303 - MINOR: doc: Document allow-0rtt on the server line. 4304 - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected. 4305 - MEDIUM: proto: Change the prototype of the connect() method. 4306 - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server 4307 - MINOR: config: Extract the code of "stick-table" line parsing. 4308 - BUILD/MINOR: stick-table: Compilation fix. 4309 - MEDIUM: stick-table: Stop handling stick-tables as proxies. 4310 - MINOR: stick-tables: Add peers process binding computing. 4311 - MINOR: stick-table: Add prefixes to stick-table names. 4312 - MINOR: peers: Do not emit global stick-table names. 4313 - DOC: Update for "table" lines in "peers" section. 4314 - REGTEST: Add reg tests for "table" lines in "peers" sections. 4315 - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct 4316 - REGTEST: make the tls_health_checks test much faster 4317 - REGTEST: make the "table in peers" test require v2.0 4318 - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data 4319 - BUG/MEDIUM: h2/htx: always fail on too large trailers 4320 - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown 4321 - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers 4322 - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block 4323 - REGTEST: Flag some slow reg tests. 4324 - REGTEST: Reg tests file renaming. 4325 - REGTEST: Wrong renaming for one reg test. 4326 - REGTEST: Wrong assumption in IP:port logging test. 4327 - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload 4328 - MINOR: systemd: Use the variables from /etc/default/haproxy 4329 - MINOR: systemd: Make use of master socket in systemd unit 4330 - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib 4331 - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct 4332 - BUG/MEDIUM: tasks: fix possible segfault on task_destroy() 4333 - CLEANUP: task: remove unneeded tests before task_destroy() 4334 - MINOR: mworker: support a configurable maximum number of reloads 4335 - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend 4336 - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context 4337 - BUG/MINOR: mux-h1: Fix the parsing of trailers 4338 - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks() 4339 - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message 4340 - MINOR: htx: Don't try to append a trailer block with the previous one 4341 - MINOR: htx: Remove support for unused OOB HTX blocks 4342 - BUILD: travis-ci bugfixes and improvements 4343 - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO. 4344 - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach(). 4345 - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix 4346 - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER 4347 - BUILD: ssl: make libressl use its own version numbers 4348 - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER 4349 - MINOR: ssl: enable aes_gcm_dec on LibreSSL 4350 - BUILD: ssl: fix libressl build again after aes-gcm-enc 4351 - REORG: ssl: move openssl-compat from proto to common 4352 - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat 4353 - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore 4354 - CLEANUP: ssl: make inclusion of openssl headers safe 4355 - BUILD: add BoringSSL to travis-ci build matrix 4356 - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds 4357 - BUG/MINOR: stream: Attach the read side on the response as soon as possible 4358 - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers 4359 - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list. 4360 - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry. 4361 - MEDIUM: streams: Add a new http action, disable-l7-retry. 4362 - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors. 4363 - BUG/MINOR: vars: Fix memory leak in vars_check_arg 4364 - BUILD: travis-ci: make TMPDIR global variable in travis-ci 4365 - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat 4366 - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs() 4367 - CLEANUP: ssl: move all BIO_* definitions to openssl-compat 4368 - BUILD: threads: fix again the __ha_cas_dw() definition 4369 - BUG/MAJOR: mux-h2: do not add a stream twice to the send list 4370 - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg" 4371 - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers 4372 - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer 4373 - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI 4374 - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked 4375 - BUG/MINOR: vars: Fix memory leak in vars_check_arg 4376 - BUG/MAJOR: ssl: segfault upon an heartbeat request 4377 - MINOR: spoa-server: Clone the v1.7 spoa-example project 4378 - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h 4379 - MINOR: spoa-server: Externalise debug functions 4380 - MINOR: spoe-server: rename "worker" functions 4381 - MINOR: spoa-server: Replace the thread init system by processes 4382 - MINOR: spoa-server: With debug mode, start only one process 4383 - MINOR: spoa-server: Allow registering external processes 4384 - MINOR: spoa-server: Allow registering message processors 4385 - MINOR: spoa-server: Load files 4386 - MINOR: spoa-server: Prepare responses 4387 - MINOR: spoa-server: Execute registered callbacks 4388 - MINOR: spoa-server: Add Lua processing 4389 - MINOR: spoa-server: Add python 4390 - MINOR/DOC: spoe-server: Add documentation 4391 - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close. 4392 - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list 4393 - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant 4394 - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw 4395 - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut() 4396 - CLEANUP: connection: remove the handle field from the wait_event struct 4397 - BUG/MINOR: log: Wrong log format initialization. 4398 - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries 4399 - BUG/MINOR: mworker: use after free when the PID not assigned 4400 - MINOR: mux-h2: remove useless test on stream ID vs last in wake function 4401 - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags 4402 - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS 4403 - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags 4404 - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w} 4405 - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions 4406 - MINOR: mux-h2: add macros to check multiple stream states at once 4407 - MINOR: mux-h2: stop relying on CS_FL_REOS 4408 - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf() 4409 - BUILD: debug: make gcc not complain on the ABORT_NOW() macro 4410 - MINOR: debug: add a new BUG_ON macro 4411 - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 4412 - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 4413 - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe. 4414 - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers 4415 44162019/03/26 : 2.0-dev2 4417 - CLEANUP: http: Remove unreachable code in parse_http_req_capture 4418 - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy 4419 - MINOR: lists: Implement locked variations. 4420 - MEDIUM: servers: Used a locked list for idle_orphan_conns. 4421 - MEDIUM: servers: Reorganize the way idle connections are cleaned. 4422 - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt. 4423 - MINOR: cfgparse: Add a cast to make gcc happier. 4424 - BUG/MEDIUM: standard: Wrong reallocation size. 4425 - BUG/MINOR: listener: keep accept rate counters accurate under saturation 4426 - DOC: fix alphabetic ordering for "tune.fail-alloc" setting 4427 - MAJOR: config: disable support for nbproc and nbthread in parallel 4428 - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse 4429 - MAJOR: listener: do not hold the listener lock in listener_accept() 4430 - MINOR: listener: maintain a per-thread count of the number of connections on a listener 4431 - MINOR: tools: implement functions to look up the nth bit set in a mask 4432 - MINOR: listener: pre-compute some thread counts per bind_conf 4433 - MINOR: listener: implement multi-queue accept for threads 4434 - MAJOR: listener: use the multi-queue for multi-thread listeners 4435 - MINOR: activity: add accept queue counters for pushed and overflows 4436 - MINOR: config: add global tune.listener.multi-queue setting 4437 - MAJOR: threads: enable one thread per CPU by default 4438 - DOC: update management.txt to reflect that threads are used by default 4439 - BUG/MINOR: config: don't over-count the global maxsock value 4440 - BUG/MEDIUM: list: fix the rollback on addq in the locked liss 4441 - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer 4442 - BUG/MEDIUM: list: add missing store barriers when updating elements and head 4443 - MINOR: list: make the delete and pop operations idempotent 4444 - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED 4445 - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists 4446 - BUG/MEDIUM: listener: make sure the listener never accepts too many conns 4447 - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element 4448 - MINOR: listener: introduce listener_backlog() to report the backlog value 4449 - MINOR: listener: do not needlessly set l->maxconn 4450 - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's 4451 - MEDIUM: config: don't enforce a low frontend maxconn value anymore 4452 - MINOR: peers: Add a message for heartbeat. 4453 - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values 4454 - BUG/MINOR: init: never lower rlim_fd_max 4455 - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max 4456 - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload 4457 - MINOR: init: make the maxpipe computation more accurate 4458 - MINOR: init: move some maxsock updates earlier 4459 - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits 4460 - REGTEST: fix a spurious "nbthread 4" in the connection test 4461 - DOC: update the text related to the global maxconn value 4462 - BUG/MAJOR: mux-h2: fix race condition between close on both ends 4463 - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter. 4464 - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED 4465 - MINOR: htx: unconditionally handle parsing errors in requests or responses 4466 - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX 4467 - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars 4468 - MINOR: sample: Code factorization "ungrpc" converter. 4469 - MINOR: sample: Rework gRPC converter code. 4470 - CLEANUP: wurfl: remove dead, broken and unmaintained code 4471 - MINOR: config: relax the range checks on cpu-map 4472 - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support 4473 - MINOR: sample: Extract some protocol buffers specific code. 4474 - DOC: Remove tabs and fixed punctuation. 4475 - MINOR: sample: Add a protocol buffers specific converter. 4476 - REGTEST: Peers reg tests. 4477 - REGTEST: Enable reg tests with HEAD HTTP method usage. 4478 - MINOR: lists: add a LIST_DEL_INIT() macro 4479 - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue 4480 - MINOR: listener: improve incoming traffic distribution 4481 - MINOR: tools: implement my_flsl() 4482 - MEDIUM: listener: change the LB algorithm again to use two round robins instead 4483 - CLEANUP: listener: remove old thread bit mapping 4484 - MINOR: listener: move thr_idx from the bind_conf to the listener 4485 - BUG/MEDIUM: logs: Only attempt to free startup_logs once. 4486 - BUG/MAJOR: config: Wrong maxconn adjustment. 4487 - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees() 4488 - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list() 4489 - MINOR: fd: Remove debugging code. 4490 - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL. 4491 - MINOR: threads: Implement __ha_barrier_atomic*. 4492 - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API. 4493 - MINOR: threads: Add macros to do atomic operation with no memory barrier. 4494 - MEDIUM: various: Use __ha_barrier_atomic* when relevant. 4495 - MEDIUM: applets: Use the new _HA_ATOMIC_* macros. 4496 - MEDIUM: xref: Use the new _HA_ATOMIC_* macros. 4497 - MEDIUM: fd: Use the new _HA_ATOMIC_* macros. 4498 - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros. 4499 - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros. 4500 - MEDIUM: server: Use the new _HA_ATOMIC_* macros. 4501 - MEDIUM: task: Use the new _HA_ATOMIC_* macros. 4502 - MEDIUM: activity: Use the new _HA_ATOMIC_* macros. 4503 - MEDIUM: backend: Use the new _HA_ATOMIC_* macros. 4504 - MEDIUM: cache: Use the new _HA_ATOMIC_* macros. 4505 - MEDIUM: checks: Use the new _HA_ATOMIC_* macros. 4506 - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros. 4507 - MEDIUM: compression: Use the new _HA_ATOMIC_* macros. 4508 - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros. 4509 - MEDIUM: threads: Use the new _HA_ATOMIC_* macros. 4510 - MEDIUM: http: Use the new _HA_ATOMIC_* macros. 4511 - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros. 4512 - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros. 4513 - MEDIUM: logs: Use the new _HA_ATOMIC_* macros. 4514 - MEDIUM: memory: Use the new _HA_ATOMIC_* macros. 4515 - MEDIUM: peers: Use the new _HA_ATOMIC_* macros. 4516 - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros. 4517 - MEDIUM: queues: Use the new _HA_ATOMIC_* macros. 4518 - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros. 4519 - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros. 4520 - MEDIUM: stream: Use the new _HA_ATOMIC_* macros. 4521 - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros. 4522 - MEDIUM: time: Use the new _HA_ATOMIC_* macros. 4523 - MEDIUM: vars: Use the new _HA_ATOMIC_* macros. 4524 - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places 4525 - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn 4526 - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED() 4527 - BUG/MEDIUM: listener: make sure we don't pick stopped threads 4528 - MEDIUM: list: Remove useless barriers. 4529 - MEDIUM: list: Use _HA_ATOMIC_* 4530 - MEDIUM: connections: Use _HA_ATOMIC_* 4531 - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq. 4532 - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes 4533 - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation 4534 - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed. 4535 - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received 4536 - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent 4537 - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added 4538 - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate 4539 - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests 4540 - MINOR: stats: Move stuff about the stats status codes in stats files 4541 - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet 4542 - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage." 4543 - BUILD: listener: shut up a build warning when threads are disabled 4544 - BUILD: Makefile: allow the reg-tests target to be verbose 4545 - BUILD: Makefile: resolve LEVEL before calling run-regtests 4546 - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields 4547 - BUG/MAJOR: stats: Fix how huge POST data are read from the channel 4548 - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts 4549 - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams 4550 - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent 4551 - MINOR: muxes: Report the Last read with a dedicated flag 4552 - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding 4553 - BUILD: tools: fix a build warning on some 32-bit archs 4554 - MINOR: init: report the list of optionally available services 4555 - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter 4556 - BUG/MINOR: cache: Fully consume large requests in the cache applet 4557 - BUG/MINOR: stats: Fully consume large requests in the stats applet 4558 - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends 4559 - MINOR: proto_http: Add function to handle the header "Expect: 100-continue" 4560 - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue" 4561 - MINOR: stats/cache: Handle the header Expect when applets are registered 4562 - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way 4563 - CLEANUP: cache: don't export http_cache_applet anymore 4564 - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore 4565 - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay. 4566 - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter" 4567 - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done. 4568 - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send. 4569 - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders(). 4570 - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses 4571 - CLEANUP: mux-h2: add some comments to help understand the code 4572 - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites 4573 - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used. 4574 - BUG/MEDIUM: h2: Try to be fair when sending data. 4575 - BUG/MINOR: proto-http: Don't forward request body anymore on error 4576 - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data() 4577 - MINOR: connection: and new flag to mark end of input (EOI) 4578 - MINOR: channel: Report EOI on the input channel if it was reached in the mux 4579 - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream 4580 - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached 4581 - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose 4582 - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL 4583 - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data 4584 - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL. 4585 - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send(). 4586 - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf. 4587 - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing. 4588 - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion 4589 - CLEANUP: task: only perform a LIST_DEL() when the list is not empty 4590 - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition 4591 - CONTRIB: debug: report the CS and CF's EOI flags 4592 - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down. 4593 45942019/02/26 : 2.0-dev1 4595 - MINOR: mux-h2: only increase the connection window with the first update 4596 - REGTESTS: remove the expected window updates from H2 handshakes 4597 - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error 4598 - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max 4599 - MEDIUM: mux-h2: remove padlen during headers phase 4600 - MINOR: h2: add a bit-based frame type representation 4601 - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers() 4602 - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream 4603 - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code 4604 - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code 4605 - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM 4606 - MINOR: buffers: add a new b_move() function 4607 - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset 4608 - MEDIUM: mux-h2: handle decoding of CONTINUATION frames 4609 - CLEANUP: mux-h2: remove misleading comments about CONTINUATION 4610 - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server. 4611 - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free(). 4612 - BUG/MINOR: htx: send the proper authenticate header when using http-request auth 4613 - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full. 4614 - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream. 4615 - BUG/MAJOR: servers: Use the list api correctly to avoid crashes. 4616 - BUG/MAJOR: servers: Correctly use LIST_ELEM(). 4617 - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list. 4618 - BUG/MEDIUM: servers: Flag the stream_interface on handshake error. 4619 - MEDIUM: servers: Be smarter when switching connections. 4620 - MEDIUM: sessions: Keep track of which connections are idle. 4621 - MINOR: payload: add sample fetch for TLS ALPN 4622 - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals 4623 - MINOR: channel: Add the function channel_add_input 4624 - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand 4625 - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown 4626 - BUG/MAJOR: htx: Return the good block address after a defrag 4627 - MINOR: lb: allow redispatch when using consistent hash 4628 - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers 4629 - BUG/MEDIUM: mux-h2: always restart reading if data are available 4630 - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers() 4631 - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers() 4632 - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before 4633 - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers 4634 - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions 4635 - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2 4636 - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify() 4637 - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done 4638 - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts 4639 - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count 4640 - MINOR: mux-h2: add a new dummy stream : h2_error_stream 4641 - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors 4642 - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers 4643 - MINOR: mux-h2: remove a misleading and impossible test 4644 - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing 4645 - MINOR: mux-h2: check for too many streams only for idle streams 4646 - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded 4647 - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames 4648 - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers 4649 - MEDIUM: mux-h2: pass trailers to H1 (legacy mode) 4650 - MINOR: htx: add a new function to add a block without filling it 4651 - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers 4652 - MEDIUM: mux-h2: pass trailers to HTX 4653 - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN 4654 - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests 4655 - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent 4656 - MINOR: h1: make the H1 headers block parser able to parse headers only 4657 - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks 4658 - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command 4659 - MINOR: stream: Add the subscription events of SIs in "show sess all" command 4660 - MINOR: mux-h1: Add the subscription events in "show fd" command 4661 - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing 4662 - BUG/MINOR: cache/htx: Be sure to count partial trailers 4663 - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv(). 4664 - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized. 4665 - MINOR: connections: Remove a stall comment. 4666 - BUG/MEDIUM: cli: make "show sess" really thread-safe 4667 - BUILD: add a new file "version.c" to carry version updates 4668 - MINOR: stream/htx: add the HTX flags output in "show sess all" 4669 - MINOR: stream/cli: fix the location of the waiting flag in "show sess all" 4670 - MINOR: stream/cli: report more info about the HTTP messages on "show sess all" 4671 - BUG/MINOR: lua: bad args are returned for Lua actions 4672 - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred 4673 - MINOR: htx: Add an helper function to get the max space usable for a block 4674 - MINOR: channel/htx: Add HTX version for some helper functions 4675 - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served 4676 - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped 4677 - DOC: regtest: make it clearer what the purpose of the "broken" series is 4678 - REGTEST: mailers: add new test for 'mailers' section 4679 - REGTEST: Add a reg test for health-checks over SSL/TLS. 4680 - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done 4681 - MEDIUM: mux-h1: Clarify how shutr/shutw are handled 4682 - BUG/MINOR: compression: Disable it if another one is already in progress 4683 - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams 4684 - BUG/MINOR: cache: Disable the cache if any compression filter precedes it 4685 - REGTEST: Add some informatoin to test results. 4686 - MINOR: htx: Add a function to truncate all blocks after a specific offset 4687 - MINOR: channel/htx: Add the HTX version of channel_truncate/erase 4688 - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer 4689 - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used 4690 - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...) 4691 - DOC: http-request cache-use / http-response cache-store expects cache name 4692 - REGTEST: "capture (request|response)" regtest. 4693 - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet 4694 - REGTEST: filters: add compression test 4695 - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template 4696 - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT. 4697 - DOC: Be a bit more explicit about allow-0rtt security implications. 4698 - MINOR: mux-h1: make the mux_h1_ops struct static 4699 - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code 4700 - BUG/MEDIUM: connection: properly unregister the mux on failed initialization 4701 - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key 4702 - REGTESTS: test case for map_regm commit 271022150d 4703 - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters 4704 - REGTESTS: Basic tests for using maps to redirect requests / select backend 4705 - DOC: REGTESTS README varnishtest -Dno-htx= define. 4706 - MINOR: spoe: Make the SPOE filter compatible with HTX proxies 4707 - MINOR: checks: Store the proxy in checks. 4708 - BUG/MEDIUM: checks: Avoid having an associated server for email checks. 4709 - REGTEST: Switch to vtest. 4710 - REGTEST: Adapt reg test doc files to vtest. 4711 - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw. 4712 - BUG/MINOR: base64: dec func ignores padding for output size checking 4713 - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file 4714 - MINOR: ssl: add support of aes256 bits ticket keys on file and cli. 4715 - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH 4716 - BUG/MINOR: backend: balance uri specific options were lost across defaults 4717 - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit 4718 - MINOR: backend: move url_param_name/len to lbprm.arg_str/len 4719 - MINOR: backend: make headers and RDP cookie also use arg_str/len 4720 - MINOR: backend: add new fields in lbprm to store more LB options 4721 - MINOR: backend: make the header hash use arg_opt1 for use_domain_only 4722 - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3} 4723 - MINOR: backend: move hash_balance_factor out of chash 4724 - MEDIUM: backend: move all LB algo parameters into an union 4725 - MINOR: backend: make the random algorithm support a number of draws 4726 - BUILD/MEDIUM: da: Necessary code changes for new buffer API. 4727 - BUG/MINOR: stick_table: Prevent conn_cur from underflowing 4728 - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code. 4729 - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not 4730 - DOC: add a missing space in the documentation for bc_http_major 4731 - REGTEST: checks basic stats webpage functionality 4732 - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set. 4733 - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded. 4734 - DOC: add github issue templates 4735 - MINOR: cfgparse: Extract some code to be re-used. 4736 - CLEANUP: cfgparse: Return asap from cfg_parse_peers(). 4737 - CLEANUP: cfgparse: Code reindentation. 4738 - MINOR: cfgparse: Useless frontend initialization in "peers" sections. 4739 - MINOR: cfgparse: Rework peers frontend init. 4740 - MINOR: cfgparse: Simplication. 4741 - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines. 4742 - MINOR: peers: Make outgoing connection to SSL/TLS peers work. 4743 - MINOR: cfgparse: SSL/TLS binding in "peers" sections. 4744 - DOC: peers: SSL/TLS documentation for "peers" 4745 - BUG/MINOR: startup: certain goto paths in init_pollers fail to free 4746 - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash 4747 - BUG/MINOR: server: don't always trust srv_check_health when loading a server state 4748 - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk() 4749 - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages 4750 - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst 4751 - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once 4752 - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve 4753 - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only 4754 - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy 4755 - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf() 4756 - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room 4757 - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors 4758 - MINOR: h2: declare new sets of frame types 4759 - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY 4760 - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error 4761 - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream 4762 - BUG/MINOR: hpack: return a compression error on invalid table size updates 4763 - MINOR: server: make sure pool-max-conn is >= -1 4764 - BUG/MINOR: stream: take care of synchronous errors when trying to send 4765 - CLEANUP: server: fix indentation mess on idle connections 4766 - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams() 4767 - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID 4768 - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available 4769 - MINOR: server: add a max-reuse parameter 4770 - MINOR: mux-h2: always consider a server's max-reuse parameter 4771 - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON 4772 - MINOR: stream: don't wait before retrying after a failed connection reuse 4773 - MEDIUM: h2: always parse and deduplicate the content-length header 4774 - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames 4775 - CLEANUP: h2: Remove debug printf in mux_h2.c 4776 - MINOR: cfgparse: make the process/thread parser support a maximum value 4777 - MINOR: threads: make MAX_THREADS configurable at build time 4778 - DOC: nbthread is no longer experimental. 4779 - BUG/MINOR: listener: always fill the source address for accepted socketpairs 4780 - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY 4781 - BUG/MINOR: spoe: corrected fragmentation string size 4782 - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups 4783 - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry. 4784 - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure 4785 - SCRIPTS: add the issue tracker URL to the announce script 4786 - MINOR: peers: Extract some code to be reused. 4787 - CLEANUP: peers: Indentation fixes. 4788 - MINOR: peers: send code factorization. 4789 - MINOR: peers: Add new functions to send code and reduce the I/O handler. 4790 - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler. 4791 - MINOR: peers: Move update receive code to reduce the size of the I/O handler. 4792 - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler. 4793 - MINOR: peers: Move high level receive code to reduce the size of I/O handler. 4794 - CLEANUP: peers: Be more generic. 4795 - MINOR: peers: move error handling to reduce the size of the I/O handler. 4796 - MINOR: peers: move messages treatment code to reduce the size of the I/O handler. 4797 - MINOR: peers: move send code to reduce the size of the I/O handler. 4798 - CLEANUP: peers: Remove useless statements. 4799 - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler. 4800 - MINOR: peers: move peer initializations code to reduce the size of the I/O handler. 4801 - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg() 4802 - CLEANUP: peers: factor error handling in peer_treat_definedmsg() 4803 - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup 4804 - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams 4805 - CLEANUP: mux-h2: remove two useless but misleading assignments 4806 - BUG/MEDIUM: checks: Check that conn_install_mux succeeded. 4807 - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated. 4808 - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list. 4809 - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed. 4810 - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf. 4811 - BUG/MEDIUM: peers: Handle mux creation failure. 4812 - BUG/MEDIUM: servers: Close the connection if we failed to install the mux. 4813 - BUG/MEDIUM: compression: Rewrite strong ETags 4814 - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit 4815 - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity 4816 - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update 4817 - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions 4818 - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams 4819 - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them 4820 - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC 4821 - MINOR: h2: add a generic frame checker 4822 - MEDIUM: mux-h2: check the frame validity before considering the stream state 4823 - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers 4824 - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection 4825 - DOC: compression: Update the reasons for disabled compression 4826 - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation. 4827 - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers 4828 - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty() 4829 - MINOR: mux-h2: consistently rely on the htx variable to detect the mode 4830 - BUG/MEDIUM: peers: Peer addresses parsing broken. 4831 - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden 4832 - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE. 4833 - BUG/MINOR: stream: don't close the front connection when facing a backend error 4834 - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection 4835 - MINOR: stream-int: add a new flag to mention that we want the connection to be killed 4836 - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection 4837 - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams 4838 - BUG/MINOR: server: fix logic flaw in idle connection list management 4839 - MINOR: mux-h2: max-concurrent-streams should be unsigned 4840 - MINOR: mux-h2: make sure to only check concurrency limit on the frontend 4841 - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting 4842 - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams 4843 - MINOR: xref: Add missing barriers. 4844 - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free(). 4845 - MINOR: debug: Add an option that causes random allocation failures. 4846 - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list 4847 - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules 4848 - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret. 4849 - BUG/MINOR: backend: check srv_conn before dereferencing it 4850 - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method 4851 - BUG/MEDIUM: mux-h2: always set :authority on request output 4852 - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free(). 4853 - BUG/MINOR: threads: fix the process range of thread masks 4854 - BUG/MINOR: config: fix bind line thread mask validation 4855 - CLEANUP: threads: fix misleading comment about all_threads_mask 4856 - CLEANUP: threads: use nbits to calculate the thread mask 4857 - OPTIM: listener: optimize cache-line packing for struct listener 4858 - MINOR: tools: improve the popcount() operation 4859 - MINOR: config: keep an all_proc_mask like we have all_threads_mask 4860 - MINOR: global: add proc_mask() and thread_mask() 4861 - MINOR: config: simplify bind_proc processing using proc_mask() 4862 - MINOR: threads: make use of thread_mask() to simplify some thread calculations 4863 - BUG/MINOR: compression: properly report compression stats in HTX mode 4864 - BUG/MINOR: task: close a tiny race in the inter-thread wakeup 4865 - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present 4866 - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes 4867 - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX 4868 - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules 4869 - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used 4870 - DOC: ssl: Stop documenting ciphers example to use 4871 - BUG/MINOR: spoe: do not assume agent->rt is valid on exit 4872 - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets 4873 - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last 4874 - BUG/MEDIUM: server: initialize the idle conns list after parsing the config 4875 - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end 4876 - MINOR: config: make MAX_PROCS configurable at build time 4877 - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck 4878 - BUG/MINOR: config: Reinforce validity check when a process number is parsed 4879 - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl 4880 - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy 4881 - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive 4882 - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly. 4883 - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module. 4884 - BUG/MAJOR: stream: avoid double free on unique_id 4885 - BUILD/MINOR: stream: avoid a build warning with threads disabled 4886 - BUILD/MINOR: tools: fix build warning in the date conversion functions 4887 - BUILD/MINOR: peers: remove an impossible null test in intencode() 4888 - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline 4889 - BUG/MEDIUM: peers: Missing peer initializations. 4890 - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode 4891 - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed 4892 - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode 4893 - BUILD/MEDIUM: initcall: Fix build on MacOS. 4894 - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf() 4895 - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body 4896 - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed 4897 - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers 4898 - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default 4899 - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled 4900 - MINOR: mux-h2: Set HTX extra value when possible 4901 - BUG/MEDIUM: htx: count the amount of copied data towards the final count 4902 - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable 4903 - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers 4904 - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns. 4905 - BUG/MEDIUM: servers: Add a per-thread counter of idle connections. 4906 - MINOR: fd: add a new my_closefrom() function to close all FDs 4907 - MINOR: checks: use my_closefrom() to close all FDs 4908 - MINOR: fd: implement an optimised my_closefrom() function 4909 - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs 4910 - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked 4911 - BUG/MAJOR: listener: Make sure the listener exist before using it. 4912 - MINOR: fd: Use closefrom() as my_closefrom() if supported. 4913 - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf() 4914 - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped 4915 - MINOR: htx: Add function to drain data from an HTX message 4916 - MINOR: channel/htx: Add function to skips output bytes from an HTX channel 4917 - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served 4918 - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests 4919 - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests 4920 - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input() 4921 - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages 4922 - BUG/MEDIUM: h2: advertise to servers that we don't support push 4923 - MINOR: standard: Add a function to parse uints (dotted notation). 4924 - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type. 4925 - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC. 4926 - MINOR: sample: Add two sample converters for protocol buffers. 4927 - DOC: sample: Add gRPC related documentation. 4928 49292018/12/22 : 2.0-dev0 4930 - BUG/MAJOR: connections: Close the connection before freeing it. 4931 - REGTEST: Require the option LUA to run lua tests 4932 - REGTEST: script: Process script arguments before everything else 4933 - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters 4934 - REGTEST: script: Add the option --clean to remove previous log direcotries 4935 - REGTEST: script: Add the option --debug to show logs on standard ouput 4936 - REGTEST: script: Add the option --keep-logs to keep all log directories 4937 - REGTEST: script: Add the option --use-htx to enable the HTX in regtests 4938 - REGTEST: script: Print only errors in the results report 4939 - REGTEST: Add option to use HTX prefixed by the macro 'no-htx' 4940 - REGTEST: Make reg-tests target support argument. 4941 - REGTEST: Fix a typo about barrier type. 4942 - REGTEST: Be less Linux specific with a syslog regex. 4943 - REGTEST: Missing enclosing quotes for ${tmpdir} macro. 4944 - REGTEST: Exclude freebsd target for some reg tests. 4945 - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE. 4946 - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports 4947 - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response() 4948 - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error 4949 - BUG/MINOR: compression/htx: Don't compress responses with unknown body length 4950 - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty 4951 - MEDIUM: mux_h1: Implement h1_show_fd. 4952 - REGTEST: script: Add support of alternatives in requited options list 4953 - REGTEST: Add a basic test for the compression 4954 - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames 4955 - REGTEST: A basic test for "http-buffer-request" 4956 - BUG/MEDIUM: server: Also copy "check-sni" for server templates. 4957 - MINOR: ssl: Add ssl_sock_set_alpn(). 4958 - MEDIUM: checks: Add check-alpn. 4959 - wip 4960 49612018/12/19 : 1.9.0 4962 - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data 4963 - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback 4964 - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams. 4965 - CONTRIB: debug: teach the "flags" utility about new conn_stream flags 4966 - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving 4967 - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux 4968 - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available 4969 - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode 4970 - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd" 4971 - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT 4972 - MINOR: cli/stream: add the conn_stream in "show sess" output 4973 - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd" 4974 - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd 4975 - MINOR: objtype: report a few missing types in names and base pointers 4976 - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS 4977 - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams() 4978 - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors 4979 - BUG/MINOR: mux-h1: report the correct frontend in error captures 4980 - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer 4981 - MEDIUM: h2: properly check and deduplicate the content-length header in HTX 4982 - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding 4983 - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies 4984 - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets 4985 - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything 4986 - MINOR: compression: Remove the thread_local variable buf_output 4987 - CLEANUP: connection: rename subscription events values and event field 4988 - CLEANUP: connection: rename conn->mux_ctx to conn->ctx 4989 - MINOR: connection: remove an unwelcome dependency on struct stream 4990 - CLEANUP: stream-int: consistently call the si/stream_int functions 4991 - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive. 4992 - BUG/MEDIUM: H2: Make sure htx is set even on empty frames. 4993 - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams() 4994 - MEDIUM: stream-int: always consider all CS errors on the send side 4995 - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data. 4996 - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers 4997 - MINOR: mux-h2: add a new function h2s_alert() to call the data layer 4998 - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts 4999 - MINOR: connection: add cs_set_error() to set the error bits 5000 - CLEANUP: mux-h2: make use of cs_set_error() 5001 - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data 5002 - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr. 5003 - MINOR: cli/show_fd: report that a connection is back or not 5004 - SCRIPTS: add the slack channel URL to the announce script 5005 - CLEANUP: remove my name and address from the copyright banner 5006 - DOC: mention in the readme that 1.9 is a stable version now 5007 50082018/12/16 : 1.9-dev11 5009 - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried. 5010 - REGTEST/MINOR: remove double body specification for server txresp 5011 - BUG/MEDIUM: connections: Remove error flags when retrying. 5012 - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd 5013 - REGTEST/MINOR: remove health-check that can make the test fail 5014 - DOC: clarify that check-sni needs an argument. 5015 - DOC: refer to check-sni in the documentation of sni 5016 - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods 5017 - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages 5018 - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests 5019 - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received 5020 - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one 5021 - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx. 5022 - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation 5023 - CLEANUP: hpack: no need to include chunk.h, only include buf.h 5024 - MINOR: hpack: simplify the len to bytes conversion 5025 - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header() 5026 - MINOR: hpack: optimize header encoding for short names 5027 - CONTRIB: hpack: add a compressed stream generator for the encoder 5028 - MEDIUM: hpack: make it possible to encode any static header name 5029 - MINOR: hpack: move the length computation and encoding functions to .h 5030 - MINOR: hpack: provide a function to encode a short indexed header 5031 - MINOR: hpack: provide a function to encode a long indexed header 5032 - MINOR: hpack: provide new functions to encode the ":status" header 5033 - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status 5034 - MINOR: hpack: provide a function to encode an HTTP method 5035 - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method 5036 - MINOR: hpack: provide a function to encode an HTTP scheme 5037 - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme 5038 - MINOR: hpack: provide a function to encode an HTTP path 5039 - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path 5040 - REGTEST: add the HTTP rules test involving HTX processing 5041 - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions 5042 - MEDIUM: cli: rework the CLI proxy parser 5043 - MINOR: cli: parse prompt command in the CLI proxy 5044 - MINOR: cli: implements 'quit' in the CLI proxy 5045 - BUG/MINOR: cli: wait for payload data even without prompt 5046 - MEDIUM: cli: handle payload in CLI proxy 5047 - MINOR: cli: use pcli_flags for prompt activation 5048 - MINOR: compression: Rename the function check_legacy_http_comp_flt() 5049 - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies 5050 - MINOR: cache: Register the cache as a data filter only if response is cacheable 5051 - MEDIUM: cache/htx: Add the HTX support into the cache 5052 - MINOR: cache: Improve and simplify the cache configuration check 5053 - MINOR: filters: Export the name of known filters 5054 - MEDIUM: cache/compression: Add a way to safely combined compression and cache 5055 - MEDIUM: cache: Require an explicit filter declaration if other filters are used 5056 - REORG: htx: merge types+proto into common/htx.h 5057 - REORG: http: create http_msg.c to place there some legacy HTTP parts 5058 - REORG: h1: move legacy http functions to http_msg.c 5059 - REORG: h1: move the h1_state definition to proto_http 5060 - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions 5061 - REORG: h1: merge types+proto into common/h1.h 5062 - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR 5063 - MEDIUM: mux-h1: implement true zero-copy of DATA blocks 5064 - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void* 5065 - BUG/MINOR: mux-h2: refrain from muxing during the preface 5066 - BUG/MINOR: mux-h2: advertise a larger connection window size 5067 - DOC: master CLI documentation in management.txt 5068 - MINOR: mux-h2: avoid copying large blocks into full buffers 5069 - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks 5070 - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode 5071 - MINOR: cli: change 'show proc' output of old processes 5072 - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages 5073 - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name 5074 - BUG: dns: Prevent out-of-bounds read in dns_read_name() 5075 - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response() 5076 - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response() 5077 - BUG: dns: Fix off-by-one write in dns_validate_dns_response() 5078 - REGTEST: the cache regtest requires haproxy 1.9 5079 - MEDIUM: cli: store CLI level in the appctx 5080 - MEDIUM: cli: show and change CLI permissions 5081 - CLEANUP: cli: use dedicated define instead of appctx ones 5082 - MEDIUM: cli: handle CLI level from the master CLI 5083 - BUG/MEDIUM: cli: handle correctly prefix and payload 5084 - BUILD: Makefile: Implements the help target 5085 - REGTESTS: adjust the http-rules regtest to support window updates 5086 - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry. 5087 - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected. 5088 - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure. 5089 - MEDIUM: mux: Add an optional "reset" method. 5090 - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data 5091 - MINOR: mux-h1: Add helper functions to wake a stream from recv or send 5092 - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established 5093 - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection. 5094 - MEDIUM: htx: Try to take a connection over if it has no owner. 5095 - REGTEST: Reg testing improvements. 5096 - REGTEST: Add a first test for health-checks. 5097 - REGTEST: Reg test for "check" health-check option. 5098 - REGTEST: level 1 health-check test 2. 5099 - REGTEST: Add miscellaneous reg tests for health-checks. 5100 - REGTEST: add a few HTTP messaging tests 5101 - MINOR: lb: make the leastconn algorithm more accurate 5102 - REGTEST: fix missing space in checks/s00001 5103 - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests 5104 - BUG/MEDIUM: cache: fix random crash on filter parser's error path 5105 - MINOR: connection: realign empty buffers in muxes, not transport layers 5106 - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment 5107 - MINOR: backend: count the number of connect and reuse per server and per backend 5108 - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses 5109 - MINOR: tools: increase the number of ITOA strings to 16 5110 - MINOR: cache: report the number of cache lookups and cache hits 5111 - MEDIUM: tasks: check the global task mask instead of the thread number 5112 - MINOR: mworker: set all_threads_mask and pid_bit to 1 5113 - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason 5114 - BUG/MINOR: stats: Parse post data for HTX streams 5115 - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware 5116 - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX 5117 - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies 5118 - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX 5119 - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware 5120 - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages 5121 - MINOR: lua: Remove useless check on the messages state in HTTP functions 5122 - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset. 5123 - BUG/MINOR: mworker: don't use unitialized mworker_proc struct 5124 - MINOR: mworker/cli: indicate in the master prompt when a reload failed 5125 - MINOR: cli: implements 'reload' on master CLI 5126 - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream. 5127 - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send 5128 - BUG/MAJOR: backend: only update server's counters when the server exists 5129 - MINOR: tools: preset the port of fd-based "sockets" to zero 5130 - BUG/MINOR: log: fix logging to both FD and IP 5131 - REGTEST: Add a reg test for HTTP cookies. 5132 - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs 5133 - BUILD: thread: properly report multi-thread support 5134 - BUG/MINOR: logs: leave startup-logs global and not per-thread 5135 - BUG/MEDIUM: threads: don't close the thread waker pipe if not init 5136 - BUG/MAJOR: compression/cache: Make it really works with these both filters 5137 - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut. 5138 - MEDIUM: proxy: Set http-reuse safe as default. 5139 - MEDIUM: servers: Add a command to limit the number of idling connections. 5140 - MEDIUM: servers: Replace idle-timeout with pool-purge-delay. 5141 - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list. 5142 - MEDIUM: mux: provide the session to the init() and attach() method. 5143 - MEDIUM: sessions: Don't keep an infinite number of idling connections. 5144 - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists. 5145 - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams. 5146 - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort 5147 - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery 5148 - MINOR: pools: Cast to volatile int * instead of int *. 5149 - MINOR: debug: make the ABORT_NOW macro use a volatile int 5150 - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached. 5151 - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer 5152 - DOC: clarify the agent-check status line syntax 5153 - BUG/MAJOR: hpack: fix length check for short names encoding 5154 - DOC: split the README into README + INSTALL 5155 51562018/12/08 : 1.9-dev10 5157 - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific 5158 - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above 5159 - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn 5160 - BUG/MEDIUM: mworker: stop proxies which have no listener in the master 5161 - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner. 5162 - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw. 5163 - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support 5164 - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data. 5165 - MEDIUM: mux-h1: Revamp the way subscriptions are handled. 5166 - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv() 5167 - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed 5168 - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s 5169 - BUG/MINOR: proto_htx: Truncate the request when an error is detected 5170 - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all. 5171 - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode 5172 - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers 5173 - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked 5174 - BUG/MEDIUM: mux-h2: don't send more HTX data than requested 5175 - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks 5176 - BUG/MEDIUM: h1: Correctly report used data with no len. 5177 - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed. 5178 - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE. 5179 - MINOR: htx: make htx_from_buf() adjust the size only on new buffers 5180 - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers 5181 - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room() 5182 - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers 5183 - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible 5184 - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx 5185 - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path 5186 - MEDIUM: htx: Rework conversion from a buffer to an htx structure 5187 - MEDIUM: channel/htx: Add functions for forward HTX data 5188 - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf() 5189 - CLEANUP: htx: Fix indentation here and there in HTX files 5190 - MINOR: mux-h1: Allow partial data consumption during outgoing data processing 5191 - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line 5192 - BUG/MEDIUM: mux-h2: stop sending using HTX on errors 5193 - MINOR: mux-h1: Drain obuf if the output is closed after sending data 5194 - BUG/MEDIUM: mworker: stop every tasks in the master 5195 - BUG/MEDIUM: htx: Set the right start-line offset after a defrag 5196 - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet. 5197 - BUG/MEDIUM: connections: Reuse an already attached conn_stream. 5198 - MINOR: stream-int: add a new blocking condition on the remote connection 5199 - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established 5200 - BUG/MEDIUM: lua: block on remote connection establishment 5201 - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks() 5202 - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests 5203 - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags. 5204 - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection. 5205 - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0. 5206 - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv 5207 - REGTEST: Move LUA reg test 4 to level 1. 5208 - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string 5209 - MEDIUM: ist: always turn header names to lower case 5210 - MINOR: h2: don't turn HTX header names to lower case anymore 5211 - MEDIUM: ist: use local conversion arrays to case conversion 5212 - MINOR: htx: switch to case sensitive search of lower case header names 5213 - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending 5214 - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv 5215 - REGTEST: fix the Lua test file name in test lua/h00002 :-) 5216 - REGTEST: add a basic test for HTTP rules manipulating headers 5217 - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR. 5218 - MINOR: sample: add bc_http_major 5219 - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time 5220 - REGTEST: make the HTTP rules test compatible with HTTP/2 as well 5221 - BUG/MEDIUM: h2: Don't try to chunk data when using HTX. 5222 - MINOR: compiler: add a new macro ALREADY_CHECKED() 5223 - BUILD: h2: mark the start line already checked to avoid warnings 5224 - BUG/MINOR: mux-h1: Remove the connection header when it is useless 5225 52262018/12/02 : 1.9-dev9 5227 - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl 5228 - BUG/MINOR: mworker: Do not attempt to close(2) fd -1 5229 - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM 5230 - MINOR: compression: always create the compression pool 5231 - BUG/MEDIUM: mworker: fix FD leak upon reload 5232 - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms 5233 - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl 5234 - MINOR: initcall: introduce a way to register init functions to call at boot 5235 - MINOR: init: process all initcalls in order at boot time 5236 - MEDIUM: init: convert all trivial registration calls to initcalls 5237 - MINOR: thread: provide a set of lock initialisers 5238 - MINOR: threads: add new macros to declare self-initializing locks 5239 - MEDIUM: init: use self-initializing spinlocks and rwlocks 5240 - MINOR: initcall: apply initcall to all register_build_opts() calls 5241 - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread* 5242 - MINOR: initcall: use initcalls for section parsers 5243 - MINOR: memory: add a callback function to create a pool 5244 - MEDIUM: init: use initcall for all fixed size pool creations 5245 - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit() 5246 - MEDIUM: initcall: use initcalls for a few initialization functions 5247 - MEDIUM: memory: make the pool cache an array and not a thread_local 5248 - MINOR: ssl: free ctx when libssl doesn't support NPN 5249 - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected 5250 - MINOR: h2: make struct h2_ops static 5251 - BUG/MEDIUM: mworker: avoid leak of client socket 5252 - REORG: mworker: declare master variable in global.h 5253 - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set 5254 - CLEANUP: http: Fix typo in init_http's comment 5255 - BUILD: Makefile: Disable -Wcast-function-type if it exists. 5256 - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed. 5257 - REGTEST/MINOR: script: add run-regtests.sh script 5258 - REGTEST: Add a basic test for the cache. 5259 - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach. 5260 - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id 5261 - BUG/MEDIUM: connections: Wake the stream once the mux is chosen. 5262 - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI. 5263 - BUG/MEDIUM: stream_interface: Don't check if the handshake is done. 5264 - BUG/MEDIUM: stream_interface: Make sure we read all the data available. 5265 - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection. 5266 - REGTEST: Fix several issues. 5267 - REGTEST: lua: check socket functionality from a lua-task 5268 - BUG/MEDIUM: session: Remove the session from the session_list in session_free. 5269 - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp. 5270 - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server(). 5271 - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy. 5272 - BUG/MEDIUM: session: properly clean the outgoing connection before freeing. 5273 - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done. 5274 - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always. 5275 - MEDIUM: h2: Destroy a connection with no stream if it has no owner. 5276 - MAJOR: sessions: Store multiple outgoing connections in the session. 5277 - MEDIUM: session: Steal owner-less connections on end of transaction. 5278 - MEDIUM: server: Be smarter about deciding to reuse the last server. 5279 - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections. 5280 - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name 5281 - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot 5282 - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced 5283 - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages 5284 - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed 5285 - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing 5286 - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM 5287 - BUG/MINOR: connection: report mux modes when HTX is supported 5288 - MINOR: htx: add a function to cut the beginning of a DATA block 5289 - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer 5290 - MINOR: mux-h1: Implement get_cs_info() callback 5291 - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones 5292 - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible 5293 - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode() 5294 - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message 5295 - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing 5296 - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent 5297 - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf() 5298 - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list 5299 - MINOR: htx: Add function to add an HTX block just before another one 5300 - MINOR: htx: Add function to iterate on an HTX message using HTX blocks 5301 - MINOR: htx: Add a function to find the HTX block corresponding to a data offset 5302 - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response 5303 - MEDIUM: htx: Change htx_sl to be a struct instead of an union 5304 - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure 5305 - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing 5306 - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones 5307 - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message 5308 - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses 5309 - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses 5310 - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses 5311 - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server 5312 - MINOR: proto_htx: Send valid HTX message to send 30x responses 5313 - MEDIUM: proto_htx: Convert all HTTP error messages into HTX 5314 - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found 5315 - MINOR: mux-h1: Change client conn_mode on an explicit close for the response 5316 - MINOR: mux-h1: Capture bad H1 messages 5317 - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation 5318 - MEDIUM: proto_htx/filters: Add data filtering during the forwarding 5319 - MINOR: flt_trace: Adapt to be compatible with the HTX representation 5320 - MEDIUM: compression: Adapt to be compatible with the HTX representation 5321 - MINOR: h2: implement H2->HTX request header frame transcoding 5322 - MEDIUM: mux-h2: register mux for both HTTP and HTX modes 5323 - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers 5324 - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware 5325 - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers 5326 - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks 5327 - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks 5328 - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks 5329 - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed 5330 - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode 5331 - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers 5332 - MINOR: listener: the mux_proto entry in the bind_conf is const 5333 - MINOR: connection: create conn_get_best_mux_entry() 5334 - MINOR: server: the mux_proto entry in the server is const 5335 - MINOR: config: make sure to associate the proper mux to bind and servers 5336 - MINOR: hpack: add ":path" to the list of common header fields 5337 - MINOR: h2: add new functions to produce an HTX message from an H2 response 5338 - MINOR: mux-h2: mention that the mux is compatible with both sides 5339 - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new() 5340 - MEDIUM: mux-h2: start to create the outgoing mux 5341 - MEDIUM: mux-h2: implement encoding of H2 request on the backend side 5342 - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic 5343 - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well 5344 - MEDIUM: mux-h2: Implement h2_attach(). 5345 - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY. 5346 - REGTEST: Fix LEVEL 4 script 0 of "connection" module. 5347 - MINOR: connection: Fix a comment. 5348 - MINOR: mux: add a "max_streams" method. 5349 - MEDIUM: servers: Add a way to keep idle connections alive. 5350 - CLEANUP: fix typos in the htx subsystem 5351 - CLEANUP: Fix typo in the chunk headers file 5352 - CLEANUP: Fix typos in the h1 subsystem 5353 - CLEANUP: Fix typos in the h2 subsystem 5354 - CLEANUP: Fix a typo in the mini-clist header 5355 - CLEANUP: Fix a typo in the proto_htx subsystem 5356 - CLEANUP: Fix typos in the proto_tcp subsystem 5357 - CLEANUP: Fix a typo in the signal subsystem 5358 - CLEANUP: Fix a typo in the session subsystem 5359 - CLEANUP: Fix a typo in the queue subsystem 5360 - CLEANUP: Fix typos in the shctx subsystem 5361 - CLEANUP: Fix typos in the socket pair protocol subsystem 5362 - CLEANUP: Fix typos in the map management functions 5363 - CLEANUP: Fix typo in the fwrr subsystem 5364 - CLEANUP: Fix typos in the cli subsystem 5365 - CLEANUP: Fix typo in the 51d subsystem 5366 - CLEANUP: Fix a typo in the base64 subsystem 5367 - CLEANUP: Fix a typo in the connection subsystem 5368 - CLEANUP: Fix a typo in the protocol header file 5369 - CLEANUP: Fix a typo in the checks header file 5370 - CLEANUP: Fix typos in the file descriptor subsystem 5371 - CLEANUP: Fix a typo in the listener subsystem 5372 - BUG/MINOR: lb-map: fix unprotected update to server's score 5373 - BUILD: threads: fix minor build warnings when threads are disabled 5374 53752018/11/25 : 1.9-dev8 5376 - REORG: config: extract the global section parser into cfgparse-global 5377 - REORG: config: extract the proxy parser into cfgparse-listen.c 5378 - BUILD: update the list of supported targets and compilers in makefile and readme 5379 - BUILD: reorder the objects in the makefile 5380 - BUILD: Makefile: make "V=1" show some of the commands that are executed 5381 - BUILD: Makefile: add the quiet mode to a few more targets 5382 - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets 5383 - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR 5384 - MINOR: cli: format `show proc` to be more readable 5385 - MINOR: cli: displays uptime in `show proc` 5386 - MINOR: cli: show master information in 'show proc' 5387 - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field 5388 - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer 5389 - BUG/MINOR: mux-h1: Enable keep-alive on server side 5390 - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used 5391 - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed 5392 - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten 5393 - BUG/MINOR: proto_htx: Fix request/response synchronisation on error 5394 - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe() 5395 - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf() 5396 - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe 5397 - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send() 5398 - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols 5399 - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed() 5400 - MEDIUM: mworker: wait mode use standard init code path 5401 - MINOR: log: introduce ha_notice() 5402 - MINOR: mworker: use ha_notice to announce a new worker 5403 - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header. 5404 - MINOR: cli: add mworker_accept_wrapper to 'show fd' 5405 - MEDIUM: signal: signal_unregister() removes every handlers 5406 - BUG/MEDIUM: mworker: unregister the signals of main() 5407 - MINOR: cli: add a few missing includes in proto/cli.h 5408 - REORG: time/activity: move activity measurements to activity.{c,h} 5409 - MINOR: activity: report the average loop time in "show activity" 5410 - MINOR: activity: add configuration and CLI support for "profiling.tasks" 5411 - MEDIUM: tasks: collect per-task CPU time and latency 5412 - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot 5413 - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds 5414 - BUG/MINOR: cli: Fix memory leak 5415 - BUG/MINOR: mworker: fix FD leak and memory leak in error path 5416 - MINOR: poller: move the call of tv_update_date() back to the pollers 5417 - MINOR: polling: add an option to support busy polling 5418 - MINOR: server: Add "alpn" and "npn" keywords. 5419 - MEDIUM: connection: Don't bother reactivating polling after connection retry. 5420 - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set. 5421 - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches. 5422 - MINOR: servers: Free [idle|safe|priv]_conns on exit. 5423 - REGTEST: add the option to test only a specific set of files 5424 - REGTEST: add a test for connections to a "dispatch" address 5425 - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server(). 5426 - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set. 5427 - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon. 5428 - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed. 5429 - MEDIUM: servers: Store the connection in the SI until we have a mux. 5430 - BUG/MEDIUM: h2: wake the processing task up after demuxing 5431 - BUG/MEDIUM: h2: restart demuxing after releasing buffer space 5432 54332018/11/18 : 1.9-dev7 5434 - BUILD: cache: fix a build warning regarding too large an integer for the age 5435 - CLEANUP: fix typos in the comments of the Makefile 5436 - CLEANUP: fix a typo in a comment for the contrib/halog subsystem 5437 - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem 5438 - CLEANUP: fix typos in comments for contrib/spoa_example 5439 - CLEANUP: fix typos in comments for contrib/wireshark-dissectors 5440 - DOC: Fix typos in README and CONTRIBUTING 5441 - MINOR: log: slightly improve error message syntax on log failure 5442 - DOC: logs: the format directive was missing from the second log part 5443 - MINOR: log: report the number of dropped logs in the stats 5444 - MEDIUM: log: add support for logging to existing file descriptors 5445 - MEDIUM: log: support a new "short" format 5446 - MEDIUM: log: add a new "raw" format 5447 - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int 5448 - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty() 5449 - MINOR: namespaces: don't build namespace.c if disabled 5450 - BUILD/MEDIUM: threads/affinity: DragonFly build fix 5451 - MINOR: http: Add new "early-hint" http-request action. 5452 - MINOR: http: Make new "early-hint" http-request action really be parsed. 5453 - MINOR: http: Implement "early-hint" http request rules. 5454 - MINOR: doc: Add information about "early-hint" http-request action. 5455 - DOC: early-hints: fix truncated line. 5456 - MINOR: mworker: only close std{in,out,err} in daemon mode 5457 - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs 5458 - BUG/MEDIUM: Make sure stksess is properly aligned. 5459 - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv 5460 - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in 5461 - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice() 5462 - CONTRIB: debug: fix build related to conn_stream flags change 5463 - REGTEST: fix scripts 1 and 3 to accept development version 5464 - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri 5465 - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end 5466 - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end 5467 - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses 5468 - MEDIUM: jobs: support unstoppable jobs for soft stop 5469 - MEDIUM: listeners: support unstoppable listener 5470 - MEDIUM: cli: worker socketpair is unstoppable 5471 - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish() 5472 - MINOR: stream: move the conn_stream specific calls to the stream-int 5473 - BUG/MINOR: config: Copy default error messages when parsing of a backend starts 5474 - CLEANUP: h2: minimum documentation for recent API changes 5475 - MINOR: mux: implement a get_first_cs() method 5476 - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first() 5477 - MINOR: stream-int: relax the forwarding rules in stream_int_notify() 5478 - MINOR: stream-int: expand the flags to 32-bit 5479 - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM 5480 - MINOR: stream-int: introduce new SI_FL_RXBLK flags 5481 - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}() 5482 - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP 5483 - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness 5484 - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness 5485 - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}() 5486 - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv() 5487 - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv() 5488 - MINOR: stream-int: automatically mark applets as ready if they block on the channel 5489 - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness 5490 - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness 5491 - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed 5492 - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify 5493 - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel 5494 - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}() 5495 - MEDIUM: connections: Wait until the connection is established to try to recv. 5496 - MEDIUM: mux: Teach the mux_pt how to deal with idle connections. 5497 - MINOR: mux: Add a new "avail_streams" method. 5498 - MINOR: mux: Add a destroy() method. 5499 - MINOR: sessions: Start to store the outgoing connection in sessions. 5500 - MAJOR: connections: Detach connections from streams. 5501 - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers 5502 - MINOR: htx: Add proto_htx.c file 5503 - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve 5504 - MINOR: http: Add standalone functions to parse a start-line or a header 5505 - MINOR: http: Call http_send_name_header with the stream instead of the txn 5506 - MINOR: conn_stream: Add a flag to notify the SI some data were received 5507 - MINOR: http: Add macros to check if a stream uses the HTX representation 5508 - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used 5509 - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections 5510 - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages 5511 - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux 5512 - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data 5513 - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages 5514 - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c 5515 - MINOR: proto_htx: Add some functions to handle HTX messages 5516 - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation 5517 - MINOR: http_htx: Add functions to replace part of the start-line 5518 - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header 5519 - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages 5520 - MINOR: proto_htx: Add the internal function htx_del_hdr_value 5521 - MINOR: proto_htx: Add the internal function htx_fmt_res_line 5522 - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str 5523 - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status 5524 - MINOR: proto_htx: Add function to build and send HTTP 103 responses 5525 - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule 5526 - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages 5527 - MINOR: proto_htx: Add functions to manage cookies on HTX messages 5528 - MINOR: proto_htx: Add functions to check the cacheability of HTX messages 5529 - MINOR: proto_htx: Add functions htx_send_name_header 5530 - MINOR: proto_htx: Add functions htx_perform_server_redirect 5531 - MINOR: proto_htx: Add functions to handle the stats applet 5532 - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages 5533 - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages 5534 - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages 5535 - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages 5536 - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages 5537 - MINOR: http_fetch: Add smp_prefetch_htx 5538 - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages 5539 - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data 5540 - MINOR: stats/htx: Adapt the stats applet to handle HTX messages 5541 - MINOR: stream: Don't reset sov value with HTX messages 5542 - MEDIUM: mux-h1: Handle errors and timeouts in the stream 5543 - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy 5544 - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy 5545 - CLEANUP: Fix some typos in the haproxy subsystem 5546 - CLEANUP: Fix typos in the dns subsystem 5547 - CLEANUP: Fix typos in the pattern subsystem 5548 - CLEANUP: fix 2 typos in the xxhash subsystem 5549 - CLEANUP: fix a few typos in the comments of the server subsystem 5550 - CLEANUP: fix a misspell in tests/filltab25.c 5551 - CLEANUP: fix a typo found in the stream subsystem 5552 - CLEANUP: fix typos in comments in ebtree 5553 - CLEANUP: fix typos in reg-tests 5554 - CLEANUP: fix typos in the comments of the vars subsystem 5555 - CLEANUP: fix typos in the hlua_fcn subsystem 5556 - CLEANUP: fix typos in the proto_http subsystem 5557 - CLEANUP: fix typos in the proxy subsystem 5558 - CLEANUP: fix typos in the ssl_sock subsystem 5559 - DOC: Fix typos in different subsections of the documentation 5560 - DOC: fix a few typos in the documentation 5561 - MINOR: Fix an error message thrown when we run out of memory 5562 - MINOR: Fix typos in error messages in the proxy subsystem 5563 - MINOR: fix typos in the examples files 5564 - CLEANUP: Fix a typo in the stats subsystem 5565 - CLEANUP: Fix typos in the acl subsystem 5566 - CLEANUP: Fix typos in the cache subsystem 5567 - CLEANUP: Fix typos in the cfgparse subsystem 5568 - CLEANUP: Fix typos in the filters subsystem 5569 - CLEANUP: Fix typos in the http subsystem 5570 - CLEANUP: Fix typos in the log subsystem 5571 - CLEANUP: Fix typos in the peers subsystem 5572 - CLEANUP: Fix typos in the regex subsystem 5573 - CLEANUP: Fix typos in the sample subsystem 5574 - CLEANUP: Fix typos in the spoe subsystem 5575 - CLEANUP: Fix typos in the standard subsystem 5576 - CLEANUP: Fix typos in the stick_table subsystem 5577 - CLEANUP: Fix typos in the task subsystem 5578 - MINOR: Fix typo in error message in the standard subsystem 5579 - CLEANUP: fix typos in the comments of hlua 5580 - MINOR: Fix typo in the error 500 output of hlua 5581 - MINOR: Fix a typo in a warning message in the spoe subsystem 5582 55832018/11/11 : 1.9-dev6 5584 - BUG/MEDIUM: tools: fix direction of my_ffsl() 5585 - BUG/MINOR: cli: forward the whole command on master CLI 5586 - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe 5587 - MINOR: compat: automatically detect support for crypt_r() 5588 - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it 5589 - DOC: split the http-request actions in their own section 5590 - DOC: split the http-response actions in their own section 5591 - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn() 5592 - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers 5593 - MINOR: stats: report the number of active jobs and listeners in "show info" 5594 - MINOR: stats: report the number of active peers in "show info" 5595 - MINOR: stats: report the number of currently connected peers 5596 - MINOR: cli: show the number of reload in 'show proc' 5597 - MINOR: cli: can't connect to the target CLI 5598 - MEDIUM: mworker: does not create the CLI proxy when no listener 5599 - MINOR: mworker: displays more information when leaving 5600 - MEDIUM: mworker: exit with the incriminated exit code 5601 - MINOR: mworker: displays a message when a worker is forked 5602 - MEDIUM: mworker: leave when the master die 5603 - CLEANUP: stream-int: retro-document si_cs_io_cb() 5604 - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register() 5605 - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON 5606 - BUG/MEDIUM: cli: crash when trying to access a worker 5607 - DOC: restore note about "independant" typo 5608 - MEDIUM: stream: implement stream_buf_available() 5609 - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks 5610 - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put} 5611 - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore 5612 - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM 5613 - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r} 5614 - MINOR: stream-int: make it clear that si_ops cannot be null 5615 - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM 5616 - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv() 5617 - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ 5618 - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer 5619 - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared 5620 - MINOR: stream-int: replace si_update() with si_update_both() 5621 - MEDIUM: stream-int: make stream_int_update() aware of the lower layers 5622 - CLEANUP: stream-int: remove the now unused si->update() function 5623 - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt 5624 - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full 5625 - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn 5626 56272018/10/28 : 1.9-dev5 5628 - BUILD: Makefile: add the new ERR variable to force -Werror 5629 - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples 5630 - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed. 5631 - CLEANUP: http: Remove the unused function http_find_header 5632 - MINOR: h1: Export some functions parsing the value of some HTTP headers 5633 - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT 5634 - MINOR: proxy: add a new option "http-use-htx" 5635 - BUG/MEDIUM: pools: fix the minimum allocation size 5636 - MINOR: shctx: Shared objects block by block allocation. 5637 - MINOR: cache: Larger HTTP objects caching. 5638 - MINOR: shctx: Add a maximum object size parameter. 5639 - MINOR: cache: Add "max-object-size" option. 5640 - DOC: Update about the cache support for big objects. 5641 - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB). 5642 - BUG/MINOR: cache: Wrong usage of shctx_init(). 5643 - BUG/MINOR: ssl: Wrong usage of shctx_init(). 5644 - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size". 5645 - MINOR: shctx: Change max. object size type to unsigned int. 5646 - DOC: cache: Missing information about "total-max-size" and "max-object-size" 5647 - CLEANUP: tools: fix misleading comment above function LIM2A 5648 - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT 5649 - BUG/MINOR: only mark connections private if NTLM is detected 5650 - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic 5651 - MINOR: stream: don't prune variables if the list is empty 5652 - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation 5653 - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere 5654 - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation 5655 - MEDIUM: stream: don't try to send first in process_stream() 5656 - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O 5657 - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn 5658 - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn() 5659 - MINOR: stream-int: make stream_int_notify() not wake the tasklet up 5660 - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process() 5661 - MINOR: mworker: number of reload in the life of a worker 5662 - MEDIUM: mworker: each worker socketpair is a CLI listener 5663 - REORG: mworker: move struct mworker_proc to global.h 5664 - MINOR: server: export new_server() function 5665 - MEDIUM: mworker: move proc_list gen before proxies startup 5666 - MEDIUM: mworker: add proc_list in global.h 5667 - MEDIUM: mworker: proxy for the master CLI 5668 - MEDIUM: mworker: create CLI listeners from argv[] 5669 - MEDIUM: cli: disable some keywords in the master 5670 - MEDIUM: mworker: find the server ptr using a CLI prefix 5671 - MEDIUM: cli: 'show proc' displays processus 5672 - MEDIUM: cli: implement 'mode cli' proxy analyzers 5673 - MINOR: cli: displays sockpair@ in "show cli sockets" 5674 - MEDIUM: cli: enable "show cli sockets" for the master 5675 - MINOR: cli: put @master @<relative pid> @!<pid> in the help 5676 - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs 5677 - MEDIUM: mworker: stop the master proxy in the workers 5678 - MEDIUM: channel: reorder the channel analyzers for the cli 5679 - MEDIUM: cli: write a prompt for the CLI proxy of the master 5680 - MINOR: cli: helper to write an response message and close 5681 - MINOR: cache: Add "Age" header. 5682 - REGTEST: make the IP+port logging test more reliable 5683 - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link 5684 - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer 5685 - BUG/MINOR: backend: assign the wait list after the error check 5686 56872018/10/21 : 1.9-dev4 5688 - BUILD: Allow configuration of pcre-config path 5689 - DOC: clarify force-private-cache is an option 5690 - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2 5691 - REORG: http: move the code to different files 5692 - REORG: http: move HTTP rules parsing to http_rules.c 5693 - CLEANUP: http: remove some leftovers from recent cleanups 5694 - BUILD: Makefile: add a "make opts" target to simply show the build options 5695 - BUILD: Makefile: speed up compiler options detection 5696 - BUG/MINOR: backend: check that the mux installed properly 5697 - BUG/MEDIUM: h2: check that the connection is still valid at the end of init() 5698 - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure 5699 - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets 5700 - MINOR: ssl: cleanup old openssl API call 5701 - MINOR: ssl: generate-certificates for BoringSSL 5702 - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk. 5703 - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3 5704 - CLEANUP: haproxy: Remove unused variable 5705 - CLEANUP: h1: Fix debug warnings for h1 headers 5706 - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause 5707 - MEDIUM: task: perform a single tree lookup per run queue batch 5708 - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe. 5709 - BUG/MINOR: threads: move declaration of capabilities to config.h 5710 - OPTIM: tools: optimize my_ffsl() for x86_64 5711 - BUG/MINOR: h2: null-deref 5712 - BUG/MINOR: checks: queues null-deref 5713 - MINOR: connections: Introduce an unsubscribe method. 5714 - MEDIUM: connections: Change struct wait_list to wait_event. 5715 - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control. 5716 - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM. 5717 - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint. 5718 - MINOR: http: Move comment about some HTTP macros in the right header file 5719 - MINOR: stats: Add missing include 5720 - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring 5721 - MEDIUM: http: Ignore http-pretend-keepalive option on frontend 5722 - MEDIUM: http: Ignore http-tunnel option on backend 5723 - MINOR: http: Use same flag for httpclose and forceclose options 5724 - MINOR: h1: Add EOH marker during headers parsing 5725 - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag 5726 - MINOR: h1: Change the union h1_sl to use indirect strings to store infos 5727 - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing 5728 - MINOR: log: make sess_log() support sess=NULL 5729 - MINOR: chunk: add chunk_cpy() and chunk_cat() 5730 - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED 5731 - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings() 5732 - MINOR: h2: don't try to send data before preface 5733 - MINOR: h2: unify the mux init function 5734 - MINOR: h2: retrieve the front proxy from the caller instead of the session 5735 - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new() 5736 - MINOR: h2: add a new flag to quickly distinguish front vs back connection 5737 - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners 5738 - BUG/MEDIUM: stream: don't crash on out-of-memory 5739 - BUILD: compiler: add a new statement "__unreachable()" 5740 - BUILD: lua: silence some compiler warnings about potential null derefs 5741 - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch 5742 - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk() 5743 - BUILD: stick-table: make sure not to fail on task_new() during initialization 5744 - BUILD: peers: check allocation error during peers_init_sync() 5745 - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit 5746 - MINOR: config: use atleast2() instead of my_popcountl() where relevant 5747 - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread 5748 - MAJOR: tasks: create per-thread wait queues 5749 - OPTIM: tasks: group all tree roots per cache line 5750 - DOC: Fix a few typos 5751 - MINOR: pools: allocate most memory pools from an array 5752 - MINOR: pools: split pool_free() in the lockfree variant 5753 - MEDIUM: pools: implement a thread-local cache for pool entries 5754 - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point 5755 - Revert "BUILD: lua: silence some compiler warnings about potential null derefs" 5756 - BUILD: lua: silence some compiler warnings about potential null derefs (#2) 5757 - MINOR: lua: all functions calling lua_yieldk() may return 5758 - BUILD: lua: silence some compiler warnings after WILL_LJMP 5759 - BUILD: Makefile: silence an option conflict warning with clang 5760 - MINOR: server: Use memcpy() instead of strncpy(). 5761 - CLEANUP: state-file: make the path concatenation code a bit more consistent 5762 - MINOR: build: Disable -Wstringop-overflow. 5763 - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80. 5764 - MINOR: peers: use defines instead of enums to appease clang. 5765 - DOC: fix reference to map files in MAINTAINERS 5766 - MINOR: fd: centralize poll timeout computation in compute_poll_timeout() 5767 - MINOR: poller: move time and date computation out of the pollers 5768 - BUILD: memory: fix pointer declaration for atomic CAS 5769 - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends 5770 - MINOR: time: add now_mono_time() and now_cpu_time() 5771 - MEDIUM: time: measure the time stolen by other threads 5772 - BUILD: memory: fix free_list pointer declaration again for atomic CAS 5773 - BUILD: compiler: rename __unreachable() to my_unreachable() 5774 - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF. 5775 - BUILD: memory: fix free_list pointer declaration again for atomic CAS 5776 - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent. 5777 - BUG/MEDIUM: connections: Remove subscription if going in idle mode. 5778 - BUG/MEDIUM: stream: Make sure polling is right on retry. 5779 - MINOR: h2: Make sure to return 1 in h2_recv() when needed. 5780 - MEDIUM: connections: Don't directly mess with the polling from the upper layers. 5781 - MINOR: streams: Call tasklet_free() after si_release_endpoint(). 5782 - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event. 5783 - MINOR: h2: Don't run tasks that are waiting to send if mux in full. 5784 - MINOR: ebtree: save 8 bytes in struct eb32sc_node 5785 57862018/09/29 : 1.9-dev3 5787 - BUG/MINOR: h1: don't consider the status for each header 5788 - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above 5789 - MINOR: h1: parse the Connection header field 5790 - DOC: Fix typos in lua documentation 5791 - MINOR: h1: Add H1_MF_XFER_LEN flag 5792 - MINOR: http: add http_hdr_del() to remove a header from a list 5793 - MINOR: h1: add headers to the list after controls, not before 5794 - MEDIUM: h1: better handle transfer-encoding vs content-length 5795 - MEDIUM: h1: deduplicate the content-length header 5796 - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list 5797 - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed 5798 - CLEANUP/CONTRIB: hpack: remove some h1 build warnings 5799 - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4 5800 - BUG/MINOR: cli: make sure the "getsock" command is only called on connections 5801 - MINOR: stktable: provide an unchecked version of stktable_data_ptr() 5802 - MINOR: stream-int: make si_appctx() never fail 5803 - BUILD: ssl_sock: remove build warnings on potential null-derefs 5804 - BUILD: stats: remove build warnings on potential null-derefs 5805 - BUILD: stream: address null-deref build warnings at -Wextra 5806 - BUILD: http: address a couple of null-deref warnings at -Wextra 5807 - BUILD: log: silent build warnings due to unchecked __objt_{server,applet} 5808 - BUILD: dns: fix null-deref build warning at -Wextra 5809 - BUILD: checks: silence a null-deref build warning at -Wextra 5810 - BUILD: connection: silence a couple of null-deref build warnings at -Wextra 5811 - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra 5812 - BUILD: sockpair: silence a build warning at -Wextra 5813 - BUILD: build with -Wextra and sort out certain warnings 5814 - BUG/CRITICAL: hpack: fix improper sign check on the header index value 5815 - BUG/MEDIUM: http: Don't parse chunked body if there is no input data 5816 - DOC: Update configuration doc about the maximum number of stick counters. 5817 - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream(). 5818 - MINOR: h2/stream_interface: Reintroduce te wake() method. 5819 - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process(). 5820 - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received. 5821 - MEDIUM: lua: Add stick table support for Lua. 5822 58232018/09/12 : 1.9-dev2 5824 - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output 5825 - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point 5826 - BUG/MEDIUM: servers: check the queues once enabling a server 5827 - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections 5828 - MEDIUM: mux: Remove const on the buffer in mux->snd_buf() 5829 - CLEANUP: backend: Move mux install to call it at only one place 5830 - MINOR: conn_stream: add an tx buffer to the conn_stream 5831 - MINOR: conn_stream: add cs_send() as a default snd_buf() function 5832 - MINOR: backend: Try to find the best mux for outgoing connections 5833 - MEDIUM: backend: don't rely on mux_pt_ops in connect_server() 5834 - MINOR: mux: Add info about the supported side in alpn_mux_list structure 5835 - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols 5836 - MINOR: mux: Print the list of existing mux protocols during HA startup 5837 - MEDIUM: checks: use the new rendez-vous point to spread check result 5838 - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop 5839 - MINOR: threads: remove the previous synchronization point 5840 - MAJOR: server: make server state changes synchronous again 5841 - CLEANUP: server: remove the update list and the update lock 5842 - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK" 5843 - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive 5844 - MINOR: mux: Change get_mux_proto to get an ist as parameter 5845 - MINOR: mux: Improve the message with the list of existing mux protocols 5846 - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol 5847 - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol 5848 - MEDIUM: mux: Use the mux protocol specified on bind/server lines 5849 - BUG/MEDIUM: connection/mux: take care of serverless proxies 5850 - MINOR: queue: make sure the pendconn is released before logging 5851 - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos 5852 - MINOR: queue: store the queue index in the stream when enqueuing 5853 - MINOR: queue: replace the linked list with a tree 5854 - MEDIUM: add set-priority-class and set-priority-offset 5855 - MEDIUM: queue: adjust position based on priority-class and priority-offset 5856 - DOC: update the roadmap about priority queues 5857 - BUG/MINOR: ssl: empty connections reported as errors. 5858 - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv(). 5859 - MINOR: connections: Move rxbuf from the conn_stream to the h2s. 5860 - MINOR: connections: Get rid of txbuf. 5861 - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task. 5862 - MINOR: connections/mux: Add the wait reason(s) to wait_list. 5863 - MINOR: stream_interface: Don't use si_cs_send() as a task handler. 5864 - MINOR: stream_interface: Give stream_interface its own wait_list. 5865 - MINOR: mux_h2: Don't use h2_send() as a callback. 5866 - MINOR: checks: Add event_srv_chk_io(). 5867 - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1 5868 - BUG/MEDIUM: sessions: Don't use t->state. 5869 - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle. 5870 - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error. 5871 - BUG/MINOR: map: fix map_regm with backref 5872 - DOC: dns: explain set server ... fqdn requires resolver 5873 - DOC: add documentation for prio_class and prio_offset sample fetches. 5874 - DOC: ssl: Use consistent naming for TLS protocols 5875 - DOC: update the layering design notes 5876 - MINOR: tasks: Don't special-case when nbthreads == 1 5877 - MINOR: fd cache: And the thread_mask with all_threads_mask. 5878 - BUG/MEDIUM: lua: socket timeouts are not applied 5879 - BUG/MINOR: lua: fix extra 500ms added to socket timeouts 5880 - BUG/MEDIUM: server: update our local state before propagating changes 5881 - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates 5882 - DOC: server/threads: document which functions need to be called with/without locks 5883 - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations 5884 - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list. 5885 - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet. 5886 - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb. 5887 - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf(). 5888 - BUG/MEDIUM: stream_interface: Call the wake callback after sending. 5889 - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server 5890 - BUG/MEDIUM: connection: don't forget to always delete the list's head 5891 - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations 5892 - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates 5893 - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error 5894 - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length 5895 - BUG/MEDIUM: http: don't store url_decode() result in the samples's length 5896 - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length 5897 - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length 5898 - BUG/MEDIUM: connection: don't store recv() result into trash.data 5899 - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length 5900 - MINOR: chunk: remove impossible tests on negative chunk->data 5901 - MINOR: sample: remove impossible tests on negative smp->data.u.str.data 5902 - DOC: Fix spelling error in configuration doc 5903 - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro". 5904 - REGTEST/MINOR: Add a new class of regression testing files. 5905 - BUG/MEDIUM: unix: provide a ->drain() function 5906 - MINOR: connection: make conn_sock_drain() work for all socket families 5907 - BUG/MINOR: lua: Bad HTTP client request duration. 5908 - REGEST/MINOR: Add reg testing files. 5909 - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake() 5910 - REGTEST/MINOR: Add a reg testing file for b406b87 commit. 5911 - BUG/MEDIUM: lua: reset lua transaction between http requests 5912 - MINOR: add be_conn_free sample fetch 5913 - MINOR: Add srv_conn_free sample fetch 5914 - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done. 5915 - MINOR: checks: Call wake_srv_chk() when we can finally send data. 5916 - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier. 5917 - BUG/MAJOR: thread: lua: Wrong SSL context initialization. 5918 - REGTEST/MINOR: Add a reg testing file for 3e60b11. 5919 - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0. 5920 - REGTEST/MINOR: lua: Add reg testing files for 70d318c. 5921 - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file 5922 - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1 5923 - MINOR: tools: make date2str_log() take some consts 5924 - MINOR: thread: implement HA_ATOMIC_XADD() 5925 - BUG/MINOR: stream: use atomic increments for the request counter 5926 - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs 5927 - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames 5928 - BUG/MAJOR: buffer: fix incorrect check in __b_putblk() 5929 - MINOR: log: move the log code to sess_build_logline() to add extra arguments 5930 - MINOR: log: make the backend fall back to the frontend when there's no stream 5931 - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn 5932 - MINOR: log: don't unconditionally pick log info from s->logs 5933 - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts 5934 - MINOR: log: keep a copy of the backend connection early in sess_build_logline() 5935 - MINOR: log: do not dereference a null stream to access captures 5936 - MINOR: log: be sure not to dereference a null stream for a target 5937 - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL 5938 - MINOR: log: use NULL for the unique_id if there is no stream 5939 - MINOR: log: keep a copy of s->flags early to avoid a dereference 5940 - MINOR: log: use zero as the request counter if there is no stream 5941 - MEDIUM: log: make sess_build_logline() support being called with no stream 5942 - MINOR: log: provide a function to emit a log for a session 5943 - MEDIUM: h2: produce some logs on early errors that prevent streams from being created 5944 - BUG/MINOR: h1: fix buffer shift after realignment 5945 - MINOR: connection: make the initialization more consistent 5946 - MINOR: connection: add new function conn_get_proxy() 5947 - MINOR: connection: add new function conn_is_back() 5948 - MINOR: log: One const should be enough. 5949 - BUG/MINOR: dns: check and link servers' resolvers right after config parsing 5950 - BUG/MINOR: http/threads: atomically increment the error snapshot ID 5951 - MINOR: snapshot: restart on the event ID and not the stream ID 5952 - MINOR: snapshot: split the error snapshots into common and proto-specific parts 5953 - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit 5954 - MEDIUM: snapshot: implement a show() callback and use it for HTTP 5955 - MINOR: proxy: add a new generic proxy_capture_error() 5956 - MINOR: http: make the HTTP error capture rely on the generic proxy code 5957 - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message() 5958 - REORG: cli: move the "show errors" handler from http to proxy 5959 - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors 5960 - MEDIUM: snapshots: dynamically allocate the snapshots 5961 - MEDIUM: snapshot: merge the captured data after the descriptor 5962 - MEDIUM: mworker: remove register/unregister signal functions 5963 - MEDIUM: mworker: use the haproxy poll loop 5964 - BUG/MINOR: mworker: no need to stop peers for each proxy 5965 - MINOR: mworker: mworker_cleanlisteners() delete the listeners 5966 - MEDIUM: mworker: block SIGCHLD until the master is ready 5967 - MEDIUM: mworker: never block SIG{TERM,INT} during reload 5968 - MEDIUM: startup: unify signal init between daemon and mworker mode 5969 - MINOR: mworker: don't deinit the poller fd when in wait mode 5970 - MEDIUM: mworker: master wait mode use its own initialization 5971 - MEDIUM: mworker: replace the master pipe by socketpairs 5972 - MINOR: mworker: keep and clean the listeners 5973 - MEDIUM: threads: close the thread-waker pipe during deinit 5974 - MEDIUM: mworker: call per_thread deinit in mworker_reload() 5975 - REORG: http: move the HTTP semantics definitions to http.h/http.c 5976 - REORG: http: move http_get_path() to http.c 5977 - REORG: http: move error codes production and processing to http.c 5978 - REORG: http: move the log encoding tables to log.c 5979 - REORG: http: move some header value processing functions to http.c 5980 - BUG/MAJOR: kqueue: Don't reset the changes number by accident. 5981 - MEDIUM: protocol: use a custom AF_MAX to help protocol parser 5982 - MEDIUM: protocol: sockpair protocol 5983 - TESTS: add a python wrapper for sockpair@ 5984 - BUG/MINOR: server: Crash when setting FQDN via CLI. 5985 - BUG/MINOR: h2: report asynchronous end of stream on closed connections 5986 - BUILD: fix build without thread 5987 - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free(). 5988 - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler(). 5989 - MEDIUM: connections/mux: Add a recv and a send+recv wait list. 5990 - MEDIUM: connections: Get rid of the recv() method. 5991 - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done. 5992 - MEDIUM: h2: always subscribe to receive if allowed. 5993 - MEDIUM: h2: Don't use a wake() method anymore. 5994 - MEDIUM: stream_interface: Make recv() subscribe when more data is needed. 5995 - MINOR: connections: Add a "handle" field to wait_list. 5996 - MEDIUM: mux_h2: Revamp the send path when blocking. 5997 - MEDIUM: stream_interfaces: Starts receiving from the upper layers. 5998 - MINOR: checks: Give checks their own wait_list. 5999 - MINOR: conn_streams: Remove wait_list from conn_streams. 6000 - REORG: h1: create a new h1m_state 6001 - MINOR: h1: add the restart offsets into struct h1m 6002 - MINOR: h1: remove the unused states from h1m_state 6003 - MINOR: h1: provide a distinct init() function for request and response 6004 - MINOR: h1: add a message flag to indicate that a message carries a response 6005 - MINOR: h2: make sure h1m->err_pos field is correct on chunk error 6006 - MINOR: h1: properly pre-initialize err_pos to -2 6007 - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message 6008 - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path 6009 - MEDIUM: h1: consider err_pos before deciding to accept a header name or not 6010 - MEDIUM: h1: make the parser support a pointer to a start line 6011 - MEDIUM: h1: let the caller pass the initial parser's state 6012 - MINOR: h1: make the message parser support a null <hdr> argument 6013 - MEDIUM: h1: support partial message parsing 6014 - MEDIUM: h1: remove the useless H1_MSG_BODY state 6015 - MINOR: h2: store the HTTP status into the H2S, not the H1M 6016 - MINOR: h1: remove the HTTP status from the H1M struct 6017 - MEDIUM: h1: implement the request parser as well 6018 - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case 6019 - MINOR: connection: pass the proxy when creating a connection 6020 - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy. 6021 - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach. 6022 - BUG/MAJOR: h2: reset the parser's state on mux buffer full 6023 60242018/08/02 : 1.9-dev1 6025 - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork. 6026 - DOC: cache: update sections and fix some typos 6027 - BUILD/MINOR: deviceatlas: enable thread support 6028 - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main 6029 - BUG/MEDIUM: ssl: don't allocate shctx several time 6030 - BUG/MEDIUM: cache: bad computation of the remaining size 6031 - BUILD: checks: don't include server.h 6032 - BUG/MEDIUM: stream: fix session leak on applet-initiated connections 6033 - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header 6034 - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY 6035 - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream 6036 - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting 6037 - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response 6038 - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync. 6039 - BUG/MAJOR: thread/peers: fix deadlock on peers sync. 6040 - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed 6041 - MINOR: config: report when "monitor fail" rules are misplaced 6042 - BUG/MINOR: mworker: fix validity check for the pipe FDs 6043 - BUG/MINOR: mworker: detach from tty when in daemon mode 6044 - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD. 6045 - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time 6046 - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles 6047 - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs. 6048 - BUG/MINOR: hpack: fix debugging output of pseudo header names 6049 - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits 6050 - BUG/MINOR: hpack: reject invalid header index 6051 - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers 6052 - BUG/MAJOR: h2: correctly check the request length when building an H1 request 6053 - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream 6054 - BUG/MINOR: h2: try to abort closed streams as soon as possible 6055 - BUG/MINOR: h2: ":path" must not be empty 6056 - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to 6057 - BUG/MINOR: h2: the TE header if present may only contain trailers 6058 - BUG/MEDIUM: h2: enforce the per-connection stream limit 6059 - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1 6060 - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame 6061 - BUG/MINOR: h2: properly check PRIORITY frames 6062 - BUG/MINOR: h2: reject response pseudo-headers from requests 6063 - BUG/MEDIUM: h2: remove connection-specific headers from request 6064 - BUG/MEDIUM: h2: do not accept upper case letters in request header names 6065 - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames 6066 - BUG/MINOR: action: Don't check http capture rules when no id is defined 6067 - BUG/MAJOR: hpack: don't pretend large headers fit in empty table 6068 - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again 6069 - BUG/MEDIUM: mworker: also close peers sockets in the master 6070 - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically. 6071 - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state. 6072 - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface 6073 - BUG/MEDIUM: h2: fix handling of end of stream again 6074 - MINOR: mworker: Update messages referencing exit-on-failure 6075 - MINOR: mworker: Improve wording in `void mworker_wait()` 6076 - CONTRIB: halog: Add help text for -s switch in halog program 6077 - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task 6078 - BUG/MEDIUM: threads/vars: Fix deadlock in register_name 6079 - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET 6080 - DOC: notifications: add precisions about thread usage 6081 - BUG/MEDIUM: lua/notification: memory leak 6082 - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data 6083 - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE 6084 - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full 6085 - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible 6086 - BUG/MEDIUM: h2: work around a connection API limitation 6087 - BUG/MEDIUM: h2: debug incoming traffic in h2_wake() 6088 - MINOR: h2: store the demux padding length in the h2c struct 6089 - BUG/MEDIUM: h2: support uploading partial DATA frames 6090 - MINOR: h2: don't demand that a DATA frame is complete before processing it 6091 - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame 6092 - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses 6093 - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses 6094 - BUG/MEDIUM: h2: fix stream limit enforcement 6095 - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS 6096 - MINOR: sample: add len converter 6097 - BUG: MAJOR: lb_map: server map calculation broken 6098 - BUG: MINOR: http: don't check http-request capture id when len is provided 6099 - MINOR: sample: rename the "len" converter to "length" 6100 - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd 6101 - DOC/MINOR: intro: typo, wording, formatting fixes 6102 - MINOR: netscaler: respect syntax 6103 - MINOR: netscaler: remove the use of cip_magic only used once 6104 - MINOR: netscaler: rename cip_len to clarify its uage 6105 - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size 6106 - BUG/MAJOR: netscaler: address truncated CIP header detection 6107 - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header 6108 - MEDIUM: netscaler: do not analyze original IP packet size 6109 - MEDIUM: netscaler: add support for standard NetScaler CIP protocol 6110 - MINOR: spoe: add force-set-var option in spoe-agent configuration 6111 - CONTRIB: iprange: Fix compiler warning in iprange.c 6112 - CONTRIB: halog: Fix compiler warnings in halog.c 6113 - BUG/MINOR: h2: properly report a stream error on RST_STREAM 6114 - MINOR: mux: add flags to describe a mux's capabilities 6115 - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts 6116 - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly 6117 - BUG/MEDIUM: checks: a server passed in maint state was not forced down. 6118 - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service() 6119 - MINOR: http: adjust the list of supposedly cacheable methods 6120 - MINOR: http: update the list of cacheable status codes as per RFC7231 6121 - MINOR: http: start to compute the transaction's cacheability from the request 6122 - BUG/MINOR: http: do not ignore cache-control: public 6123 - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses 6124 - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability 6125 - MINOR: http: add a function to check request's cache-control header field 6126 - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache 6127 - BUG/MEDIUM: cache: replace old object on store 6128 - BUG/MEDIUM: cache: respect the request cache-control header 6129 - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie" 6130 - BUG/MAJOR: connection: refine the situations where we don't send shutw() 6131 - BUG/MEDIUM: checks: properly set servers to stopping state on 404 6132 - BUG/MEDIUM: h2: properly handle and report some stream errors 6133 - BUG/MEDIUM: h2: improve handling of frames received on closed streams 6134 - DOC/MINOR: configuration: typo, formatting fixes 6135 - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset 6136 - BUG/MEDIUM: mworker: don't close stdio several time 6137 - MINOR: don't close stdio anymore 6138 - BUG/MEDIUM: http: don't automatically forward request close 6139 - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table 6140 - MINOR: h2: add a function to report pseudo-header names 6141 - DEBUG: hpack: make hpack_dht_dump() expose the output file 6142 - DEBUG: hpack: add more traces to the hpack decoder 6143 - CONTRIB: hpack: add an hpack decoder 6144 - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped 6145 - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames 6146 - BUILD: ssl: silence a warning when building without NPN nor ALPN support 6147 - CLEANUP: rbtree: remove 6148 - BUG/MEDIUM: ssl: cache doesn't release shctx blocks 6149 - BUG/MINOR: lua: Fix default value for pattern in Socket.receive 6150 - DOC: lua: Fix typos in comments of hlua_socket_receive 6151 - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect 6152 - BUG/MINOR: lua: Fix return value of Socket.settimeout 6153 - MINOR: dns: Handle SRV record weight correctly. 6154 - BUG/MEDIUM: mworker: execvp failure depending on argv[0] 6155 - MINOR: hathreads: add support for gcc < 4.7 6156 - BUILD/MINOR: ancient gcc versions atomic fix 6157 - BUG/MEDIUM: stream: properly handle client aborts during redispatch 6158 - MINOR: spoe: add register-var-names directive in spoe-agent configuration 6159 - MINOR: spoe: Don't queue a SPOE context if nothing is sent 6160 - DOC: clarify the scope of ssl_fc_is_resumed 6161 - CONTRIB: debug: fix a few flags definitions 6162 - BUG/MINOR: poll: too large size allocation for FD events 6163 - MINOR: sample: add date_us sample 6164 - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely. 6165 - MINOR: servers: Don't report duplicate dyncookies for disabled servers. 6166 - MINOR: global/threads: move cpu_map at the end of the global struct 6167 - MINOR: threads: add a MAX_THREADS define instead of LONGBITS 6168 - MINOR: global: add some global activity counters to help debugging 6169 - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache 6170 - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num 6171 - BUG/MEDIUM: fd: maintain a per-thread update mask 6172 - MINOR: fd: add a bitmask to indicate that an FD is known by the poller 6173 - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread 6174 - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread 6175 - BUG/MEDIUM: threads/mworker: fix a race on startup 6176 - BUG/MINOR: mworker: only write to pidfile if it exists 6177 - MINOR: threads: Fix build when we're not compiling with threads. 6178 - BUG/MINOR: threads: always set an owner to the thread_sync pipe 6179 - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag 6180 - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed 6181 - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread 6182 - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif 6183 - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads 6184 - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads 6185 - CLEANUP: sample: Fix comment encoding of sample.c 6186 - CLEANUP: sample: Fix outdated comment about sample casts functions 6187 - BUG/MINOR: sample: Fix output type of c_ipv62ip 6188 - CLEANUP: Fix typo in ARGT_MSK6 comment 6189 - CLEANUP: standard: Use len2mask4 in str2mask 6190 - MINOR: standard: Add str2mask6 function 6191 - MINOR: config: Add support for ARGT_MSK6 6192 - MEDIUM: sample: Add IPv6 support to the ipmask converter 6193 - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters. 6194 - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs 6195 - MINOR: polling: make epoll and kqueue not depend on maxfd anymore 6196 - MINOR: fd: don't report maxfd in alert messages 6197 - MEDIUM: polling: start to move maxfd computation to the pollers 6198 - CLEANUP: fd/threads: remove the now unused fdtab_lock 6199 - MINOR: poll: more accurately compute the new maxfd in the loop 6200 - CLEANUP: fd: remove the unused "new" field 6201 - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h 6202 - MEDIUM: select: make use of hap_fd_* functions 6203 - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock 6204 - MEDIUM: select: don't use the old FD state anymore 6205 - MEDIUM: poll: don't use the old FD state anymore 6206 - MINOR: fd: pass the iocb and owner to fd_insert() 6207 - BUG/MINOR: threads: Update labels array because of changes in lock_label enum 6208 - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters. 6209 - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs 6210 - DOC: don't suggest using http-server-close 6211 - MINOR: introduce proxy-v2-options for send-proxy-v2 6212 - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns 6213 - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side 6214 - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued 6215 - MINOR: spoe: Always link a SPOE context with the applet processing it 6216 - MINOR: spoe: Replace sending_rate by a frequency counter 6217 - MINOR: spoe: Count the number of frames waiting for an ack for each applet 6218 - MEDIUM: spoe: Use an ebtree to manage idle applets 6219 - MINOR: spoa_example: Count the number of frames processed by each worker 6220 - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration 6221 - MINOR: init: make stdout unbuffered 6222 - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams. 6223 - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag. 6224 - MINOR: compiler: introduce offsetoff(). 6225 - MINOR: threads: Introduce double-width CAS on x86_64 and arm. 6226 - MINOR: threads: add test and set/reset operations 6227 - MINOR: pools/threads: Implement lockless memory pools. 6228 - MAJOR: fd/threads: Make the fdcache mostly lockless. 6229 - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry. 6230 - MAJOR: fd: compute the new fd polling state out of the fd lock 6231 - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status() 6232 - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status() 6233 - MINOR: poll: get rid of the now useless fd_compute_new_polled_status() 6234 - MINOR: select: get rid of the now useless fd_compute_new_polled_status() 6235 - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function 6236 - MEDIUM: fd: make updt_fd_polling() use atomics 6237 - MEDIUM: poller: use atomic ops to update the fdtab mask 6238 - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c 6239 - BUG/MINOR: fd/threads: properly dereference fdcache as volatile 6240 - MINOR: fd: remove the unneeded last CAS when adding an fd to the list 6241 - MINOR: fd: reorder fd_add_to_fd_list() 6242 - BUG/MINOR: time/threads: ensure the adjusted time is always correct 6243 - BUG/MEDIUM: standard: Fix memory leak in str2ip2() 6244 - MINOR: init: emit warning when -sf/-sd cannot parse argument 6245 - BUILD: fd/threads: fix breakage build breakage without threads 6246 - DOC: Describe routing impact of using interface keyword on bind lines 6247 - DOC: Mention -Ws in the list of available options 6248 - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured 6249 - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache. 6250 - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7 6251 - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable. 6252 - BUILD/MINOR: memory: stdint is needed for uintptr_t 6253 - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st 6254 - DOC: lua: new prototype for function "register_action()" 6255 - DOC: cfgparse: Warn on option (tcp|http)log in backend 6256 - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe 6257 - MINOR: sample: add a new "concat" converter 6258 - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL 6259 - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible 6260 - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken. 6261 - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword. 6262 - CLEANUP: cfgparse: Remove unused label end 6263 - CLEANUP: spoe: Remove unused label retry 6264 - CLEANUP: h2: Remove unused labels from mux_h2.c 6265 - CLEANUP: pools: Remove unused end label in memory.h 6266 - CLEANUP: standard: Fix typo in IPv6 mask example 6267 - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs 6268 - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF 6269 - MINOR: debug/pools: make DEBUG_UAF also detect underflows 6270 - MINOR: stats: display the number of threads in the statistics. 6271 - BUG/MINOR: h2: Set the target of dbuf_wait to h2c 6272 - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers 6273 - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk 6274 - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk 6275 - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping 6276 - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')" 6277 - MINOR: ssl: extract full pkey info in load_certificate 6278 - MINOR: ssl: add ssl_sock_get_pkey_algo function 6279 - MINOR: ssl: add ssl_sock_get_cert_sig function 6280 - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key 6281 - MINOR: connection: add proxy-v2-options authority 6282 - MINOR: systemd: Add section for SystemD sandboxing to unit file 6283 - MINOR: systemd: Add SystemD's Protect*= options to the unit file 6284 - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file 6285 - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close() 6286 - MINOR: h2: provide and use h2s_detach() and h2s_free() 6287 - MEDIUM: h2: use a single buffer allocator 6288 - MINOR/BUILD: fix Lua build on Mac OS X 6289 - BUILD/MINOR: fix Lua build on Mac OS X (again) 6290 - BUG/MINOR: session: Fix tcp-request session failure if handshake. 6291 - CLEANUP: .gitignore: Ignore binaries from the contrib directory 6292 - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list. 6293 - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers() 6294 - BUG/MEDIUM: h2: also arm the h2 timeout when sending 6295 - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd" 6296 - CLEANUP: ssl: Remove a duplicated #include 6297 - CLEANUP: cli: Remove a leftover debug message 6298 - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage 6299 - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc 6300 - BUG/MINOR: force-persist and ignore-persist only apply to backends 6301 - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled 6302 - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management 6303 - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically 6304 - TESTS: Add a testcase for multi-port + multi-server listener issue 6305 - CLEANUP: dns: remove duplicate code in src/dns.c 6306 - BUG/MINOR: seemless reload: Fix crash when an interface is specified. 6307 - BUG/MINOR: cli: Ensure all command outputs end with a LF 6308 - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments 6309 - BUILD: ssl: Fix build with OpenSSL without NPN capability 6310 - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args 6311 - BUG/MINOR: lua: return bad error messages 6312 - CLEANUP: lua/syntax: lua is a name and not an acronym 6313 - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers 6314 - BUG/MINOR: tcp-check: use the server's service port as a fallback 6315 - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue 6316 - MINOR: log: stop emitting alerts when it's not possible to write on the socket 6317 - BUILD/BUG: enable -fno-strict-overflow by default 6318 - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents 6319 - DOC: log: more than 2 log servers are allowed 6320 - MINOR: hash: add new function hash_crc32c 6321 - MINOR: proxy-v2-options: add crc32c 6322 - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum 6323 - REORG: compact "struct server" 6324 - MINOR: samples: add crc32c converter 6325 - BUG/MEDIUM: h2: properly account for DATA padding in flow control 6326 - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM 6327 - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected 6328 - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c 6329 - BUG/MINOR: lua: the function returns anything 6330 - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values 6331 - CLEANUP: lua: typo fix in comments 6332 - BUILD/MINOR: fix build when USE_THREAD is not defined 6333 - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles 6334 - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert 6335 - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown" 6336 - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available 6337 - BUILD/MINOR: cli: fix a build warning introduced by last commit 6338 - BUG/MAJOR: h2: remove orphaned streams from the send list before closing 6339 - MINOR: h2: always call h2s_detach() in h2_detach() 6340 - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy() 6341 - BUG/MEDIUM: h2/threads: never release the task outside of the task handler 6342 - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error 6343 - BUILD/MINOR: threads: always export thread_sync_io_handler() 6344 - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd" 6345 - MINOR: h2: implement a basic "show_fd" function 6346 - MINOR: cli: report cache indexes in "show fd" 6347 - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function 6348 - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked 6349 - BUG/MINOR: checks: check the conn_stream's readiness and not the connection 6350 - BUG/MINOR: fd: Don't clear the update_mask in fd_insert. 6351 - BUG/MINOR: email-alert: Set the mailer port during alert initialization 6352 - BUG/MINOR: cache: fix "show cache" output 6353 - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks 6354 - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check 6355 - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk 6356 - BUG/MINOR: spoe: Register the variable to set when an error occurred 6357 - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted 6358 - MINOR: spoe: Add metrics in to know time spent in the SPOE 6359 - MINOR: spoe: Add options to store processing times in variables 6360 - MINOR: log: move 'log' keyword parsing in dedicated function 6361 - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries 6362 - MINOR: spoe: Add loggers dedicated to the SPOE agent 6363 - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section 6364 - MINOR: spoe: use agent's logger to log SPOE messages 6365 - MINOR: spoe: Add counters to log info about SPOE agents 6366 - BUG/MAJOR: cache: always initialize newly created objects 6367 - MINOR: servers: Support alphanumeric characters for the server templates names 6368 - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes 6369 - BUG/MEDIUM: connection: Make sure we have a mux before calling detach(). 6370 - BUG/MINOR: http: Return an error in proxy mode when url2sa fails 6371 - MINOR: proxy: Add fe_defbe fetcher 6372 - MINOR: config: Warn if resolvers has no nameservers 6373 - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE 6374 - MINOR: cli: Ensure the CLI always outputs an error when it should 6375 - MEDIUM: sample: Extend functionality for field/word converters 6376 - MINOR: export localpeer as an environment variable 6377 - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors. 6378 - BUILD: sample: avoid build warning in sample.c 6379 - BUG/CRITICAL: h2: fix incorrect frame length check 6380 - DOC: lua: update the links to the config and Lua API 6381 - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid() 6382 - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket 6383 - BUG/MINOR: log: t_idle (%Ti) is not set for some requests 6384 - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits 6385 - MINOR: h2: detect presence of CONNECT and/or content-length 6386 - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads 6387 - BUG/MINOR: spoe: Fix counters update when processing is interrupted 6388 - BUG/MINOR: spoe: Fix parsing of dontlog-normal option 6389 - MEDIUM: cli: Add payload support 6390 - MINOR: map: Add payload support to "add map" 6391 - MINOR: ssl: Add payload support to "set ssl ocsp-response" 6392 - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread 6393 - MINOR: sample: Add strcmp sample converter 6394 - MINOR: http: Add support for 421 Misdirected Request 6395 - BUG/MINOR: config: disable http-reuse on TCP proxies 6396 - MINOR: ssl: disable SSL sample fetches when unsupported 6397 - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key' 6398 - BUG/MINOR: checks: Fix check->health computation for flapping servers 6399 - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads 6400 - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data 6401 - MINOR: backend: implement random-based load balancing 6402 - DOC/MINOR: clean up LUA documentation re: servers & array/table. 6403 - MINOR: lua: Add server name & puid to LUA Server class. 6404 - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class. 6405 - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped 6406 - BUG/MEDIUM: task: Don't free a task that is about to be run. 6407 - MINOR: fd: Make the lockless fd list work with multiple lists. 6408 - BUG/MEDIUM: pollers: Use a global list for fd shared between threads. 6409 - MINOR: pollers: move polled_mask outside of struct fdtab. 6410 - BUG/MINOR: lua: schedule socket task upon lua connect() 6411 - BUG/MINOR: lua: ensure large proxy IDs can be represented 6412 - BUG/MEDIUM: pollers/kqueue: use incremented position in event list 6413 - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL 6414 - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR 6415 - BUG/MEDIUM: ssl: properly protect SSL cert generation 6416 - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments. 6417 - BUG/MINOR: spoe: Mistake in error message about SPOE configuration 6418 - BUG/MEDIUM: spoe: Flags are not encoded in network order 6419 - CLEANUP: spoe: Remove unused variables the agent structure 6420 - DOC: spoe: fix a typo 6421 - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags 6422 - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags 6423 - DOC: add some description of the pending rework of the buffer structure 6424 - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation 6425 - MINOR: lua: Improve error message 6426 - BUG/MEDIUM: cache: don't cache when an Authorization header is present 6427 - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA 6428 - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure. 6429 - BUG/BUILD: threads: unbreak build without threads 6430 - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file 6431 - BUG/MEDIUM: lua/socket: Length required read doesn't work 6432 - MINOR: tasks: Change the task API so that the callback takes 3 arguments. 6433 - MAJOR: tasks: Create a per-thread runqueue. 6434 - MAJOR: tasks: Introduce tasklets. 6435 - MINOR: tasks: Make the number of tasks to run at once configurable. 6436 - MAJOR: applets: Use tasks, instead of rolling our own scheduler. 6437 - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters 6438 - MINOR: http: Log warning if (add|set)-header fails 6439 - DOC: management: add the new wrew stats column 6440 - MINOR: stats: also report the failed header rewrites warnings on the stats page 6441 - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue. 6442 - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task. 6443 - MINOR: task: Also consider the task list size when getting global tasks. 6444 - MINOR: dns: Implement `parse-resolv-conf` directive 6445 - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode 6446 - MINOR: task/notification: Is notifications registered ? 6447 - BUG/MEDIUM: lua/socket: wrong scheduling for sockets 6448 - BUG/MAJOR: lua: Dead lock with sockets 6449 - BUG/MEDIUM: lua/socket: Notification error 6450 - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock 6451 - BUG/MEDIUM: lua/socket: Buffer error, may segfault 6452 - DOC: contrib/modsecurity: few typo fixes 6453 - DOC: SPOE.txt: fix a typo 6454 - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0 6455 - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect 6456 - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect 6457 - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect 6458 - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame 6459 - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame 6460 - MINOR: task: Fix a compiler warning by adding a cast. 6461 - MINOR: stats: also report the nice and number of calls for applets 6462 - MINOR: applet: assign the same nice value to a new appctx as its owner task 6463 - MINOR: task: Fix compiler warning. 6464 - BUG/MEDIUM: tasks: Use the local runqueue when building without threads. 6465 - MINOR: tasks: Don't define rqueue if we're building without threads. 6466 - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload. 6467 - MINOR: lua: Increase debug information 6468 - BUG/MEDIUM: threads: handle signal queue only in thread 0 6469 - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing 6470 - BUG/MINOR: signals: ha_sigmask macro for multithreading 6471 - BUG/MAJOR: map: fix a segfault when using http-request set-map 6472 - DOC: regression testing: Add a short starting guide. 6473 - MINOR: tasks: Make sure we correctly init and deinit a tasklet. 6474 - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler. 6475 - BUG/MINOR: lua: Segfaults with wrong usage of types. 6476 - BUG/MAJOR: ssl: Random crash with cipherlist capture 6477 - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot 6478 - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data 6479 - MINOR: tests: First regression testing file. 6480 - MINOR: reg-tests: Add reg-tests/README file. 6481 - MINOR: reg-tests: Add a few regression testing files. 6482 - DOC: Add new REGTEST tag info about reg testing. 6483 - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete(). 6484 - MINOR: Some spelling cleanup in the comments. 6485 - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit 6486 - MINOR: threads: Be sure to remove threads from all_threads_mask on exit 6487 - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS. 6488 - REGTEST/MINOR: Set HAPROXY_PROGRAM default value. 6489 - REGTEST/MINOR: Add levels to reg-tests target. 6490 - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table 6491 - BUG/BUILD: threads: unbreak build without threads 6492 - BUG/MAJOR: stick_table: Complete incomplete SEGV fix 6493 - MINOR: stick-tables: make stktable_release() do nothing on NULL 6494 - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers 6495 - MINOR: startup: change session/process group settings 6496 - MINOR: systemd: consider exit status 143 as successful 6497 - REGTEST/MINOR: Wrong URI syntax. 6498 - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC 6499 - CLEANUP: dns: inacurate comment about prefered IP score 6500 - MINOR: dns: fix wrong score computation in dns_get_ip_from_response 6501 - MINOR: dns: new DNS options to allow/prevent IP address duplication 6502 - REGTEST/MINOR: Unexpected curl URL globling. 6503 - BUG/MINOR: ssl: properly ref-count the tls_keys entries 6504 - MINOR: h2: keep a count of the number of conn_streams attached to the mux 6505 - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess 6506 - MINOR: h2: add the mux and demux buffer lengths on "show fd" 6507 - BUG/MEDIUM: h2: never leave pending data in the output buffer on close 6508 - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout 6509 - MINOR: tasklet: Set process to NULL. 6510 - MINOR: buffer: implement a new file for low-level buffer manipulation functions 6511 - MINOR: buffer: switch buffer sizes and offsets to size_t 6512 - MINOR: buffer: add a few basic functions for the new API 6513 - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add() 6514 - MINOR: buffer: Add b_set_data(). 6515 - MINOR: buffer: introduce b_realign_if_empty() 6516 - MINOR: compression: pass the channel to http_compression_buffer_end() 6517 - MINOR: channel: add a few basic functions for the new buffer API 6518 - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign() 6519 - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign() 6520 - MEDIUM: channel: make channel_slow_realign() take a swap buffer 6521 - MINOR: h2: use b_slow_realign() with the trash as a swap buffer 6522 - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code 6523 - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew} 6524 - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps() 6525 - MINOR: buffer: remove bi_getblk() and bi_getblk_nc() 6526 - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data() 6527 - MINOR: buffer: remove bi_ptr() 6528 - MINOR: buffer: remove bo_ptr() 6529 - MINOR: buffer: remove bo_end() 6530 - MINOR: buffer: remove bi_end() 6531 - MINOR: buffer: remove bo_contig_data() 6532 - MINOR: buffer: merge b{i,o}_contig_space() 6533 - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk() 6534 - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset 6535 - MINOR: buffer: replace bi_del() and bo_del() with b_del() 6536 - MINOR: buffer: convert most b_ptr() calls to c_ptr() 6537 - MINOR: h1: make h1_measure_trailers() take the byte count in argument 6538 - MINOR: h2: clarify the fact that the send functions are unsigned 6539 - MEDIUM: h2: prevent the various mux encoders from modifying the buffer 6540 - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore 6541 - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore 6542 - MINOR: h1: make h1_measure_trailers() use an offset and a count 6543 - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop 6544 - MEDIUM: h2: don't use b_ptr() nor b_end() anymore 6545 - MINOR: buffer: get rid of b_end() and b_to_end() 6546 - MINOR: buffer: make b_getblk_nc() take const pointers 6547 - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes 6548 - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument 6549 - MEDIUM: mux: make mux->snd_buf() take the byte count in argument 6550 - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count 6551 - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count 6552 - MINOR: connection: add a flags argument to rcv_buf() 6553 - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET 6554 - MINOR: buffer: get rid of b_ptr() and convert its last users 6555 - MINOR: buffer: use b_room() to determine available space in a buffer 6556 - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data() 6557 - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty() 6558 - MINOR: buffer: make bo_putchar() use b_tail() 6559 - MINOR: buffer: replace buffer_full() with channel_full() 6560 - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace() 6561 - MINOR: buffer: replace buffer_pending() with ci_data() 6562 - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn)) 6563 - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o) 6564 - MINOR: buffer: use b_orig() to replace most references to b->data 6565 - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o. 6566 - MINOR: channel: remove almost all references to buf->i and buf->o 6567 - MINOR: channel: Add co_set_data(). 6568 - MEDIUM: channel: adapt to the new buffer API 6569 - MINOR: checks: adapt to the new buffer API 6570 - MEDIUM: h2: update to the new buffer API 6571 - MINOR: buffer: remove unused bo_add() 6572 - MEDIUM: spoe: use the new buffer API for the SPOE buffer 6573 - MINOR: stats: adapt to the new buffers API 6574 - MINOR: cli: use the new buffer API 6575 - MINOR: cache: use the new buffer API 6576 - MINOR: stream-int: use the new buffer API 6577 - MINOR: stream: use wrappers instead of directly manipulating buffers 6578 - MINOR: backend: use new buffer API 6579 - MEDIUM: http: use wrappers instead of directly manipulating buffers states 6580 - MINOR: filters: convert to the new buffer API 6581 - MINOR: payload: convert to the new buffer API 6582 - MEDIUM: h1: port to new buffer API. 6583 - MINOR: flt_trace: adapt to the new buffer API 6584 - MEDIUM: compression: start to move to the new buffer API 6585 - MINOR: lua: use the wrappers instead of directly manipulating buffer states 6586 - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API 6587 - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API 6588 - MAJOR: start to change buffer API 6589 - MINOR: buffer: remove the check for output on b_del() 6590 - MINOR: buffer: b_set_data() doesn't truncate output data anymore 6591 - MINOR: buffer: rename the "data" field to "area" 6592 - MEDIUM: buffers: move "output" from struct buffer to struct channel 6593 - MINOR: buffer: replace bi_fast_delete() with b_del() 6594 - MINOR: buffer: replace b{i,o}_put* with b_put* 6595 - MINOR: buffer: add a new file for ist + buffer manipulation functions 6596 - MINOR: checks: use b_putist() instead of b_putstr() 6597 - MINOR: buffers: remove b_putstr() 6598 - CLEANUP: buffer: minor cleanups to buffer.h 6599 - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2() 6600 - MINOR: buffer: replace buffer_replace2() with b_rep_blk() 6601 - MINOR: buffer: rename the data length member to '->data' 6602 - MAJOR: buffer: finalize buffer detachment 6603 - MEDIUM: chunks: make the chunk struct's fields match the buffer struct 6604 - MAJOR: chunks: replace struct chunk with struct buffer 6605 - DOC: buffers: document the new buffers API 6606 - DOC: buffers: remove obsolete docs about buffers 6607 - MINOR: tasklets: Don't attempt to add a tasklet in the list twice. 6608 - MINOR: connections/mux: Add a new "subscribe" method. 6609 - MEDIUM: connections/mux: Revamp the send direction. 6610 - MINOR: connection: simplify subscription by adding a registration function 6611 - BUG/MINOR: http: Set brackets for the unlikely macro at the right place 6612 - BUG/MINOR: build: Fix compilation with debug mode enabled 6613 - BUILD: Generate sha256 checksums in publish-release 6614 - MINOR: debug: Add check for CO_FL_WILL_UPDATE 6615 - MINOR: debug: Add checks for conn_stream flags 6616 - MINOR: ist: Add the function isteqi 6617 - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier 6618 - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling. 6619 - MINOR: buffers: simplify b_contig_space() 6620 - MINOR: buffers: split b_putblk() into __b_putblk() 6621 - MINOR: buffers: add b_xfer() to transfer data between buffers 6622 - DOC: add some design notes about the new layering model 6623 - MINOR: conn_stream: add a new CS_FL_REOS flag 6624 - MINOR: conn_stream: add an rx buffer to the conn_stream 6625 - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function 6626 - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake() 6627 - MINOR: h2: make each H2 stream support an intermediary input buffer 6628 - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer 6629 - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer 6630 - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf() 6631 - MEDIUM: h2: move headers and data frame decoding to their respective parsers 6632 - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible 6633 - MEDIUM: h2: perform a single call to the data layer in demux() 6634 - MEDIUM: h2: don't call data_cb->recv() anymore 6635 - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen 6636 - MEDIUM: h2: use the default conn_stream's receive function 6637 - DOC: add more design feedback on the new layering model 6638 - MINOR: h2: add the error code and the max/last stream IDs to "show fd" 6639 - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full 6640 - BUG/MEDIUM: stats: don't ask for more data as long as we're responding 6641 - BUG/MINOR: servers: Don't make "server" in a frontend fatal. 6642 - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue 6643 - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time. 6644 - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask 6645 - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive. 6646 - MINOR: signal: don't pass the signal number anymore as the wakeup reason 6647 - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason 6648 - MINOR: tasks: Add a flag that tells if we're in the global runqueue. 6649 - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size. 6650 - MINOR: queue: centralize dequeuing code a bit better 6651 - MEDIUM: queue: make pendconn_free() work on the stream instead 6652 - DOC: queue: document the expected locking model for the server's queue 6653 - MINOR: queue: make sure pendconn->strm->pend_pos is always valid 6654 - MINOR: queue: use a distinct variable for the assigned server and the queue 6655 - MINOR: queue: implement pendconn queue locking functions 6656 - MEDIUM: queue: get rid of the pendconn lock 6657 - MINOR: tasks: Make active_tasks_mask volatile. 6658 - MINOR: tasks: Make global_tasks_mask volatile. 6659 - MINOR: pollers: Add a way to wake a thread sleeping in the poller. 6660 - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code. 6661 - BUG/MEDIUM: threads/sync: use sched_yield when available 6662 - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0 6663 - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever 6664 - BUG/MINOR: config: stick-table is not supported in defaults section 6665 - BUILD/MINOR: threads: unbreak build with threads disabled 6666 - BUG/MINOR: threads: Handle nbthread == MAX_THREADS. 6667 - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS 6668 - MINOR: threads: move "nbthread" parsing to hathreads.c 6669 - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number 6670 - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed 6671 - BUILD/MINOR: compiler: fix offsetof() on older compilers 6672 - SCRIPTS: git-show-backports: add missing quotes to "echo" 6673 - MINOR: threads: add more consistency between certain variables in no-thread case 6674 - MEDIUM: hathreads: implement a more flexible rendez-vous point 6675 - BUG/MEDIUM: cli: make "show fd" thread-safe 6676 66772017/11/26 : 1.9-dev0 6678 66792017/11/26 : 1.8.0 6680 - BUG/MEDIUM: stream: don't automatically forward connect nor close 6681 - BUG/MAJOR: stream: ensure analysers are always called upon close 6682 - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set 6683 - MEDIUM: mworker: Add systemd `Type=notify` support 6684 - BUG/MEDIUM: cache: free callback to remove from tree 6685 - CLEANUP: cache: remove unused struct 6686 - MEDIUM: cache: enable the HTTP analysers 6687 - CLEANUP: cache: remove wrong comment 6688 - MINOR: threads/atomic: rename local variables in macros to avoid conflicts 6689 - MINOR: threads/plock: rename local variables in macros to avoid conflicts 6690 - MINOR: threads/atomic: implement pl_mb() in asm on x86 6691 - MINOR: threads/atomic: implement pl_bts() on non-x86 6692 - MINOR: threads/build: atomic: replace the few inlines with macros 6693 - BUILD: threads/plock: fix a build issue on Clang without optimization 6694 - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees 6695 - BUILD: compiler: add a new type modifier __maybe_unused 6696 - BUILD: h2: mark some inlined functions "unused" 6697 - BUILD: server: check->desc always exists 6698 - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers 6699 - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list 6700 - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers 6701 - BUG/MEDIUM: h2: always reassemble the Cookie request header field 6702 - BUG/MINOR: systemd: ignore daemon mode 6703 - CONTRIB: spoa_example: allow to compile outside HAProxy. 6704 - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist 6705 - CONTRIB: spoa_example: remove last dependencies on type "sample" 6706 - CONTRIB: spoa_example: remove SPOE enums that are useless for clients 6707 - CLEANUP: cache: reorder includes 6708 - MEDIUM: shctx: use unsigned int for len and block_count 6709 - MEDIUM: cache: "show cache" on the cli 6710 - BUG/MEDIUM: cache: use key=0 as a condition for freeing 6711 - BUG/MEDIUM: cache: refcount forbids to free the objects 6712 - BUG/MEDIUM: cache fix cli_kws structure 6713 - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks 6714 - BUG/MINOR: ssl: Always start the handshake if we can't send early data. 6715 - MINOR: ssl: Don't disable early data handling if we could not write. 6716 - MINOR: pools: prepare functions to override malloc/free in pools 6717 - MINOR: pools: implement DEBUG_UAF to detect use after free 6718 - BUG/MEDIUM: threads/time: fix time drift correction 6719 - BUG/MEDIUM: threads/time: maintain a common time reference between all threads 6720 - MINOR: sample: Add "thread" sample fetch 6721 - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line 6722 - BUG/MINOR: stream: fix tv_request calculation for applets 6723 - BUG/MAJOR: h2: always remove a stream from the send list before freeing it 6724 - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock 6725 - MINOR: ssl: Handle reading early data after writing better. 6726 - MINOR: mux: Make sure every string is woken up after the handshake. 6727 - MEDIUM: cache: store sha1 for hashing the cache key 6728 - MINOR: http: implement the "http-request reject" rule 6729 - MINOR: h2: send RST_STREAM before GOAWAY on reject 6730 - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close 6731 - MINOR: h2: make use of client-fin timeout after GOAWAY 6732 - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2 6733 - MINOR: ssl: Handle early data with BoringSSL 6734 - BUG/MEDIUM: stream: always release the stream-interface on abort 6735 - BUG/MEDIUM: cache: free ressources in chn_end_analyze 6736 - MINOR: cache: move the refcount decrease in the applet release 6737 - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines 6738 - MINOR: config: Support a range to specify processes in "cpu-map" parameter 6739 - MINOR: config: Slightly change how parse_process_number works 6740 - MINOR: config: Export parse_process_number and use it wherever it's applicable 6741 - MINOR: standard: Add my_ffsl function to get the position of the bit set to one 6742 - MINOR: config: Add auto-increment feature for cpu-map 6743 - MINOR: config: Support partial ranges in cpu-map directive 6744 - MINOR:: config: Remove thread-map directive 6745 - MINOR: config: Add the threads support in cpu-map directive 6746 - MINOR: config: Add threads support for "process" option on "bind" lines 6747 - MEDIUM: listener: Bind listeners on a thread subset if specified 6748 - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif 6749 - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning 6750 - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list" 6751 - CLEANUP: pools: rename all pool functions and pointers to remove this "2" 6752 - DOC: update the roadmap file with the latest changes merged in 1.8 6753 - DOC: fix mangled version in peers protocol documentation 6754 - DOC: add initial peers protovol v2.0 documentation. 6755 - DOC: mention William as maintainer of the cache and master-worker 6756 - DOC: add Christopher and Emeric as maintainers of the threads 6757 - MINOR: cache: replace a fprint() by an abort() 6758 - MEDIUM: cache: max-age configuration keyword 6759 - DOC: explain HTTP2 timeout behavior 6760 - DOC: cache: configuration and management 6761 - MAJOR: mworker: exits the master on failure 6762 - BUG/MINOR: threads: don't drop "extern" on the lock in include files 6763 - MINOR: task: keep a pointer to the currently running task 6764 - MINOR: task: align the rq and wq locks 6765 - MINOR: fd: cache-align fdtab and fdcache locks 6766 - MINOR: buffers: cache-align buffer_wq_lock 6767 - CLEANUP: server: reorder some fields in struct server to save 40 bytes 6768 - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes 6769 - CLEANUP: checks: remove 16 bytes of holes in struct check 6770 - CLEANUP: cache: more efficiently pack the struct cache 6771 - CLEANUP: fd: place the lock at the beginning of struct fdtab 6772 - CLEANUP: pools: align pools on a cache line 6773 - DOC: config: add a few bits about how to configure HTTP/2 6774 - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm() 6775 - BUILD: Makefile: reorder object files by size 6776 67772017/11/19 : 1.8-rc4 6778 - BUG/MEDIUM: cache: does not cache if no Content-Length 6779 - BUILD: thread/pipe: fix build without threads 6780 - BUG/MINOR: spoe: check buffer size before acquiring or releasing it 6781 - MINOR: debug/flags: Add missing flags 6782 - MINOR: threads: Use __decl_hathreads to declare locks 6783 - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe 6784 - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees 6785 - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees 6786 - MINOR: ebtree/scope: add a function to find next node from a parent 6787 - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent() 6788 - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH 6789 - BUG/MEDIUM: cache: use msg->sov to forward header 6790 - MINOR: cache: forward data with headers 6791 - MINOR: cache: disable cache if shctx_row_data_append fail 6792 - BUG/MINOR: threads: tid_bit must be a unsigned long 6793 - CLEANUP: tasks: Remove useless double test on rq_next 6794 - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local 6795 - MINOR: tools: add a function to dump a scope-aware tree to a file 6796 - MINOR: tools: improve the DOT dump of the ebtree 6797 - MINOR: tools: emphasize the node being worked on in the tree dump 6798 - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion 6799 - DOC: peers: Add a first version of peers protocol v2.1. 6800 - CONTRIB: Wireshark dissector for HAProxy Peer Protocol. 6801 - MINOR: mworker: display an accurate error when the reexec fail 6802 - BUG/MEDIUM: mworker: wait again for signals when execvp fail 6803 - BUG/MEDIUM: mworker: does not deinit anymore 6804 - BUG/MEDIUM: mworker: does not close inherited FD 6805 - MINOR: tests: add a python wrapper to test inherited fd 6806 - BUG/MINOR: Allocate the log buffers before the proxies startup 6807 - MINOR: tasks: Use a bitfield to track tasks activity per-thread 6808 - MAJOR: polling: Use active_tasks_mask instead of tasks_run_queue 6809 - MINOR: applets: Use a bitfield to track applets activity per-thread 6810 - MAJOR: polling: Use active_appels_mask instead of applets_active_queue 6811 - MEDIUM: applets: Don't process more than 200 active applets at once 6812 - MINOR: stream: Add thread-mask of tasks/FDs/applets in "show sess all" command 6813 - MINOR: SSL: Store the ASN1 representation of client sessions. 6814 - MINOR: ssl: Make sure we don't shutw the connection before the handshake. 6815 - BUG/MEDIUM: deviceatlas: ignore not valuable HTTP request data 6816 68172017/11/11 : 1.8-rc3 6818 - BUILD: use MAXPATHLEN instead of NAME_MAX. 6819 - BUG/MAJOR: threads/checks: add 4 missing spin_unlock() in various functions 6820 - BUG/MAJOR: threads/server: missing unlock in CLI fqdn parser 6821 - BUG/MINOR: cli: do not perform an invalid action on "set server check-port" 6822 - BUG/MAJOR: threads/checks: wrong use of SPIN_LOCK instead of SPIN_UNLOCK 6823 - CLEANUP: checks: remove return statements in locked functions 6824 - BUG/MINOR: cli: add severity in "set server addr" parser 6825 - CLEANUP: server: get rid of return statements in the CLI parser 6826 - BUG/MAJOR: cli/streams: missing unlock on exit "show sess" 6827 - BUG/MAJOR: threads/dns: add missing unlock on allocation failure path 6828 - BUG/MAJOR: threads/lb: fix missing unlock on consistent hash LB 6829 - BUG/MAJOR: threads/lb: fix missing unlock on map-based hash LB 6830 - BUG/MEDIUM: threads/stick-tables: close a race condition on stktable_trash_expired() 6831 - BUG/MAJOR: h2: set the connection's task to NULL when no client timeout is set 6832 - BUG/MAJOR: thread/listeners: enable_listener must not call unbind_listener() 6833 - BUG/MEDIUM: threads: don't try to free build option message on exit 6834 - MINOR: applets: no need to check for runqueue's emptiness in appctx_res_wakeup() 6835 - MINOR: add master-worker in the warning about nbproc 6836 - MINOR: mworker: allow pidfile in mworker + foreground 6837 - MINOR: mworker: write parent pid in the pidfile 6838 - MINOR: mworker: do not store child pid anymore in the pidfile 6839 - MINOR: ebtree: implement the scope-aware functions for eb32 6840 - MEDIUM: ebtree: specify the scope of every node inserted via eb32sc 6841 - MINOR: ebtree: update the eb32sc parent node's scope on delete 6842 - MEDIUM: ebtree: only consider the branches matching the scope in lookups 6843 - MINOR: ebtree: implement eb32sc_lookup_ge_or_first() 6844 - MAJOR: task: make use of the scope-aware ebtree functions 6845 - MINOR: task: simplify wake_expired_tasks() to avoid unlocking in the loop 6846 - MEDIUM: task: change the construction of the loop in process_runnable_tasks() 6847 - MINOR: threads: use faster locks for the spin locks 6848 - MINOR: tasks: only visit filled task slots after processing them 6849 - MEDIUM: tasks: implement a lockless scheduler for single-thread usage 6850 - BUG/MINOR: dns: Don't try to get the server lock if it's already held. 6851 - BUG/MINOR: dns: Don't lock the server lock in snr_check_ip_callback(). 6852 - DOC: Add note about encrypted password CPU usage 6853 - BUG/MINOR: h2: set the "HEADERS_SENT" flag on stream, not connection 6854 - BUG/MEDIUM: h2: properly send an RST_STREAM on mux stream error 6855 - BUG/MEDIUM: h2: properly send the GOAWAY frame in the mux 6856 - BUG/MEDIUM: h2: don't try (and fail) to send non-existing data in the mux 6857 - MEDIUM: h2: remove the H2_SS_RESET intermediate state 6858 - BUG/MEDIUM: h2: fix some wrong error codes on connections 6859 - BUILD: threads: Rename SPIN/RWLOCK macros using HA_ prefix 6860 - BUILD: enable USE_THREAD for Solaris build. 6861 - BUG/MEDIUM: h2: don't close the connection is there are data left 6862 - MINOR: h2: don't re-enable the connection's task when we're closing 6863 - BUG/MEDIUM: h2: properly set H2_SF_ES_SENT when sending the final frame 6864 - BUG/MINOR: h2: correctly check for H2_SF_ES_SENT before closing 6865 - MINOR: h2: add new stream flag H2_SF_OUTGOING_DATA 6866 - BUG/MINOR: h2: don't send GOAWAY on failed response 6867 - BUG/MEDIUM: splice/threads: pipe reuse list was not protected. 6868 - BUG/MINOR: comp: fix compilation warning compiling without compression. 6869 - BUG/MINOR: stream-int: don't set MSG_MORE on closed request path 6870 - BUG/MAJOR: threads/tasks: fix the scheduler again 6871 - BUG/MINOR; ssl: Don't assume we have a ssl_bind_conf because a SNI is matched. 6872 - MINOR: ssl: Handle session resumption with TLS 1.3 6873 - MINOR: ssl: Spell 0x10101000L correctly. 6874 - MINOR: ssl: Handle sending early data to server. 6875 - BUILD: ssl: fix build of backend without ssl 6876 - BUILD: shctx: do not depend on openssl anymore 6877 - BUG/MINOR: h1: the HTTP/1 make status code parser check for digits 6878 - BUG/MEDIUM: h2: reject non-3-digit status codes 6879 - BUG/MEDIUM: stream-int: Don't loss write's notifs when a stream is woken up 6880 - BUG/MINOR: pattern: Rely on the sample type to copy it in pattern_exec_match 6881 - BUG/MEDIUM: h2: split the function to send RST_STREAM 6882 - BUG/MEDIUM: h1: ensure the chunk size parser can deal with full buffers 6883 - MINOR: tools: don't use unlikely() in hex2i() 6884 - BUG/MEDIUM: h2: support orphaned streams 6885 - BUG/MEDIUM: threads/cli: fix "show sess" locking on release 6886 - CLEANUP: mux: remove the unused "release()" function 6887 - MINOR: cli: make "show fd" report the fd's thread mask 6888 - BUG/MEDIUM: stream: don't ignore res.analyse_exp anymore 6889 - CLEANUP: global: introduce variable pid_bit to avoid shifts with relative_pid 6890 - MEDIUM: http: always reject the "PRI" method 6891 68922017/11/03 : 1.8-rc2 6893 - BUG/MINOR: send-proxy-v2: fix dest_len in make_tlv call 6894 - BUG/MINOR: send-proxy-v2: string size must include ('\0') 6895 - MINOR: mux: Only define pipe functions on linux. 6896 - MINOR: cache: Remove useless test for nonzero. 6897 - MINOR: cache: Don't confuse act_return and act_parse_ret. 6898 - BUG/MEDIUM: h2: don't try to parse incomplete H1 responses 6899 - BUG/MEDIUM: checks/mux: always enable send-polling after connecting 6900 - BUG/MAJOR: fix deadlock on healthchecks. 6901 - BUG/MINOR: thread: fix a typo in the debug code 6902 - BUILD: shctx: allow to be built without openssl 6903 - BUG/MEDIUM: cache: don't try to resolve wrong filters 6904 - BUG/MAJOR: buffers: fix get_buffer_nc() for data at end of buffer 6905 - BUG/MINOR: freq: fix infinite loop on freq_ctr_period. 6906 - BUG/MINOR: stdarg.h inclusion 6907 - BUG/MINOR: dns: fix missing lock protection on server. 6908 - BUG/MINOR: lua: fix missing lock protection on server. 6909 - BUILD: enable USE_THREAD for OpenBSD build. 6910 - BUG/MAJOR: mux_pt: don't dereference a connstream after ->wake() 6911 - MINOR: thread: report multi-thread support in haproxy -vv 6912 69132017/10/31 : 1.8-rc1 6914 - BUG/MEDIUM: server: Allocate tmptrash before using it. 6915 - CONTRIB: trace: add the possibility to place trace calls in the code 6916 - CONTRIB: trace: try to display the function's return value on exit 6917 - CONTRIB: trace: report the base name only for file names 6918 - BUILD: ssl: support OPENSSL_NO_ASYNC #define 6919 - MINOR: ssl: build with recent BoringSSL library 6920 - BUG/MINOR: ssl: OCSP_single_get0_status can return -1 6921 - BUG/MINOR: cli: restore "set ssl tls-key" command 6922 - CLEANUP: cli: remove undocumented "set ssl tls-keys" command 6923 - IMPORT: sha1: import SHA1 functions 6924 - MINOR: sample: add the sha1 converter 6925 - MINOR: sample: add the hex2i converter 6926 - MINOR: stream-int: stop checking for useless connection flags in chk_snd_conn 6927 - MINOR: ssl: don't abort after sending 16kB 6928 - MINOR: connection: move the cleanup of flag CO_FL_WAIT_ROOM 6929 - MINOR: connection: add flag CO_FL_WILL_UPDATE to indicate when updates are granted 6930 - MEDIUM: connection: make use of CO_FL_WILL_UPDATE in conn_sock_shutw() 6931 - MINOR: raw_sock: make use of CO_FL_WILL_UPDATE 6932 - MINOR: ssl_sock: make use of CO_FL_WILL_UPDATE 6933 - BUG/MINOR: checks: Don't forget to release the connection on error case. 6934 - MINOR: buffer: add the buffer input manipulation functions 6935 - BUG/MEDIUM: prevent buffers being overwritten during build_logline() execution 6936 - MEDIUM: cfgparse: post section callback 6937 - MEDIUM: cfgparse: post parsing registration 6938 - MINOR: lua: add uuid to the Class Proxy 6939 - MINOR: hlua: Add regex class 6940 - MINOR: http: Mark the 425 code as "Too Early". 6941 - MEDIUM: ssl: convert CBS (BoringSSL api) usage to neutral code 6942 - MINOR: ssl: support Openssl 1.1.1 early callback for switchctx 6943 - MINOR: ssl: generated certificate is missing in switchctx early callback 6944 - MEDIUM: ssl: Handle early data with OpenSSL 1.1.1 6945 - BUILD: Makefile: disable -Wunused-label 6946 - MINOR: ssl/proto_http: Add keywords to take care of early data. 6947 - BUG/MINOR: lua: const attribute of a string is overridden 6948 - MINOR: ssl: Don't abuse ssl_options. 6949 - MINOR: update proxy-protocol-v2 #define 6950 - MINOR: merge ssl_sock_get calls for log and ppv2 6951 - MINOR: add ALPN information to send-proxy-v2 6952 - MEDIUM: h1: ensure that 1xx, 204 and 304 don't have a payload body 6953 - CLEANUP: shctx: get ride of the shsess_packet{_hdr} structures 6954 - MEDIUM: lists: list_for_each_entry{_safe}_from functions 6955 - REORG: shctx: move lock functions and struct 6956 - MEDIUM: shctx: allow the use of multiple shctx 6957 - REORG: shctx: move ssl functions to ssl_sock.c 6958 - MEDIUM: shctx: separate ssl and shctx 6959 - MINOR: shctx: rename lock functions 6960 - MINOR: h1: store the status code in the H1 message 6961 - BUG/MINOR: spoe: Don't compare engine name and SPOE scope when both are NULL 6962 - BUG/MINOR: spoa: Update pointer on the end of the frame when a reply is encoded 6963 - MINOR: action: Add trk_idx inline function 6964 - MINOR: action: Use trk_idx instead of tcp/http_trk_idx 6965 - MINOR: action: Add a function pointer in act_rule struct to check its validity 6966 - MINOR: action: Add function to check rules using an action ACT_ACTION_TRK_* 6967 - MINOR: action: Add a functions to check http capture rules 6968 - MINOR: action: Factorize checks on rules calling check_ptr if defined 6969 - MINOR: acl: Pass the ACLs as an explicit parameter of build_acl_cond 6970 - MEDIUM: spoe: Add support of ACLS to enable or disable sending of SPOE messages 6971 - MINOR: spoe: Check uniqness of SPOE engine names during config parsing 6972 - MEDIUM: spoe: Parse new "spoe-group" section in SPOE config file 6973 - MEDIUM: spoe/rules: Add "send-spoe-group" action for tcp/http rules 6974 - MINOR: spoe: Move message encoding in its own function 6975 - MINOR: spoe: Add a type to qualify the message list during encoding 6976 - MINOR: spoe: Add a generic function to encode a list of SPOE message 6977 - MEDIUM: spoe/rules: Process "send-spoe-group" action 6978 - BUG/MINOR: dns: Fix CLI keyword declaration 6979 - MAJOR: dns: Refactor the DNS code 6980 - BUG/MINOR: mailers: Fix a memory leak when email alerts are released 6981 - MEDIUM: mailers: Init alerts during conf parsing and refactor their processing 6982 - MINOR: mailers: Use pools to allocate email alerts and its tcpcheck_rules 6983 - MINOR: standard: Add memvprintf function 6984 - MINOR: log: Save alerts and warnings emitted during HAProxy startup 6985 - MINOR: cli: Add "show startup-logs" command 6986 - MINOR: startup: Extend the scope the MODE_STARTING flag 6987 - MINOR: threads: Prepare makefile to link with pthread 6988 - MINOR: threads: Add THREAD_LOCAL macro 6989 - MINOR: threads: Add atomic-ops and plock includes in import dir 6990 - MEDIUM: threads: Add hathreads header file 6991 - MINOR: threads: Add mechanism to register per-thread init/deinit functions 6992 - MINOR: threads: Add nbthread parameter 6993 - MEDIUM: threads: Adds a set of functions to handle sync-point 6994 - MAJOR: threads: Start threads to experiment multithreading 6995 - MINOR: threads: Define the sync-point inside run_poll_loop 6996 - MEDIUM: threads/buffers: Define and register per-thread init/deinit functions 6997 - MEDIUM: threads/chunks: Transform trash chunks in thread-local variables 6998 - MEDIUM: threads/time: Many global variables from time.h are now thread-local 6999 - MEDIUM: threads/logs: Make logs thread-safe 7000 - MEDIUM: threads/pool: Make pool thread-safe by locking all access to a pool 7001 - MAJOR: threads/fd: Make fd stuffs thread-safe 7002 - MINOR: threads/fd: Add a mask of threads allowed to process on each fd in fdtab array 7003 - MEDIUM: threads/fd: Initialize the process mask during the call to fd_insert 7004 - MINOR: threads/fd: Process cached events of FDs depending on the process mask 7005 - MINOR: threads/polling: pollers now handle FDs depending on the process mask 7006 - WIP: SQUASH WITH SYNC POINT 7007 - MAJOR: threads/task: handle multithread on task scheduler 7008 - MEDIUM: threads/signal: Add a lock to make signals thread-safe 7009 - MEDIUM: threads/listeners: Make listeners thread-safe 7010 - MEDIUM: threads/proxy: Add a lock per proxy and atomically update proxy vars 7011 - MEDIUM: threads/server: Make connection list (priv/idle/safe) thread-safe 7012 - MEDIUM: threads/server: Add a lock per server and atomically update server vars 7013 - MINOR: threads/server: Add a lock to deal with insert in updates_servers list 7014 - MEDIUM: threads/lb: Make LB algorithms (lb_*.c) thread-safe 7015 - MEDIUM: threads/stick-tables: handle multithreads on stick tables 7016 - MINOR: threads/sample: Change temp_smp into a thread local variable 7017 - MEDIUM: threads/http: Make http_capture_bad_message thread-safe 7018 - MINOR: threads/regex: Change Regex trash buffer into a thread local variable 7019 - MAJOR: threads/applet: Handle multithreading for applets 7020 - MAJOR: threads/peers: Make peers thread safe 7021 - MAJOR: threads/buffer: Make buffer wait queue thread safe 7022 - MEDIUM: threads/stream: Make streams list thread safe 7023 - MAJOR: threads/ssl: Make SSL part thread-safe 7024 - MEDIUM: threads/queue: Make queues thread-safe 7025 - MAJOR: threads/map: Make acls/maps thread safe 7026 - MEDIUM: threads/freq_ctr: Make the frequency counters thread-safe 7027 - MEDIUM: thread/vars: Make vars thread-safe 7028 - MEDIUM: threads/filters: Add init/deinit callback per thread 7029 - MINOR: threads/filters: Update trace filter to add _per_thread callbacks 7030 - MEDIUM: threads/compression: Make HTTP compression thread-safe 7031 - MEDIUM: threads/lua: Makes the jmpbuf and some other buffers local to the current thread. 7032 - MEDIUM: threads/lua: Add locks around the Lua execution parts. 7033 - MEDIUM: threads/lua: Ensure that the launched tasks runs on the same threads than me 7034 - MEDIUM: threads/lua: Cannot acces to the socket if we try to access from another thread. 7035 - MEDIUM: threads/xref: Convert xref function to a thread safe model 7036 - MEDIUM: threads/tasks: Add lock around notifications 7037 - MEDIUM: thread/spoe: Make the SPOE thread-safe 7038 - MEDIUM: thread/dns: Make DNS thread-safe 7039 - MINOR: threads: Add thread-map config parameter in the global section 7040 - MINOR: threads/checks: Add a lock to protect the pid list used by external checks 7041 - MINOR: threads/checks: Set the task process_mask when a check is executed 7042 - MINOR: threads/mailers: Add a lock to protect queues of email alerts 7043 - MEDIUM: threads/server: Use the server lock to protect health check and cli concurrency 7044 - MINOR: threads: Don't start when device a detection module is used 7045 - BUG/MEDIUM: threads: Run the poll loop on the main thread too 7046 - BUG/MINOR: threads: Add missing THREAD_LOCAL on static here and there 7047 - MAJOR: threads: Offically enable the threads support in HAProxy 7048 - BUG/MAJOR: threads/freq_ctr: fix lock on freq counters. 7049 - BUG/MAJOR: threads/time: Store the time deviation in an 64-bits integer 7050 - BUILD: stick-tables: silence an uninitialized variable warning 7051 - BUG/MINOR: dns: Fix SRV records with the new thread code. 7052 - MINOR: ssl: Remove the global allow-0rtt option. 7053 - CLEANUP: threads: replace the last few 1UL<<tid with tid_bit 7054 - CLEANUP: threads: rename process_mask to thread_mask 7055 - MINOR: h1: add a function to measure the trailers length 7056 - MINOR: threads: add a portable barrier for threads and non-threads 7057 - BUG/MAJOR: threads/freq_ctr: use a memory barrier to detect changes 7058 - BUG/MEDIUM: threads: Initialize the sync-point 7059 - MEDIUM: connection: start to introduce a mux layer between xprt and data 7060 - MINOR: connection: implement alpn registration of muxes 7061 - MINOR: mux: register the pass-through mux for any ALPN string 7062 - MEDIUM: session: use the ALPN token and proxy mode to select the mux 7063 - MINOR: connection: report the major HTTP version from the MUX for logging (fc_http_major) 7064 - MINOR: connection: introduce conn_stream 7065 - MINOR: mux: add more methods to mux_ops 7066 - MINOR: connection: introduce the conn_stream manipulation functions 7067 - MINOR: mux_pt: implement remaining mux_ops methods 7068 - MAJOR: connection : Split struct connection into struct connection and struct conn_stream. 7069 - MINOR: connection: make conn_stream users also check for per-stream error flag 7070 - MINOR: conn_stream: new shutr/w status flags 7071 - MINOR: conn_stream: modify cs_shut{r,w} API to pass the desired mode 7072 - MEDIUM: connection: make conn_sock_shutw() aware of lingering 7073 - MINOR: connection: add cs_close() to close a conn_stream 7074 - MEDIUM: mux_pt: make cs_shutr() / cs_shutw() properly close the connection 7075 - MEDIUM: connection: replace conn_full_close() with cs_close() 7076 - MEDIUM: connection: make mux->detach() release the connection 7077 - MEDIUM: stream: do not forcefully close the client connection anymore 7078 - MEDIUM: checks: exclusively use cs_destroy() to release a connection 7079 - MEDIUM: connection: add a destroy callback 7080 - MINOR: session: release the listener with the session, not the stream 7081 - MEDIUM: session: make use of the connection's destroy callback 7082 - CONTRIB: hpack: implement a reverse huffman table generator for hpack 7083 - MINOR: hpack: implement the HPACK Huffman table decoder 7084 - MINOR: hpack: implement the header tables management 7085 - MINOR: hpack: implement the decoder 7086 - MEDIUM: hpack: implement basic hpack encoding 7087 - MINOR: h2: centralize all HTTP/2 protocol elements and constants 7088 - MINOR: h2: create a very minimalistic h2 mux 7089 - MINOR: h2: expose tune.h2.header-table-size to configure the table size 7090 - MINOR: h2: expose tune.h2.initial-window-size to configure the window size 7091 - MINOR: h2: expose tune.h2.max-concurrent-streams to limit the number of streams 7092 - MINOR: h2: create the h2c struct and allocate its pool 7093 - MINOR: h2: create the h2s struct and the associated pool 7094 - MINOR: h2: handle two extra stream states for errors 7095 - MINOR: h2: add a frame header descriptor for incoming frames 7096 - MEDIUM: h2: allocate and release the h2c context on connection init/end 7097 - MEDIUM: h2: implement basic recv/send/wake functions 7098 - MEDIUM: h2: dynamically allocate the demux buffer on Rx 7099 - MEDIUM: h2: implement the mux buffer allocator 7100 - MINOR: h2: add the connection and stream flags listing the causes for blocking 7101 - MINOR: h2: add function h2s_id() to report a stream's ID 7102 - MINOR: h2: small function to know when the mux is busy 7103 - MINOR: h2: new function h2c_error to mark an error on the connection 7104 - MINOR: h2: new function h2s_error() to mark an error on a stream 7105 - MINOR: h2: add h2_set_frame_size() to update the size in a binary frame 7106 - MINOR: h2: new function h2_peek_frame_hdr() to retrieve a new frame header 7107 - MINOR: h2: add a few functions to retrieve contents from a wrapping buffer 7108 - MINOR: h2: add stream lookup function based on the stream ID 7109 - MINOR: h2: create dummy idle and closed streams 7110 - MINOR: h2: add the function to create a new stream 7111 - MINOR: h2: update the {MUX,DEM}_{M,D}ALLOC flags on buffer availability 7112 - MEDIUM: h2: start to consider the H2_CF_{MUX,DEM}_* flags for polling 7113 - MINOR: h2: also terminate the connection on shutr 7114 - MEDIUM: h2: properly consider all conditions for end of connection 7115 - MEDIUM: h2: wake the connection up for send on pending streams 7116 - MEDIUM: h2: start to implement the frames processing loop 7117 - MINOR: h2: add a function to send a GOAWAY error frame 7118 - MINOR: h2: match the H2 connection preface on init 7119 - MEDIUM: h2: enable connection polling for send when a cs wants to emit 7120 - MEDIUM: h2: enable reading again on the connection if it was blocked on stream buffer full 7121 - MEDIUM: h2: process streams pending for sending 7122 - MINOR: h2: send a real SETTINGS frame based on the configuration 7123 - MEDIUM: h2: detect the presence of the first settings frame 7124 - MINOR: h2: create a stream parser for the demuxer 7125 - MINOR: h2: implement PING frames 7126 - MEDIUM: h2: decode SETTINGS frames and extract relevant settings 7127 - MINOR: h2: lookup the stream during demuxing 7128 - MEDIUM: h2: honor WINDOW_UPDATE frames 7129 - MINOR: h2: implement h2_send_rst_stream() to send RST_STREAM frames 7130 - MINOR: h2: handle CONTINUATION frames 7131 - MEDIUM: h2: partial implementation of h2_detach() 7132 - MEDIUM: h2: unblock a connection when its current stream detaches 7133 - MEDIUM: h2: basic processing of HEADERS frame 7134 - MEDIUM: h2: don't use trash to decode headers! 7135 - MEDIUM: h2: implement the response HEADERS frame to encode the H1 response 7136 - MEDIUM: h2: send the H1 response body as DATA frames 7137 - MEDIUM: h2: skip the response trailers if any 7138 - MEDIUM: h2: properly continue to parse header block when facing a 1xx response 7139 - MEDIUM: h2: send WINDOW_UPDATE frames for connection 7140 - MEDIUM: h2: handle request body in DATA frames 7141 - MINOR: h2: handle RST_STREAM frames 7142 - MEDIUM: h2: send DATA+ES or RST_STREAM on shutw/shutr 7143 - MINOR: h2: use a common function to signal some and all streams. 7144 - MEDIUM: h2: handle GOAWAY frames 7145 - MINOR: h2: centralize the check for the idle streams 7146 - MINOR: h2: centralize the check for the half-closed(remote) streams 7147 - MEDIUM: h2: silently ignore frames higher than last_id after GOAWAY 7148 - MINOR: h2: properly reject PUSH_PROMISE frames coming from the client 7149 - MEDIUM: h2: perform a graceful shutdown on "Connection: close" 7150 - MEDIUM: h2: send a GOAWAY frame when dealing with an empty response 7151 - MEDIUM: h2: apply a timeout to h2 connections 7152 - BUG/MEDIUM: h2: fix incorrect timeout handling on the connection 7153 - MEDIUM: shctx: forbid shctx to read more than expected 7154 - MEDIUM: cache: configuration parsing and initialization 7155 - MEDIUM: cache: store objects in cache 7156 - MEDIUM: cache: deliver objects from cache 7157 71582017/10/22 : 1.8-dev3 7159 - REORG: ssl: move defines and methodVersions table upper 7160 - MEDIUM: ssl: ctx_set_version/ssl_set_version func for methodVersions table 7161 - MINOR: ssl: support ssl-min-ver and ssl-max-ver with crt-list 7162 - MEDIUM: ssl: disable SSLv3 per default for bind 7163 - BUG/MAJOR: ssl: fix segfault on connection close using async engines. 7164 - BUG/MAJOR: ssl: buffer overflow using offloaded ciphering on async engine 7165 - BUG/MINOR: ssl: do not call directly the conn_fd_handler from async_fd_handler 7166 - BUG/MINOR: haproxy/cli : fix for solaris/illumos distros for CMSG* macros 7167 - BUG/MEDIUM: build without openssl broken 7168 - BUG/MINOR: warning: need_resend may be used uninitialized 7169 - BUG/MEDIUM: misplaced exit and wrong exit code 7170 - BUG/MINOR: Makefile: fix compile error with USE_LUA=1 in ubuntu16.04 7171 - BUILD: scripts: make publish-release support bare repositories 7172 - BUILD: scripts: add an automatic mode for publish-release 7173 - BUILD: scripts: add a "quiet" mode to publish-release 7174 - BUG/MAJOR: http: call manage_client_side_cookies() before erasing the buffer 7175 - BUG/MINOR: buffers: Fix bi/bo_contig_space to handle full buffers 7176 - CONTRIB: plug qdiscs: Plug queuing disciplines mini HOWTO. 7177 - BUG/MINOR: acls: Set the right refflag when patterns are loaded from a map 7178 - BUG/MINOR: ssl: Be sure that SSLv3 connection methods exist for openssl < 1.1.0 7179 - BUG/MINOR: http/filters: Be sure to wait if a filter loops in HTTP_MSG_ENDING 7180 - BUG/MEDIUM: peers: Peers CLOSE_WAIT issue. 7181 - BUG/MAJOR: server: Segfault after parsing server state file. 7182 - BUG/MEDIUM: unix: never unlink a unix socket from the file system 7183 - scripts: create-release pass -n to tail 7184 - SCRIPTS: create-release: enforce GIT_COMMITTER_{NAME|EMAIL} validity 7185 - BUG/MEDIUM: fix segfault when no argument to -x option 7186 - MINOR: warning on multiple -x 7187 - MINOR: mworker: don't copy -x argument anymore in copy_argv() 7188 - BUG/MEDIUM: mworker: don't reuse PIDs passed to the master 7189 - BUG/MINOR: Wrong peer task expiration handling during synchronization processing. 7190 - BUG/MINOR: cfgparse: Check if tune.http.maxhdr is in the range 1..32767 7191 - BUG/MINOR: log: pin the front connection when front ip/ports are logged 7192 - DOC: fix references to the section about the unix socket 7193 - BUG/MINOR: stream: flag TASK_WOKEN_RES not set if task in runqueue 7194 - MAJOR: task: task scheduler rework. 7195 - MINOR: task/stream: tasks related to a stream must be init by the caller. 7196 - MINOR: queue: Change pendconn_get_next_strm into private function 7197 - MINOR: backends: Change get_server_sh/get_server_uh into private function 7198 - MINOR: queue: Change pendconn_from_srv/pendconn_from_px into private functions 7199 - MEDIUM: stream: make stream_new() always set the target and analysers 7200 - MINOR: frontend: initialize HTTP layer after the debugging code 7201 - MINOR: connection: add a .get_alpn() method to xprt_ops 7202 - MINOR: ssl: add a get_alpn() method to ssl_sock 7203 - MINOR: frontend: retrieve the ALPN name when available 7204 - MINOR: frontend: report the connection's ALPN in the debug output 7205 - MINOR: stream: don't set backend's nor response analysers on SF_TUNNEL 7206 - MINOR: connection: send data before receiving 7207 - MAJOR: applet: applet scheduler rework. 7208 - BUG/MAJOR: frontend: don't dereference a null conn on outgoing connections 7209 - BUG/MAJOR: cli: fix custom io_release was crushed by NULL. 7210 - BUG/MAJOR: map: fix segfault during 'show map/acl' on cli. 7211 - BUG/MAJOR: compression: Be sure to release the compression state in all cases 7212 - MINOR: compression: Use a memory pool to allocate compression states 7213 - BUG/MAJOR: applet: fix a freeze if data is immedately forwarded. 7214 - DOC: fix references to the section about time format. 7215 - BUG/MEDIUM: map/acl: fix unwanted flags inheritance. 7216 - BUG/MAJOR: http: fix buffer overflow on loguri buffer. 7217 - MINOR: ssl: compare server certificate names to the SNI on outgoing connections 7218 - BUG/MINOR: stream: Don't forget to remove CF_WAKE_ONCE flag on response channel 7219 - BUG/MINOR: http: Don't reset the transaction if there are still data to send 7220 - BUG/MEDIUM: filters: Be sure to call flt_end_analyze for both channels 7221 - MINOR: peers: Add additional information to stick-table definition messages. 7222 - BUG/MINOR: http: properly handle all 1xx informational responses 7223 - OPTIM: ssl: don't consider a small ssl_read() as an indication of end of buffer 7224 - BUG/MINOR: peers: peer synchronization issue (with several peers sections). 7225 - CLEANUP: hdr_idx: make some function arguments const where possible 7226 - BUG/MINOR: Prevent a use-after-free on error scenario on option "-x". 7227 - BUG/MINOR: lua: In error case, the safe mode is not removed 7228 - BUG/MINOR: lua: executes the function destroying the Lua session in safe mode 7229 - BUG/MAJOR: lua/socket: resources not detroyed when the socket is aborted 7230 - BUG/MEDIUM: lua: bad memory access 7231 - BUG/MINOR: Lua: variable already initialized 7232 - DOC: update CONTRIBUTING regarding optional parts and message format 7233 - DOC: update the list of OpenSSL versions in the README 7234 - BUG/MINOR: http: Set the response error state in http_sync_res_state 7235 - MINOR: http: Reorder/rewrite checks in http_resync_states 7236 - MINOR: http: Switch requests/responses in TUNNEL mode only by checking txn flags 7237 - BUG/MEDIUM: http: Switch HTTP responses in TUNNEL mode when body length is undefined 7238 - MINOR: http: Rely on analyzers mask to end processing in forward_body functions 7239 - BUG/MINOR: http: Fix bug introduced in previous patch in http_resync_states 7240 - BUG/MINOR: contrib/modsecurity: BSD build fix 7241 - BUG/MINOR: contrib/mod_defender: build fix 7242 - BUG/MINOR: ssl: remove haproxy SSLv3 support when ssl lib have no SSLv3 7243 - MINOR: ssl: remove an unecessary SSL_OP_NO_* dependancy 7244 - BUILD: ssl: fix compatibility with openssl without TLSEXT_signature_* 7245 - MINOR: tools: add a portable timegm() alternative 7246 - BUILD: lua: replace timegm() with my_timegm() to fix build on Solaris 10 7247 - DOC: Updated 51Degrees git URL to point to a stable version. 7248 - BUG/MAJOR: http: Fix possible infinity loop in http_sync_(req|res)_state 7249 - MINOR: memory: remove macros 7250 - BUG/MINOR: lua: Fix Server.get_addr() port values 7251 - BUG/MINOR: lua: Correctly use INET6_ADDRSTRLEN in Server.get_addr() 7252 - MINOR: samples: Handle the type SMP_T_METH when we duplicate a sample in smp_dup 7253 - MINOR: samples: Handle the type SMP_T_METH in smp_is_safe and smp_is_rw 7254 - MINOR: samples: Don't allocate memory for SMP_T_METH sample when method is known 7255 - BUG/MINOR: lua: always detach the tcp/http tasks before freeing them 7256 - MINOR: task: always preinitialize the task's timeout in task_init() 7257 - CLEANUP: task: remove all initializations to TICK_ETERNITY after task_new() 7258 - BUG/MAJOR: lua: properly dequeue hlua_applet_wakeup() for new scheduler 7259 - MINOR: lua: Add proxy as member of proxy object. 7260 - DOC: lua: Proxy class doc update 7261 - MINOR: lua: Add lists of frontends and backends 7262 - BUG/MINOR: ssl: Fix check against SNI during server certificate verification 7263 - BUG/MINOR: ssl: make use of the name in SNI before verifyhost 7264 - MINOR: ssl: add a new error codes for wrong server certificates 7265 - BUG/MEDIUM: stream: don't retry SSL connections which fail the SNI name check 7266 - MINOR: ssl: add "no-ca-names" parameter for bind 7267 - BUG/MINOR: lua: Fix bitwise logic for hlua_server_check_* functions. 7268 - DOC: fix alphabetical order of "show commands" in management.txt 7269 - MINOR: listener: add a function to return a listener's state as a string 7270 - MINOR: cli: add a new "show fd" command 7271 - BUG/MEDIUM: ssl: Fix regression about certificates generation 7272 - MINOR: Add server port field to server state file. 7273 - MINOR: ssl: allow to start without certificate if strict-sni is set 7274 - MINOR: dns: Cache previous DNS answers. 7275 - MINOR: obj: Add a new type of object, OBJ_TYPE_SRVRQ. 7276 - Add a few functions to do unaligned access. 7277 - MINOR: dns: Handle SRV records. 7278 - MINOR: check: Fix checks when using SRV records. 7279 - MINOR: doc: Document SRV label usage. 7280 - BUILD/MINOR: cli: shut a minor gcc warning in "show fd" 7281 - BUILD: ssl: replace SSL_CTX_get0_privatekey for openssl < 1.0.2 7282 - BUILD/MINOR: build without openssl still broken 7283 - BUG/MAJOR: stream: in stream_free(), close the front endpoint and not the origin 7284 - CLEANUP: raw_sock: Use a better name for the constructor than __ssl_sock_deinit() 7285 - MINOR: init: Fix CPU affinity setting on FreeBSD. 7286 - MINOR: dns: Update analysis of TRUNCATED response for SRV records 7287 - MINOR: dns: update record dname matching for SRV query types 7288 - MINOR: dns: update dns response buffer reading pointer due to SRV record 7289 - MINOR: dns: duplicate entries in resolution wait queue for SRV records 7290 - MINOR: dns: make debugging function dump_dns_config() compatible with SRV records 7291 - MINOR: dns: ability to use a SRV resolution for multiple backends 7292 - MINOR: dns: enable caching of responses for server set by a SRV record 7293 - MINOR: dns: new dns record type (RTYPE) for OPT 7294 - MINOR: dns: enabled edns0 extension and make accpeted payload size tunable 7295 - MINOR: dns: default "hold obsolete" timeout set to 0 7296 - MINOR: chunks: add chunk_memcpy() and chunk_memcat() 7297 - MINOR: session: add a streams field to the session struct 7298 - MINOR: stream: link the stream to its session 7299 - MEDIUM: session: do not free a session until no stream references it 7300 - MINOR: ist: implement very simple indirect strings 7301 - TESTS: ist: add a test file for the functions 7302 - MINOR: http: export some of the HTTP parser macros 7303 - BUG/MINOR: Wrong type used as argument for spoe_decode_buffer(). 7304 - BUG/MINOR: dns: server set by SRV records stay in "no resolution" status 7305 - MINOR: dns: Maximum DNS udp payload set to 8192 7306 - MINOR: dns: automatic reduction of DNS accpeted payload size 7307 - MINOR: dns: make SRV record processing more verbose 7308 - CLEANUP: dns: remove duplicated code in dns_resolve_recv() 7309 - CLEANUP: dns: remove duplicated code in dns_validate_dns_response() 7310 - BUG/MINOR: dns: wrong resolution interval lead to 100% CPU 7311 - BUG/MEDIUM: dns: fix accepted_payload_size parser to avoid integer overflow 7312 - BUG/MAJOR: lua: fix the impact of the scheduler changes again 7313 - BUG/MEDIUM: lua: HTTP services must take care of body-less status codes 7314 - MINOR: lua: properly process the contents of the content-length field 7315 - BUG/MEDIUM: stream: properly set the required HTTP analysers on use-service 7316 - OPTIM: lua: don't use expensive functions to parse headers in the HTTP applet 7317 - OPTIM: lua: don't add "Connection: close" on the response 7318 - REORG/MEDIUM: connection: introduce the notion of connection handle 7319 - BUG/MINOR: stream-int: don't check the CO_FL_CURR_WR_ENA flag 7320 - MEDIUM: connection: get rid of data->init() which was not for data 7321 - MEDIUM: stream: make stream_new() allocate its own task 7322 - CLEANUP: listener: remove the unused handler field 7323 - MEDIUM: session: add a pointer to a struct task in the session 7324 - MINOR: stream: provide a new stream creation function for connections 7325 - MEDIUM: connection: remove useless flag CO_FL_DATA_RD_SH 7326 - CLEANUP: connection: remove the unused conn_sock_shutw_pending() 7327 - MEDIUM: connection: remove useless flag CO_FL_DATA_WR_SH 7328 - DOC: add CLI info on privilege levels 7329 - DOC: Refer to Mozilla TLS info / config generator 7330 - MINOR: ssl: remove duplicate ssl_methods in struct bind_conf 7331 - BUG/MEDIUM: http: Fix a regression bug when a HTTP response is in TUNNEL mode 7332 - DOC: Add note about "* " prefix in CSV stats 7333 - CLEANUP: memory: Remove unused function pool_destroy 7334 - MINOR: listeners: Change listener_full and limit_listener into private functions 7335 - MINOR: listeners: Change enable_listener and disable_listener into private functions 7336 - MINOR: fd: Don't forget to reset fdtab[fd].update when a fd is added/removed 7337 - MINOR: fd: Set owner and iocb field before inserting a new fd in the fdtab 7338 - MINOR: backends: Make get_server_* functions explicitly static 7339 - MINOR: applet: Check applets_active_queue before processing applets queue 7340 - MINOR: chunks: Use dedicated function to init/deinit trash buffers 7341 - MEDIUM: chunks: Realloc trash buffers only after the config is parsed and checked 7342 - MINOR: logs: Use dedicated function to init/deinit log buffers 7343 - MINOR: logs: Realloc log buffers only after the config is parsed and checked 7344 - MINOR: buffers: Move swap_buffer into buffer.c and add deinit_buffer function 7345 - MINOR: stick-tables: Make static_table_key a struct variable instead of a pointer 7346 - MINOR: http: Use a trash chunk to store decoded string of the HTTP auth header 7347 - MINOR: fd: Add fd_active function 7348 - MINOR: fd: Use inlined functions to check fd state in fd_*_send/recv functions 7349 - MINOR: fd: Move (de)allocation of fdtab and fdinfo in (de)init_pollers 7350 - MINOR: freq_ctr: Return the new value after an update 7351 - MEDIUM: check: server states and weight propagation re-work 7352 - BUG/MEDIUM: epoll: ensure we always consider HUP and ERR 7353 - MINOR: fd: Add fd_update_events function 7354 - MINOR: polling: Use fd_update_events to update events seen for a fd 7355 - BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file 7356 - Revert "BUG/MINOR: server: Remove FQDN requirement for using init-addr and state file" 7357 - MINOR: ssl: rework smp_fetch_ssl_fc_cl_str without internal ssl use 7358 - BUG/MEDIUM: http: Close streams for connections closed before a redirect 7359 - BUG/MINOR: Lua: The socket may be destroyed when we try to access. 7360 - MINOR: xref: Add a new xref system 7361 - MEDIUM: xref/lua: Use xref for referencing cosocket relation between stream and lua 7362 - MINOR: tasks: Move Lua notification from Lua to tasks 7363 - MINOR: net_helper: Inline functions meant to be inlined. 7364 - MINOR: cli: add socket commands and config to prepend informational messages with severity 7365 - MINOR: add severity information to cli feedback messages 7366 - BUILD: Makefile: add a function to detect support by the compiler of certain options 7367 - BUILD: Makefile: shut certain gcc/clang stupid warnings 7368 - BUILD: Makefile: improve detection of support for compiler warnings 7369 - MINOR: peers: don't reference the incoming listener on outgoing connections 7370 - MINOR: frontend: don't retrieve ALPN on the critical path 7371 - MINOR: protocols: always pass a "port" argument to the listener creation 7372 - MINOR: protocols: register the ->add function and stop calling them directly 7373 - MINOR: unix: remove the now unused proto_uxst.h file 7374 - MINOR: listeners: new function create_listeners 7375 - MINOR: listeners: make listeners count consistent with reality 7376 - MEDIUM: session: take care of incrementing/decrementing jobs 7377 - MINOR: listener: new function listener_release 7378 - MINOR: session: small cleanup of conn_complete_session() 7379 - MEDIUM: session: factor out duplicated code for conn_complete_session 7380 - MEDIUM: session: count the frontend's connections at a single place 7381 - BUG/MEDIUM: compression: Fix check on txn in smp_fetch_res_comp_algo 7382 - BUG/MINOR: compression: Check response headers before http-response rules eval 7383 - BUG/MINOR: spoe: Don't rely on SPOE ctx in debug message when its creation failed 7384 - BUG/MINOR: dns: Fix check on nameserver in snr_resolution_cb 7385 - MINOR: ssl: Remove useless checks on bind_conf or bind_conf->is_ssl 7386 - BUG/MINOR: contrib/mod_defender: close the va_list argp before return 7387 - BUG/MINOR: contrib/modsecurity: close the va_list ap before return 7388 - MINOR: tools: make my_htonll() more efficient on x86_64 7389 - MINOR: buffer: add b_del() to delete a number of characters 7390 - MINOR: buffer: add b_end() and b_to_end() 7391 - MINOR: net_helper: add functions to read from vectors 7392 - MINOR: net_helper: add write functions 7393 - MINOR: net_helper: add 64-bit read/write functions 7394 - MINOR: connection: adjust CO_FL_NOTIFY_DATA after removal of flags 7395 - MINOR: ist: add a macro to ease const array initialization 7396 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server 7397 - BUG/MEDIUM: server: unwanted behavior leaving maintenance mode on tracked stopping server (take2) 7398 - BUG/MINOR: log: fixing small memory leak in error code path. 7399 - BUG/MINOR: contrib/halog: fixing small memory leak 7400 - BUG/MEDIUM: tcp/http: set-dst-port action broken 7401 - CLEANUUP: checks: don't set conn->handle.fd to -1 7402 - BUG/MEDIUM: tcp-check: properly indicate polling state before performing I/O 7403 - BUG/MINOR: tcp-check: don't quit with pending data in the send buffer 7404 - BUG/MEDIUM: tcp-check: don't call tcpcheck_main() from the I/O handlers! 7405 - BUG/MINOR: unix: properly check for octal digits in the "mode" argument 7406 - MINOR: checks: make chk_report_conn_err() take a check, not a connection 7407 - CLEANUP: checks: remove misleading comments and statuses for external process 7408 - CLEANUP: checks: don't report report the fork() error twice 7409 - CLEANUP: checks: do not allocate a connection for process checks 7410 - TESTS: checks: add a simple test config for external checks 7411 - BUG/MINOR: tcp-check: don't initialize then break a connection starting with a comment 7412 - TESTS: checks: add a simple test config for tcp-checks 7413 - MINOR: tcp-check: make tcpcheck_main() take a check, not a connection 7414 - MINOR: checks: don't create then kill a dummy connection before tcp-checks 7415 - MEDIUM: checks: make tcpcheck_main() indicate if it recycled a connection 7416 - MEDIUM: checks: do not allocate a permanent connection anymore 7417 - BUG/MEDIUM: cli: fix "show fd" crash when dumping closed FDs 7418 - BUG/MEDIUM: http: Return an error when url_dec sample converter failed 7419 - BUG/MAJOR: stream-int: don't re-arm recv if send fails 7420 - BUILD/MINOR: 51d: fix warning when building with 51Degrees release version 3.2.12.12 7421 - DOC: 51d: add 51Degrees git URL that points to release version 3.2.12.12 7422 - DOC: 51d: Updated git URL and instructions for getting Hash Trie data files. 7423 - MINOR: compiler: restore the likely() wrapper for gcc 5.x 7424 - MINOR: session: remove the list of streams from struct session 7425 - DOC: fix some typos 7426 - MINOR: server: add the srv_queue() sample fetch method 7427 - MINOR: payload: add new sample fetch functions to process distcc protocol 7428 - MAJOR: servers: propagate server status changes asynchronously. 7429 - BUG/MEDIUM: ssl: fix OCSP expiry calculation 7430 - BUG/MINOR: stream-int: don't set MSG_MORE on SHUTW_NOW without AUTO_CLOSE 7431 - MINOR: server: Handle weight increase in consistent hash. 7432 - MINOR: checks: Add a new keyword to specify a SNI when doing SSL checks. 7433 - BUG/MINOR: tools: fix my_htonll() on x86_64 7434 - BUG/MINOR: stats: Clear a bit more counters with in cli_parse_clear_counters(). 7435 - BUG/MAJOR: lua: scheduled task is freezing. 7436 - MINOR: buffer: add bo_del() to delete a number of characters from output 7437 - MINOR: buffer: add a function to match against string patterns 7438 - MINOR: buffer: add two functions to inject data into buffers 7439 - MINOR: buffer: add buffer_space_wraps() 7440 - REORG: channel: finally rename the last bi_* / bo_* functions 7441 - MINOR: buffer: add bo_getblk() and bo_getblk_nc() 7442 - MINOR: channel: make use of bo_getblk{,_nc} for their channel equivalents 7443 - MINOR: channel: make the channel be a const in all {ci,co}_get* functions 7444 - MINOR: ist: add ist0() to add a trailing zero to a string. 7445 - BUG/MEDIUM: log: check result details truncated. 7446 - MINOR: buffer: make bo_getblk_nc() not return 2 for a full buffer 7447 - REORG: http: move some very http1-specific parts to h1.{c,h} 7448 - REORG: http: move the HTTP/1 chunk parser to h1.{c,h} 7449 - REORG: http: move the HTTP/1 header block parser to h1.c 7450 - MEDIUM: http: make the chunk size parser only depend on the buffer 7451 - MEDIUM: http: make the chunk crlf parser only depend on the buffer 7452 - MINOR: h1: add struct h1m for basic HTTP/1 messages 7453 - MINOR: http: add very simple header management based on double strings 7454 - MEDIUM: h1: reimplement the http/1 response parser for the gateway 7455 - REORG: connection: rename CO_FL_DATA_* -> CO_FL_XPRT_* 7456 - MEDIUM: connection: make conn_sock_shutw() aware of lingering 7457 - MINOR: connection: ensure conn_ctrl_close() also resets the fd 7458 - MINOR: connection: add conn_stop_tracking() to disable tracking 7459 - MINOR: tcp: use conn_full_close() instead of conn_force_close() 7460 - MINOR: unix: use conn_full_close() instead of conn_force_close() 7461 - MINOR: checks: use conn_full_close() instead of conn_force_close() 7462 - MINOR: session: use conn_full_close() instead of conn_force_close() 7463 - MINOR: stream: use conn_full_close() instead of conn_force_close() 7464 - MINOR: stream: use conn_full_close() instead of conn_force_close() 7465 - MINOR: backend: use conn_full_close() instead of conn_force_close() 7466 - MINOR: stream-int: use conn_full_close() instead of conn_force_close() 7467 - MINOR: connection: remove conn_force_close() 7468 - BUG/MINOR: ssl: ocsp response with 'revoked' status is correct 7469 74702017/06/02 : 1.8-dev2 7471 - CLEANUP: server: moving netinet/tcp.h inclusion 7472 - DOC: changed "block"(deprecated) examples to http-request deny 7473 - DOC: add few comments to examples. 7474 - DOC: update sample code for PROXY protocol 7475 - DOC: mention lighttpd 1.4.46 implements PROXY 7476 - MINOR server: Restrict dynamic cookie check to the same proxy. 7477 - DOC: stick-table is available in frontend sections 7478 - BUG/MINOR: server : no transparent proxy for DragonflyBSD 7479 - BUILD/MINOR: stats: remove unexpected argument to stats_dump_json_header() 7480 - BUILD/MINOR: tools: fix build warning in debug_hexdump() 7481 - BUG/MINOR: dns: Wrong address family used when creating IPv6 sockets. 7482 - BUG/MINOR: config: missing goto out after parsing an incorrect ACL character 7483 - BUG/MINOR: arg: don't try to add an argument on failed memory allocation 7484 - MEDIUM: server: Inherit CLI weight changes and agent-check weight responses 7485 - BUG/MEDIUM: arg: ensure that we properly unlink unresolved arguments on error 7486 - BUG/MEDIUM: acl: don't free unresolved args in prune_acl_expr() 7487 - BUG/MEDIUM: servers: unbreak server weight propagation 7488 - MINOR: lua: ensure the memory allocator is used all the time 7489 - MINOR: cli: Add a command to send listening sockets. 7490 - MINOR: global: Add an option to get the old listening sockets. 7491 - MINOR: tcp: When binding socket, attempt to reuse one from the old proc. 7492 - MINOR: doc: document the -x flag 7493 - MINOR: proxy: Don't close FDs if not our proxy. 7494 - MINOR: socket transfer: Set a timeout on the socket. 7495 - MINOR: systemd wrapper: add support for passing the -x option. 7496 - BUG/MINOR: server: Fix a wrong error message during 'usesrc' keyword parsing. 7497 - BUG/MAJOR: Broken parsing for valid keywords provided after 'source' setting. 7498 - CLEANUP: logs: typo: simgle => single 7499 - BUG/MEDIUM: acl: proprely release unused args in prune_acl_expr() 7500 - MEDIUM: config: don't check config validity when there are fatal errors 7501 - BUG/MAJOR: Use -fwrapv. 7502 - BUG/MINOR: server: don't use "proxy" when px is really meant. 7503 - BUG/MEDIUM: http: Drop the connection establishment when a redirect is performed 7504 - BUG/MINOR: server: missing default server 'resolvers' setting duplication. 7505 - MINOR: server: Extract the code responsible of copying default-server settings. 7506 - MINOR: server: Extract the code which finalizes server initializations after 'server' lines parsing. 7507 - MINOR: server: Add 'server-template' new keyword supported in backend sections. 7508 - MINOR: server: Add server_template_init() function to initialize servers from a templates. 7509 - DOC: Add documentation for new "server-template" keyword. 7510 - DOC: add layer 4 links/cross reference to "block" keyword. 7511 - DOC: errloc/errorloc302/errorloc303 missing status codes. 7512 - BUG/MEDIUM: lua: memory leak 7513 - CLEANUP: lua: remove test 7514 - BUG/MINOR: hash-balance-factor isn't effective in certain circumstances 7515 - BUG/MINOR: change header-declared function to static inline 7516 - REORG: spoe: move spoe_encode_varint / spoe_decode_varint from spoe to common 7517 - MINOR: Add binary encoding request header sample fetch 7518 - MINOR: proto-http: Add sample fetch wich returns all HTTP headers 7519 - MINOR: Add ModSecurity wrapper as contrib 7520 - BUG/MINOR: ssl: fix warnings about methods for opensslv1.1. 7521 - DOC: update RFC references 7522 - CONTRIB: tcploop: add action "X" to execute a command 7523 - MINOR: server: cli: Add server FQDNs to server-state file and stats socket. 7524 - BUG/MINOR: contrib/mod_security: fix build on FreeBSD 7525 - BUG/MINOR: checks: don't send proxy protocol with agent checks 7526 - MINOR: ssl: add prefer-client-ciphers 7527 - MEDIUM: ssl: revert ssl/tls version settings relative to default-server. 7528 - MEDIUM: ssl: ssl_methods implementation is reworked and factored for min/max tlsxx 7529 - MEDIUM: ssl: calculate the real min/max TLS version and find holes 7530 - MINOR: ssl: support TLSv1.3 for bind and server 7531 - MINOR: ssl: show methods supported by openssl 7532 - MEDIUM: ssl: add ssl-min-ver and ssl-max-ver parameters for bind and server 7533 - MEDIUM: ssl: ssl-min-ver and ssl-max-ver compatibility. 7534 - CLEANUP: retire obsoleted USE_GETSOCKNAME build option 7535 - BUG/MAJOR: dns: Broken kqueue events handling (BSD systems). 7536 - MINOR: sample: Add b64dec sample converter 7537 - BUG/MEDIUM: lua: segfault if a converter or a sample doesn't return anything 7538 - MINOR: cli: add ACCESS_LVL_MASK to store the access level 7539 - MINOR: cli: add 'expose-fd listeners' to pass listeners FDs 7540 - MEDIUM: proxy: zombify proxies only when the expose-fd socket is bound 7541 - MEDIUM: ssl: add basic support for OpenSSL crypto engine 7542 - MAJOR: ssl: add openssl async mode support 7543 - MEDIUM: ssl: handle multiple async engines 7544 - MINOR: boringssl: basic support for OCSP Stapling 7545 - MEDIUM: mworker: replace systemd mode by master worker mode 7546 - MEDIUM: mworker: handle reload and signals 7547 - MEDIUM: mworker: wait mode on reload failure 7548 - MEDIUM: mworker: try to guess the next stats socket to use with -x 7549 - MEDIUM: mworker: exit-on-failure option 7550 - MEDIUM: mworker: workers exit when the master leaves 7551 - DOC: add documentation for the master-worker mode 7552 - MEDIUM: systemd: Type=forking in unit file 7553 - MAJOR: systemd-wrapper: get rid of the wrapper 7554 - MINOR: log: Add logurilen tunable. 7555 - CLEANUP: server.c: missing prototype of srv_free_dns_resolution 7556 - MINOR: dns: smallest DNS fqdn size 7557 - MINOR: dns: functions to manage memory for a DNS resolution structure 7558 - MINOR: dns: parse_server() now uses srv_alloc_dns_resolution() 7559 - REORG: dns: dns_option structure, storage of hostname_dn 7560 - MINOR: dns: new snr_check_ip_callback function 7561 - MAJOR: dns: save a copy of the DNS response in struct resolution 7562 - MINOR: dns: implement a LRU cache for DNS resolutions 7563 - MINOR: dns: make 'ancount' field to match the number of saved records 7564 - MINOR: dns: introduce roundrobin into the internal cache (WIP) 7565 - MAJOR/REORG: dns: DNS resolution task and requester queues 7566 - BUILD: ssl: fix build with OPENSSL_NO_ENGINE 7567 - MINOR: Add Mod Defender integration as contrib 7568 - CLEANUP: str2mask return code comment: non-zero -> zero. 7569 - MINOR: tools: make debug_hexdump() use a const char for the string 7570 - MINOR: tools: make debug_hexdump() take a string prefix 7571 - CLEANUP: connection: remove unused CO_FL_WAIT_DATA 7572 75732017/04/03 : 1.8-dev1 7574 - BUG/MEDIUM: proxy: return "none" and "unknown" for unknown LB algos 7575 - BUG/MINOR: stats: make field_str() return an empty string on NULL 7576 - DOC: Spelling fixes 7577 - BUG/MEDIUM: http: Fix tunnel mode when the CONNECT method is used 7578 - BUG/MINOR: http: Keep the same behavior between 1.6 and 1.7 for tunneled txn 7579 - BUG/MINOR: filters: Protect args in macros HAS_DATA_FILTERS and IS_DATA_FILTER 7580 - BUG/MINOR: filters: Invert evaluation order of HTTP_XFER_BODY and XFER_DATA analyzers 7581 - BUG/MINOR: http: Call XFER_DATA analyzer when HTTP txn is switched in tunnel mode 7582 - BUG/MAJOR: stream: fix session abort on resource shortage 7583 - OPTIM: stream-int: don't disable polling anymore on DONT_READ 7584 - BUG/MINOR: cli: allow the backslash to be escaped on the CLI 7585 - BUG/MEDIUM: cli: fix "show stat resolvers" and "show tls-keys" 7586 - DOC: Fix map table's format 7587 - DOC: Added 51Degrees conv and fetch functions to documentation. 7588 - BUG/MINOR: http: don't send an extra CRLF after a Set-Cookie in a redirect 7589 - DOC: mention that req_tot is for both frontends and backends 7590 - BUG/MEDIUM: variables: some variable name can hide another ones 7591 - MINOR: lua: Allow argument for actions 7592 - BUILD: rearrange target files by build time 7593 - CLEANUP: hlua: just indent functions 7594 - MINOR: lua: give HAProxy variable access to the applets 7595 - BUG/MINOR: stats: fix be/sessions/max output in html stats 7596 - MINOR: proxy: Add fe_name/be_name fetchers next to existing fe_id/be_id 7597 - DOC: lua: Documentation about some entry missing 7598 - DOC: lua: Add documentation about variable manipulation from applet 7599 - MINOR: Do not forward the header "Expect: 100-continue" when the option http-buffer-request is set 7600 - DOC: Add undocumented argument of the trace filter 7601 - DOC: Fix some typo in SPOE documentation 7602 - MINOR: cli: Remove useless call to bi_putchk 7603 - BUG/MINOR: cli: be sure to always warn the cli applet when input buffer is full 7604 - MINOR: applet: Count number of (active) applets 7605 - MINOR: task: Rename run_queue and run_queue_cur counters 7606 - BUG/MEDIUM: stream: Save unprocessed events for a stream 7607 - BUG/MAJOR: Fix how the list of entities waiting for a buffer is handled 7608 - BUILD/MEDIUM: Fixing the build using LibreSSL 7609 - BUG/MEDIUM: lua: In some case, the return of sample-fetches is ignored (2) 7610 - SCRIPTS: git-show-backports: fix a harmless typo 7611 - SCRIPTS: git-show-backports: add -H to use the hash of the commit message 7612 - BUG/MINOR: stream-int: automatically release SI_FL_WAIT_DATA on SHUTW_NOW 7613 - CLEANUP: applet/lua: create a dedicated ->fcn entry in hlua_cli context 7614 - CLEANUP: applet/table: add an "action" entry in ->table context 7615 - CLEANUP: applet: remove the now unused appctx->private field 7616 - DOC: lua: documentation about time parser functions 7617 - DOC: lua: improve links 7618 - DOC: lua: section declared twice 7619 - MEDIUM: cli: 'show cli sockets' list the CLI sockets 7620 - BUG/MINOR: cli: "show cli sockets" wouldn't list all processes 7621 - BUG/MINOR: cli: "show cli sockets" would always report process 64 7622 - CLEANUP: lua: rename one of the lua appctx union 7623 - BUG/MINOR: lua/cli: bad error message 7624 - MEDIUM: lua: use memory pool for hlua struct in applets 7625 - MINOR: lua/signals: Remove Lua part from signals. 7626 - DOC: cli: show cli sockets 7627 - MINOR: cli: automatically enable a CLI I/O handler when there's no parser 7628 - CLEANUP: memory: remove the now unused cli_parse_show_pools() function 7629 - CLEANUP: applet: group all CLI contexts together 7630 - CLEANUP: stats: move a misplaced stats context initialization 7631 - MINOR: cli: add two general purpose pointers and integers in the CLI struct 7632 - MINOR: appctx/cli: remove the cli_socket entry from the appctx union 7633 - MINOR: appctx/cli: remove the env entry from the appctx union 7634 - MINOR: appctx/cli: remove the "be" entry from the appctx union 7635 - MINOR: appctx/cli: remove the "dns" entry from the appctx union 7636 - MINOR: appctx/cli: remove the "server_state" entry from the appctx union 7637 - MINOR: appctx/cli: remove the "tlskeys" entry from the appctx union 7638 - CONTRIB: tcploop: add limits.h to fix build issue with some compilers 7639 - MINOR/DOC: lua: just precise one thing 7640 - DOC: fix small typo in fe_id (backend instead of frontend) 7641 - BUG/MINOR: Fix the sending function in Lua's cosocket 7642 - BUG/MINOR: lua: memory leak executing tasks 7643 - BUG/MINOR: lua: bad return code 7644 - BUG/MINOR: lua: memleak when Lua/cli fails 7645 - MEDIUM: lua: remove Lua struct from session, and allocate it with memory pools 7646 - CLEANUP: haproxy: statify unexported functions 7647 - MINOR: haproxy: add a registration for build options 7648 - CLEANUP: wurfl: use the build options list to report it 7649 - CLEANUP: 51d: use the build options list to report it 7650 - CLEANUP: da: use the build options list to report it 7651 - CLEANUP: namespaces: use the build options list to report it 7652 - CLEANUP: tcp: use the build options list to report transparent modes 7653 - CLEANUP: lua: use the build options list to report it 7654 - CLEANUP: regex: use the build options list to report the regex type 7655 - CLEANUP: ssl: use the build options list to report the SSL details 7656 - CLEANUP: compression: use the build options list to report the algos 7657 - CLEANUP: auth: use the build options list to report its support 7658 - MINOR: haproxy: add a registration for post-check functions 7659 - CLEANUP: checks: make use of the post-init registration to start checks 7660 - CLEANUP: filters: use the function registration to initialize all proxies 7661 - CLEANUP: wurfl: make use of the late init registration 7662 - CLEANUP: 51d: make use of the late init registration 7663 - CLEANUP: da: make use of the late init registration code 7664 - MINOR: haproxy: add a registration for post-deinit functions 7665 - CLEANUP: wurfl: register the deinit function via the dedicated list 7666 - CLEANUP: 51d: register the deinitialization function 7667 - CLEANUP: da: register the deinitialization function 7668 - CLEANUP: wurfl: move global settings out of the global section 7669 - CLEANUP: 51d: move global settings out of the global section 7670 - CLEANUP: da: move global settings out of the global section 7671 - MINOR: cfgparse: add two new functions to check arguments count 7672 - MINOR: cfgparse: move parsing of "ca-base" and "crt-base" to ssl_sock 7673 - MEDIUM: cfgparse: move all tune.ssl.* keywords to ssl_sock 7674 - MEDIUM: cfgparse: move maxsslconn parsing to ssl_sock 7675 - MINOR: cfgparse: move parsing of ssl-default-{bind,server}-ciphers to ssl_sock 7676 - MEDIUM: cfgparse: move ssl-dh-param-file parsing to ssl_sock 7677 - MEDIUM: compression: move the zlib-specific stuff from global.h to compression.c 7678 - BUG/MEDIUM: ssl: properly reset the reused_sess during a forced handshake 7679 - BUG/MEDIUM: ssl: avoid double free when releasing bind_confs 7680 - BUG/MINOR: stats: fix be/sessions/current out in typed stats 7681 - MINOR: tcp-rules: check that the listener exists before updating its counters 7682 - MEDIUM: spoe: don't create a dummy listener for outgoing connections 7683 - MINOR: listener: move the transport layer pointer to the bind_conf 7684 - MEDIUM: move listener->frontend to bind_conf->frontend 7685 - MEDIUM: ssl: remote the proxy argument from most functions 7686 - MINOR: connection: add a new prepare_bind_conf() entry to xprt_ops 7687 - MEDIUM: ssl_sock: implement ssl_sock_prepare_bind_conf() 7688 - MINOR: connection: add a new destroy_bind_conf() entry to xprt_ops 7689 - MINOR: ssl_sock: implement ssl_sock_destroy_bind_conf() 7690 - MINOR: server: move the use_ssl field out of the ifdef USE_OPENSSL 7691 - MINOR: connection: add a minimal transport layer registration system 7692 - CLEANUP: connection: remove all direct references to raw_sock and ssl_sock 7693 - CLEANUP: connection: unexport raw_sock and ssl_sock 7694 - MINOR: connection: add new prepare_srv()/destroy_srv() entries to xprt_ops 7695 - MINOR: ssl_sock: implement and use prepare_srv()/destroy_srv() 7696 - CLEANUP: ssl: move tlskeys_finalize_config() to a post_check callback 7697 - CLEANUP: ssl: move most ssl-specific global settings to ssl_sock.c 7698 - BUG/MINOR: backend: nbsrv() should return 0 if backend is disabled 7699 - BUG/MEDIUM: ssl: for a handshake when server-side SNI changes 7700 - BUG/MINOR: systemd: potential zombie processes 7701 - DOC: Add timings events schemas 7702 - BUILD: lua: build failed on FreeBSD. 7703 - MINOR: samples: add xx-hash functions 7704 - MEDIUM: regex: pcre2 support 7705 - BUG/MINOR: option prefer-last-server must be ignored in some case 7706 - MINOR: stats: Support "select all" for backend actions 7707 - BUG/MINOR: sample-fetches/stick-tables: bad type for the sample fetches sc*_get_gpt0 7708 - BUG/MAJOR: channel: Fix the definition order of channel analyzers 7709 - BUG/MINOR: http: report real parser state in error captures 7710 - BUILD: scripts: automatically update the branch in version.h when releasing 7711 - MINOR: tools: add a generic hexdump function for debugging 7712 - BUG/MAJOR: http: fix risk of getting invalid reports of bad requests 7713 - MINOR: http: custom status reason. 7714 - MINOR: connection: add sample fetch "fc_rcvd_proxy" 7715 - BUG/MINOR: config: emit a warning if http-reuse is enabled with incompatible options 7716 - BUG/MINOR: tools: fix off-by-one in port size check 7717 - BUG/MEDIUM: server: consider AF_UNSPEC as a valid address family 7718 - MEDIUM: server: split the address and the port into two different fields 7719 - MINOR: tools: make str2sa_range() return the port in a separate argument 7720 - MINOR: server: take the destination port from the port field, not the addr 7721 - MEDIUM: server: disable protocol validations when the server doesn't resolve 7722 - BUG/MEDIUM: tools: do not force an unresolved address to AF_INET:0.0.0.0 7723 - BUG/MINOR: ssl: EVP_PKEY must be freed after X509_get_pubkey usage 7724 - BUG/MINOR: ssl: assert on SSL_set_shutdown with BoringSSL 7725 - MINOR: Use "500 Internal Server Error" for 500 error/status code message. 7726 - MINOR: proto_http.c 502 error txt typo. 7727 - DOC: add deprecation notice to "block" 7728 - MINOR: compression: fix -vv output without zlib/slz 7729 - BUG/MINOR: Reset errno variable before calling strtol(3) 7730 - MINOR: ssl: don't show prefer-server-ciphers output 7731 - OPTIM/MINOR: config: Optimize fullconn automatic computation loading configuration 7732 - BUG/MINOR: stream: Fix how backend-specific analyzers are set on a stream 7733 - MAJOR: ssl: bind configuration per certificat 7734 - MINOR: ssl: add curve suite for ECDHE negotiation 7735 - MINOR: checks: Add agent-addr config directive 7736 - MINOR: cli: Add possiblity to change agent config via CLI/socket 7737 - MINOR: doc: Add docs for agent-addr configuration variable 7738 - MINOR: doc: Add docs for agent-addr and agent-send CLI commands 7739 - BUILD: ssl: fix to build (again) with boringssl 7740 - BUILD: ssl: fix build on OpenSSL 1.0.0 7741 - BUILD: ssl: silence a warning reported for ERR_remove_state() 7742 - BUILD: ssl: eliminate warning with OpenSSL 1.1.0 regarding RAND_pseudo_bytes() 7743 - BUILD: ssl: kill a build warning introduced by BoringSSL compatibility 7744 - BUG/MEDIUM: tcp: don't poll for write when connect() succeeds 7745 - BUG/MINOR: unix: fix connect's polling in case no data are scheduled 7746 - MINOR: server: extend the flags to 32 bits 7747 - BUG/MINOR: lua: Map.end are not reliable because "end" is a reserved keyword 7748 - MINOR: dns: give ability to dns_init_resolvers() to close a socket when requested 7749 - BUG/MAJOR: dns: restart sockets after fork() 7750 - MINOR: chunks: implement a simple dynamic allocator for trash buffers 7751 - BUG/MEDIUM: http: prevent redirect from overwriting a buffer 7752 - BUG/MEDIUM: filters: Do not truncate HTTP response when body length is undefined 7753 - BUG/MEDIUM: http: Prevent replace-header from overwriting a buffer 7754 - BUG/MINOR: http: Return an error when a replace-header rule failed on the response 7755 - BUG/MINOR: sendmail: The return of vsnprintf is not cleanly tested 7756 - BUG/MAJOR: ssl: fix a regression in ssl_sock_shutw() 7757 - BUG/MAJOR: lua segmentation fault when the request is like 'GET ?arg=val HTTP/1.1' 7758 - BUG/MEDIUM: config: reject anything but "if" or "unless" after a use-backend rule 7759 - MINOR: http: don't close when redirect location doesn't start with "/" 7760 - MEDIUM: boringssl: support native multi-cert selection without bundling 7761 - BUG/MEDIUM: ssl: fix verify/ca-file per certificate 7762 - BUG/MEDIUM: ssl: switchctx should not return SSL_TLSEXT_ERR_ALERT_WARNING 7763 - MINOR: ssl: removes SSL_CTX_set_ssl_version call and cleanup CTX creation. 7764 - BUILD: ssl: fix build with -DOPENSSL_NO_DH 7765 - MEDIUM: ssl: add new sample-fetch which captures the cipherlist 7766 - MEDIUM: ssl: remove ssl-options from crt-list 7767 - BUG/MEDIUM: ssl: in bind line, ssl-options after 'crt' are ignored. 7768 - BUG/MINOR: ssl: fix cipherlist captures with sustainable SSL calls 7769 - MINOR: ssl: improved cipherlist captures 7770 - BUG/MINOR: spoe: Fix soft stop handler using a specific id for spoe filters 7771 - BUG/MINOR: spoe: Fix parsing of arguments in spoe-message section 7772 - MAJOR: spoe: Add support of pipelined and asynchronous exchanges with agents 7773 - MINOR: spoe: Add support for pipelining/async capabilities in the SPOA example 7774 - MINOR: spoe: Remove SPOE details from the appctx structure 7775 - MINOR: spoe: Add status code in error variable instead of hardcoded value 7776 - MINOR: spoe: Send a log message when an error occurred during event processing 7777 - MINOR: spoe: Check the scope of sample fetches used in SPOE messages 7778 - MEDIUM: spoe: Be sure to wakeup the good entity waiting for a buffer 7779 - MINOR: spoe: Use the min of all known max_frame_size to encode messages 7780 - MAJOR: spoe: Add support of payload fragmentation in NOTIFY frames 7781 - MINOR: spoe: Add support for fragmentation capability in the SPOA example 7782 - MAJOR: spoe: refactor the filter to clean up the code 7783 - MINOR: spoe: Handle NOTIFY frames cancellation using ABORT bit in ACK frames 7784 - REORG: spoe: Move struct and enum definitions in dedicated header file 7785 - REORG: spoe: Move low-level encoding/decoding functions in dedicated header file 7786 - MINOR: spoe: Improve implementation of the payload fragmentation 7787 - MINOR: spoe: Add support of negation for options in SPOE configuration file 7788 - MINOR: spoe: Add "pipelining" and "async" options in spoe-agent section 7789 - MINOR: spoe: Rely on alertif_too_many_arg during configuration parsing 7790 - MINOR: spoe: Add "send-frag-payload" option in spoe-agent section 7791 - MINOR: spoe: Add "max-frame-size" statement in spoe-agent section 7792 - DOC: spoe: Update SPOE documentation to reflect recent changes 7793 - MINOR: config: warn when some HTTP rules are used in a TCP proxy 7794 - BUG/MEDIUM: ssl: Clear OpenSSL error stack after trying to parse OCSP file 7795 - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup 7796 - BUG/MINOR: Fix "get map <map> <value>" CLI command 7797 - MINOR: Add nbsrv sample converter 7798 - CLEANUP: Replace repeated code to count usable servers with be_usable_srv() 7799 - MINOR: Add hostname sample fetch 7800 - CLEANUP: Remove comment that's no longer valid 7801 - MEDIUM: http_error_message: txn->status / http_get_status_idx. 7802 - MINOR: http-request tarpit deny_status. 7803 - CLEANUP: http: make http_server_error() not set the status anymore 7804 - MEDIUM: stats: Add JSON output option to show (info|stat) 7805 - MEDIUM: stats: Add show json schema 7806 - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer 7807 - MINOR: server: Add dynamic session cookies. 7808 - MINOR: cli: Let configure the dynamic cookies from the cli. 7809 - BUG/MINOR: checks: attempt clean shutw for SSL check 7810 - CONTRIB: tcploop: make it build on FreeBSD 7811 - CONTRIB: tcploop: fix time format to silence build warnings 7812 - CONTRIB: tcploop: report action 'K' (kill) in usage message 7813 - CONTRIB: tcploop: fix connect's address length 7814 - CONTRIB: tcploop: use the trash instead of NULL for recv() 7815 - BUG/MEDIUM: listener: do not try to rebind another process' socket 7816 - BUG/MEDIUM server: Fix crash when dynamic is defined, but not key is provided. 7817 - CLEANUP: config: Typo in comment. 7818 - BUG/MEDIUM: filters: Fix channels synchronization in flt_end_analyze 7819 - TESTS: add a test configuration to stress handshake combinations 7820 - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection 7821 - BUG/MEDIUM: connection: ensure to always report the end of handshakes 7822 - MEDIUM: connection: don't test for CO_FL_WAKE_DATA 7823 - CLEANUP: connection: completely remove CO_FL_WAKE_DATA 7824 - BUG: payload: fix payload not retrieving arbitrary lengths 7825 - BUILD: ssl: simplify SSL_CTX_set_ecdh_auto compatibility 7826 - BUILD: ssl: fix OPENSSL_NO_SSL_TRACE for boringssl and libressl 7827 - BUG/MAJOR: http: fix typo in http_apply_redirect_rule 7828 - MINOR: doc: 2.4. Examples should be 2.5. Examples 7829 - BUG/MEDIUM: stream: fix client-fin/server-fin handling 7830 - MINOR: fd: add a new flag HAP_POLL_F_RDHUP to struct poller 7831 - BUG/MINOR: raw_sock: always perfom the last recv if RDHUP is not available 7832 - OPTIM: poll: enable support for POLLRDHUP 7833 - MINOR: kqueue: exclusively rely on the kqueue returned status 7834 - MEDIUM: kqueue: take care of EV_EOF to improve polling status accuracy 7835 - MEDIUM: kqueue: only set FD_POLL_IN when there are pending data 7836 - DOC/MINOR: Fix typos in proxy protocol doc 7837 - DOC: Protocol doc: add checksum, TLV type ranges 7838 - DOC: Protocol doc: add SSL TLVs, rename CHECKSUM 7839 - DOC: Protocol doc: add noop TLV 7840 - MEDIUM: global: add a 'hard-stop-after' option to cap the soft-stop time 7841 - MINOR: dns: improve DNS response parsing to use as many available records as possible 7842 - BUG/MINOR: cfgparse: loop in tracked servers lists not detected by check_config_validity(). 7843 - MINOR: server: irrelevant error message with 'default-server' config file keyword. 7844 - MINOR: server: Make 'default-server' support 'backup' keyword. 7845 - MINOR: server: Make 'default-server' support 'check-send-proxy' keyword. 7846 - CLEANUP: server: code alignement. 7847 - MINOR: server: Make 'default-server' support 'non-stick' keyword. 7848 - MINOR: server: Make 'default-server' support 'send-proxy' and 'send-proxy-v2 keywords. 7849 - MINOR: server: Make 'default-server' support 'check-ssl' keyword. 7850 - MINOR: server: Make 'default-server' support 'force-sslv3' and 'force-tlsv1[0-2]' keywords. 7851 - CLEANUP: server: code alignement. 7852 - MINOR: server: Make 'default-server' support 'no-ssl*' and 'no-tlsv*' keywords. 7853 - MINOR: server: Make 'default-server' support 'ssl' keyword. 7854 - MINOR: server: Make 'default-server' support 'send-proxy-v2-ssl*' keywords. 7855 - CLEANUP: server: code alignement. 7856 - MINOR: server: Make 'default-server' support 'verify' keyword. 7857 - MINOR: server: Make 'default-server' support 'verifyhost' setting. 7858 - MINOR: server: Make 'default-server' support 'check' keyword. 7859 - MINOR: server: Make 'default-server' support 'track' setting. 7860 - MINOR: server: Make 'default-server' support 'ca-file', 'crl-file' and 'crt' settings. 7861 - MINOR: server: Make 'default-server' support 'redir' keyword. 7862 - MINOR: server: Make 'default-server' support 'observe' keyword. 7863 - MINOR: server: Make 'default-server' support 'cookie' keyword. 7864 - MINOR: server: Make 'default-server' support 'ciphers' keyword. 7865 - MINOR: server: Make 'default-server' support 'tcp-ut' keyword. 7866 - MINOR: server: Make 'default-server' support 'namespace' keyword. 7867 - MINOR: server: Make 'default-server' support 'source' keyword. 7868 - MINOR: server: Make 'default-server' support 'sni' keyword. 7869 - MINOR: server: Make 'default-server' support 'addr' keyword. 7870 - MINOR: server: Make 'default-server' support 'disabled' keyword. 7871 - MINOR: server: Add 'no-agent-check' server keyword. 7872 - DOC: server: Add docs for "server" and "default-server" new "no-*" and other settings. 7873 - MINOR: doc: fix use-server example (imap vs mail) 7874 - BUG/MEDIUM: tcp: don't require privileges to bind to device 7875 - BUILD: make the release script use shortlog for the final changelog 7876 - BUILD: scripts: fix typo in announce-release error message 7877 - CLEANUP: time: curr_sec_ms doesn't need to be exported 7878 - BUG/MEDIUM: server: Wrong server default CRT filenames initialization. 7879 - BUG/MEDIUM: peers: fix buffer overflow control in intdecode. 7880 - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers 7881 - BUG/MINOR: http: Fix conditions to clean up a txn and to handle the next request 7882 - CLEANUP: http: Remove channel_congested function 7883 - CLEANUP: buffers: Remove buffer_bounce_realign function 7884 - CLEANUP: buffers: Remove buffer_contig_area and buffer_work_area functions 7885 - MINOR: http: remove useless check on HTTP_MSGF_XFER_LEN for the request 7886 - MINOR: http: Add debug messages when HTTP body analyzers are called 7887 - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled 7888 - BUG/MINOR: filters: Don't force the stream's wakeup when we wait in flt_end_analyze 7889 - DOC: fix parenthesis and add missing "Example" tags 7890 - DOC: update the contributing file 7891 - DOC: log-format/tcplog/httplog update 7892 - MINOR: config parsing: add warning when log-format/tcplog/httplog is overriden in "defaults" sections 7893 78942016/11/25 : 1.8-dev0 7895 78962016/11/25 : 1.7.0 7897 - SCRIPTS: make publish-release also copy the new SPOE doc 7898 - BUILD: http: include types/sample.h in proto_http.h 7899 - BUILD: debug/flags: remove test for SF_COMP_READY 7900 - CONTRIB: debug/flags: add check for SF_ERR_CHK_PORT 7901 - MINOR: lua: add function which return true if the channel is full. 7902 - MINOR: lua: add ip addresses and network manipulation function 7903 - CONTRIB: tcploop: scriptable TCP I/O for debugging purposes 7904 - CONTRIB: tcploop: implement fork() 7905 - CONTRIB: tcploop: implement logging when called with -v 7906 - CONTRIB: tcploop: update the usage output 7907 - CONTRIB: tcploop: support sending plain strings 7908 - CONTRIB: tcploop: don't report failed send() or recv() 7909 - CONTRIB: tcploop: add basic loops via a jump instruction 7910 - BUG/MEDIUM: channel: bad unlikely macro 7911 - CLEANUP: lua: move comment 7912 - CLEANUP: lua: control executed twice 7913 - BUG/MEDIUM: ssl: Store certificate filename in a variable 7914 - BUG/MINOR: ssl: Print correct filename when error occurs reading OCSP 7915 - CLEANUP: ssl: Remove goto after return dead code 7916 - CLEANUP: ssl: Fix bind keywords name in comments 7917 - DOC: ssl: Use correct wording for ca-sign-pass 7918 - CLEANUP: lua: avoid directly calling getsockname/getpeername() 7919 - BUG/MINOR: stick-table: handle out-of-memory condition gracefully 7920 - MINOR: cli: add private pointer and release function 7921 - MEDIUM: lua: Add cli handler for Lua 7922 - BUG/MEDIUM: connection: check the control layer before stopping polling 7923 - DEBUG: connection: mark the closed FDs with a value that is easier to detect 7924 - BUG/MEDIUM: stick-table: fix regression caused by recent fix for out-of-memory 7925 - BUG/MINOR: cli: properly decrement ref count on tables during failed dumps 7926 - BUG/MEDIUM: lua: In some case, the return of sample-fetche is ignored 7927 - MINOR: filters: Add check_timeouts callback to handle timers expiration on streams 7928 - MINOR: spoe: Add 'timeout processing' option to limit time to process an event 7929 - MINOR: spoe: Remove useless 'timeout ack' option 7930 - MINOR: spoe: Add 'option continue-on-error' statement in spoe-agent section 7931 - MINOR: spoe: Add "maxconnrate" and "maxerrrate" statements 7932 - MINOR: spoe: Add "option set-on-error" statement 7933 - MINOR: stats: correct documentation of process ID for typed output 7934 - BUILD: contrib: fix ip6range build on Centos 7 7935 - BUILD: fix build on Solaris 10/11 7936 - BUG/MINOR: cli: fix pointer size when reporting data/transport layer name 7937 - BUG/MINOR: cli: dequeue from the proxy when changing a maxconn 7938 - BUG/MINOR: cli: wake up the CLI's task after a timeout update 7939 - MINOR: connection: add a few functions to report the data and xprt layers' names 7940 - MINOR: connection: add names for transport and data layers 7941 - REORG: cli: split dumpstats.c in src/cli.c and src/stats.c 7942 - REORG: cli: split dumpstats.h in stats.h and cli.h 7943 - REORG: cli: move ssl CLI functions to ssl_sock.c 7944 - REORG: cli: move map and acl code to map.c 7945 - REORG: cli: move show stat resolvers to dns.c 7946 - MINOR: cli: create new function cli_has_level() to validate permissions 7947 - MINOR: server: create new function cli_find_server() to find a server 7948 - MINOR: proxy: create new function cli_find_frontend() to find a frontend 7949 - REORG: cli: move 'set server' to server.c 7950 - REORG: cli: move 'show pools' to memory.c 7951 - REORG: cli: move 'show servers' to proxy.c 7952 - REORG: cli: move 'show sess' to stream.c 7953 - REORG: cli: move 'show backend' to proxy.c 7954 - REORG: cli: move get/set weight to server.c 7955 - REORG: cli: move "show stat" to stats.c 7956 - REORG: cli: move "show info" to stats.c 7957 - REORG: cli: move dump_text(), dump_text_line(), and dump_binary() to standard.c 7958 - REORG: cli: move table dump/clear/set to stick_table.c 7959 - REORG: cli: move "show errors" out of cli.c 7960 - REORG: cli: make "show env" also use the generic keyword registration 7961 - REORG: cli: move "set timeout" to its own handler 7962 - REORG: cli: move "clear counters" to stats.c 7963 - REORG: cli: move "set maxconn global" to its own handler 7964 - REORG: cli: move "set maxconn server" to server.c 7965 - REORG: cli: move "set maxconn frontend" to proxy.c 7966 - REORG: cli: move "shutdown sessions server" to stream.c 7967 - REORG: cli: move "shutdown session" to stream.c 7968 - REORG: cli: move "shutdown frontend" to proxy.c 7969 - REORG: cli: move "{enable|disable} frontend" to proxy.c 7970 - REORG: cli: move "{enable|disable} server" to server.c 7971 - REORG: cli: move "{enable|disable} health" to server.c 7972 - REORG: cli: move "{enable|disable} agent" to server.c 7973 - REORG: cli: move the "set rate-limit" functions to their own parser 7974 - CLEANUP: cli: rename STAT_CLI_* to CLI_ST_* 7975 - CLEANUP: cli: simplify the request parser a little bit 7976 - CLEANUP: cli: remove assignments to st0 and st2 in keyword parsers 7977 - BUILD: server: remove a build warning introduced by latest series 7978 - BUG/MINOR: log-format: uncatched memory allocation functions 7979 - CLEANUP: log-format: useless file and line in json converter 7980 - CLEANUP/MINOR: log-format: unexport functions parse_logformat_var_args() and parse_logformat_var() 7981 - CLEANUP: log-format: fix return code of the function parse_logformat_var() 7982 - CLEANUP: log-format: fix return code of function parse_logformat_var_args() 7983 - CLEANUP: log-format: remove unused arguments 7984 - MEDIUM: log-format: strict parsing and enable fail 7985 - MEDIUM: log-format/conf: take into account the parse_logformat_string() return code 7986 - BUILD: ssl: make the SSL layer build again with openssl 0.9.8 7987 - BUILD: vars: remove a build warning on vars.c 7988 - MINOR: lua: add utility function for check boolean argument 7989 - MINOR: lua: Add tokenize function. 7990 - BUG/MINOR: conf: calloc untested 7991 - MINOR: http/conf: store the use_backend configuration file and line for logs 7992 - MEDIUM: log-format: Use standard HAProxy log system to report errors 7993 - CLEANUP: sample: report "converter" instead of "conv method" in error messages 7994 - BUG: spoe: Fix parsing of SPOE actions in ACK frames 7995 - MINOR: cli: make "show stat" support a proxy name 7996 - MINOR: cli: make "show errors" support a proxy name 7997 - MINOR: cli: make "show errors" capable of dumping only request or response 7998 - BUG/MINOR: freq-ctr: make swrate_add() support larger values 7999 - CLEANUP: counters: move from 3 types to 2 types 8000 - CLEANUP: cfgparse: cascade the warnif_misplaced_* rules 8001 - REORG: tcp-rules: move tcp rules processing to their own file 8002 - REORG: stkctr: move all the stick counters processing to stick-tables.c 8003 - DOC: update the roadmap file with the latest changes 8004 80052016/11/09 : 1.7-dev6 8006 - DOC: fix the entry for hash-balance-factor config option 8007 - DOC: Fix typo in description of `-st` parameter in man page 8008 - CLEANUP: cfgparse: Very minor spelling correction 8009 - MINOR: examples: Update haproxy.spec URLs to haproxy.org 8010 - BUG/MEDIUM: peers: on shutdown, wake up the appctx, not the stream 8011 - BUG/MEDIUM: peers: fix use after free in peer_session_create() 8012 - MINOR: peers: make peer_session_forceshutdown() use the appctx and not the stream 8013 - MINOR: peers: remove the pointer to the stream 8014 - BUG/MEDIUM: systemd-wrapper: return correct exit codes 8015 - DOC: stats: provide state details for show servers state 8016 - MEDIUM: tools: make str2ip2() preserve existing ports 8017 - CLEANUP: tools: make ipcpy() preserve the original port 8018 - OPTIM: http: move all http character classs tables into a single one 8019 - OPTIM: http: improve parsing performance of long header lines 8020 - OPTIM: http: improve parsing performance of long URIs 8021 - OPTIM: http: optimize lookup of comma and quote in header values 8022 - BUG/MEDIUM: srv-state: properly restore the DRAIN state 8023 - BUG/MINOR: srv-state: allow to have both CMAINT and FDRAIN flags 8024 - MINOR: server: do not emit warnings/logs/alerts on server state changes at boot 8025 - BUG/MEDIUM: servers: properly propagate the maintenance states during startup 8026 - MEDIUM: wurfl: add Scientiamobile WURFL device detection module 8027 - DOC: move the device detection modules documentation to their own files 8028 - CLEANUP: wurfl: reduce exposure in the rest of the code 8029 - MEDIUM: ssl: Add support for OpenSSL 1.1.0 8030 - MINOR: stream: make option contstats usable again 8031 - MEDIUM: tools: make str2sa_range() return the FQDN even when not resolving 8032 - MINOR: init: move apply_server_state in haproxy.c before MODE_CHECK 8033 - MAJOR: server: postpone address resolution 8034 - MINOR: new srv_admin flag: SRV_ADMF_RMAINT 8035 - MINOR: server: indicate in the logs when RMAINT is cleared 8036 - MINOR: stats: indicate it when a server is down due to resolution 8037 - MINOR: server: make srv_set_admin_state() capable of telling why this happens 8038 - MINOR: dns: implement extra 'hold' timers. 8039 - MAJOR: dns: runtime resolution can change server admin state 8040 - MEDIUM: cli: leave the RMAINT state when setting an IP address on the CLI 8041 - MEDIUM: server: add a new init-addr server line setting 8042 - MEDIUM: server: make use of init-addr 8043 - MINOR: server: implement init-addr none 8044 - MEDIUM: server: make libc resolution failure non-fatal 8045 - MINOR: server: add support for explicit numeric address in init-addr 8046 - DOC: add some documentation for the "init-addr" server keyword 8047 - MINOR: init: add -dr to ignore server address resolution failures 8048 - MEDIUM: server: do not restrict anymore usage of IP address from the state file 8049 - BUG: vars: Fix 'set-var' converter because of a typo 8050 - CLEANUP: remove last references to 'ruleset' section 8051 - MEDIUM: filters: Add attch/detach and stream_set_backend callbacks 8052 - MINOR: filters: Update filters documentation accordingly to recent changes 8053 - MINOR: filters: Call stream_set_backend callbacks before updating backend stats 8054 - MINOR: filters: Remove backend filters attached to a stream only for HTTP streams 8055 - MINOR: flt_trace: Add hexdump option to dump forwarded data 8056 - MINOR: cfgparse: Add functions to backup and restore registered sections 8057 - MINOR: cfgparse: Parse scope lines and save the last one parsed 8058 - REORG: sample: move code to release a sample expression in sample.c 8059 - MINOR: vars: Allow '.' in variable names 8060 - MINOR: vars: Add vars_set_by_name_ifexist function 8061 - MEDIUM: vars: Add a per-process scope for variables 8062 - MINOR: vars: Add 'unset-var' action/converter 8063 - MAJOR: spoe: Add an experimental Stream Processing Offload Engine 8064 - MINOR: spoe: add random ip-reputation service as SPOA example 8065 - MINOR: spoe/checks: Add support for SPOP health checks 8066 - DOC: update ROADMAP file 8067 80682016/10/25 : 1.7-dev5 8069 - MINOR: cfgparse: few memory leaks fixes. 8070 - MEDIUM: log: Decompose %Tq in %Th %Ti %TR 8071 - CLEANUP: logs: remove unused log format field definitions 8072 - BUILD/MAJOR:updated 51d Trie implementation to incorperate latest update to 51Degrees.c 8073 - BUG/MAJOR: stream: properly mark the server address as unset on connect retry 8074 - CLEANUP: proto_http: Removing useless variable assignation 8075 - CLEANUP: dumpstats: Removing useless variables allocation 8076 - CLEANUP: dns: Removing usless variable & assignation 8077 - BUG/MINOR: payload: fix SSLv2 version parser 8078 - MINOR: cli: allow the semi-colon to be escaped on the CLI 8079 - MINOR: cli: change a server health check port through the stats socket 8080 - BUG/MINOR: Fix OSX compilation errors 8081 - MAJOR: check: find out which port to use for health check at run time 8082 - MINOR: server: introduction of 3 new server flags 8083 - MINOR: new update_server_addr_port() function to change both server's ADDR and service PORT 8084 - MINOR: cli: ability to change a server's port 8085 - CLEANUP/MINOR dns: comment do not follow up code update 8086 - MINOR: chunk: new strncat function 8087 - MINOR: dns: wrong DNS_MAX_UDP_MESSAGE value 8088 - MINOR: dns: new MAX values 8089 - MINOR: dns: new macro to compute DNS header size 8090 - MINOR: dns: new DNS structures to store received packets 8091 - MEDIUM: dns: new DNS response parser 8092 - MINOR: dns: query type change when last record is a CNAME 8093 - MINOR: dns: proper domain name validation when receiving DNS response 8094 - MINOR: dns: comments in types/dns.h about structures endianness 8095 - BUG/MINOR: displayed PCRE version is running release 8096 - MINOR: show Built with PCRE version 8097 - MINOR: show Running on zlib version 8098 - MEDIUM: make SO_REUSEPORT configurable 8099 - MINOR: enable IP_BIND_ADDRESS_NO_PORT on backend connections 8100 - BUG/MEDIUM: http/compression: Fix how chunked data are copied during the HTTP body parsing 8101 - BUG/MINOR: stats: report the correct conn_time in backend's html output 8102 - BUG/MEDIUM: dns: don't randomly crash on out-of-memory 8103 - MINOR: Add fe_req_rate sample fetch 8104 - MEDIUM: peers: Fix a peer stick-tables synchronization issue. 8105 - MEDIUM: cli: register CLI keywords with cli_register_kw() 8106 - BUILD: Make use of accept4() on OpenBSD. 8107 - MINOR: tcp: make set-src/set-src-port and set-dst/set-dst-port commutative 8108 - DOC: fix missed entry for "set-{src,dst}{,-port}" 8109 - BUG/MINOR: vars: use sess and not s->sess in action_store() 8110 - BUG/MINOR: vars: make smp_fetch_var() more robust against misuses 8111 - BUG/MINOR: vars: smp_fetch_var() doesn't depend on HTTP but on the session 8112 - MINOR: stats: output dcon 8113 - CLEANUP: tcp rules: mention everywhere that tcp-conn rules are L4 8114 - MINOR: counters: add new fields for denied_sess 8115 - MEDIUM: tcp: add registration and processing of TCP L5 rules 8116 - MINOR: stats: emit dses 8117 - DOC: document tcp-request session 8118 - MINOR: ssl: add debug traces 8119 - BUILD/CLEANUP: ssl: Check BIO_reset() return code 8120 - BUG/MINOR: ssl: Check malloc return code 8121 - BUG/MINOR: ssl: prevent multiple entries for the same certificate 8122 - BUG/MINOR: systemd: make the wrapper return a non-null status code on error 8123 - BUG/MINOR: systemd: always restore signals before execve() 8124 - BUG/MINOR: systemd: check return value of calloc() 8125 - MINOR: systemd: report it when execve() fails 8126 - BUG/MEDIUM: systemd: let the wrapper know that haproxy has completed or failed 8127 - MINOR: proxy: add 'served' field to proxy, equal to total of all servers' 8128 - MINOR: backend: add hash-balance-factor option for hash-type consistent 8129 - MINOR: server: compute a "cumulative weight" to allow chash balancing to hit its target 8130 - MEDIUM: server: Implement bounded-load hash algorithm 8131 - SCRIPTS: make git-show-backports also dump a "git show" command 8132 - MINOR: build: Allow linking to device-atlas library file 8133 - MINOR: stats: Escape equals sign on socket dump 8134 81352016/08/14 : 1.7-dev4 8136 - MINOR: add list_append_word function 8137 - MEDIUM: init: use list_append_word in haproxy.c 8138 - MEDIUM: init: allow directory as argument of -f 8139 - CLEANUP: config: detect double registration of a config section 8140 - MINOR: log: add the %Td log-format specifier 8141 - MEDIUM: filters: Move HTTP headers filtering in its own callback 8142 - MINOR: filters: Simplify calls to analyzers using 2 new macros 8143 - MEDIUM: filters: Add pre and post analyzer callbacks 8144 - DOC: filters: Update the filters documentation accordingly to recent changes 8145 - BUG/MEDIUM: init: don't use environment locale 8146 - SCRIPTS: teach git-show-backports how to report upstream commits 8147 - SCRIPTS: make git-show-backports capable of limiting its history 8148 - BUG/MAJOR: fix listening IP address storage for frontends 8149 - BUG/MINOR: fix listening IP address storage for frontends (cont) 8150 - DOC: Fix typo so fetch is properly parsed by Cyril's converter 8151 - BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes 8152 - BUG/MEDIUM: stick-tables: fix breakage in table converters 8153 - MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY 8154 - BUG/MEDIUM: dns: unbreak DNS resolver after header fix 8155 - BUILD: fix build on Solaris 11 8156 - BUG/MEDIUM: config: fix multiple declaration of section parsers 8157 - BUG/MEDIUM: stats: show servers state may show an servers from another backend 8158 - BUG/MEDIUM: fix risk of segfault with "show tls-keys" 8159 - MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets 8160 - DOC: update doc about tls-tickets-keys dump 8161 - MEDIUM: tcp: add 'set-src' to 'tcp-request connection' 8162 - MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src' 8163 - MEDIUM: tcp/http: add 'set-src-port' action 8164 - MEDIUM: tcp/http: new set-dst/set-dst-port actions 8165 - BUG/MEDIUM: sticktables: segfault in some configuration error cases 8166 - BUILD/MEDIUM: rebuild everything when an include file is changed 8167 - BUILD/MEDIUM: force a full rebuild if some build options change 8168 - BUG/MEDIUM: lua: converters doesn't work 8169 - BUG/MINOR: http: add-header: header name copied twice 8170 - BUG/MEDIUM: http: add-header: buffer overwritten 8171 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params() 8172 - MINOR: stream: export the function 'smp_create_src_stkctr' 8173 - BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list() 8174 - MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump 8175 - BUG/MINOR: http: url32+src should use the big endian version of url32 8176 - BUG/MINOR: http: url32+src should check cli_conn before using it 8177 - DOC: http: add documentation for url32 and url32+src 8178 - BUG/MINOR: fix http-response set-log-level parsing error 8179 - MINOR: systemd: Use variable for config and pidfile paths 8180 - MINOR: systemd: Perform sanity check on config before reload 8181 - MEDIUM: ssl: support SNI filters with multicerts 8182 - MINOR: ssl: crt-list parsing factor 8183 - BUILD: ssl: fix typo causing a build failure in the multicert patch 8184 - MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword 8185 - MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4" 8186 - BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits 8187 - BUG/MINOR: init: ensure that FD limit is raised to the max allowed 8188 - BUG/MEDIUM: external-checks: close all FDs right after the fork() 8189 - BUG/MAJOR: external-checks: use asynchronous signal delivery 8190 - BUG/MINOR: external-checks: do not unblock undesired signals 8191 - CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list 8192 - BUG/MEDIUM: filters: Fix data filtering when data are modified 8193 - BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding 8194 - BUG/MINOR: srv-state: fix incorrect output of state file 8195 - BUG/MINOR: ssl: close ssl key file on error 8196 - BUG/MINOR: http: fix misleading error message for response captures 8197 - BUG/BUILD: don't automatically run "make" on "make install" 8198 - DOC: add missing doc for http-request deny [deny_status <status>] 8199 - CLEANUP: dumpstats: u64 field is an unsigned type. 8200 - BUG/MEDIUM: http: unbreak uri/header/url_param hashing 8201 - BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes 8202 - MINOR: new function my_realloc2 = realloc + free upon failure 8203 - CLEANUP: fixed some usages of realloc leading to memory leak 8204 - Revert "BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()" 8205 - CLEANUP: connection: using internal struct to hold source and dest port. 8206 - DOC: spelling fixes 8207 - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params() 8208 - BUG/MEDIUM: dns: fix alignment issues in the DNS response parser 8209 - BUG/MINOR: Fix endiness issue in DNS header creation code 8210 - BUG/MEDIUM: lua: the function txn_done() from sample fetches can crash 8211 - BUG/MEDIUM: lua: the function txn_done() from action wrapper can crash 8212 - MEDIUM: http: implement http-response track-sc* directive 8213 - BUG/MINOR: peers: Fix peers data decoding issue 8214 - BUG/MINOR: peers: don't count track-sc multiple times on errors 8215 - MINOR: standard: add function "escape_string" 8216 - BUG/MEDIUM: log: use function "escape_string" instead of "escape_chunk" 8217 - MINOR: tcp: Return TCP statistics like RTT and RTT variance 8218 - DOC: lua: remove old functions 8219 - BUG/MEDIUM: lua: somme HTTP manipulation functions are called without valid requests 8220 - DOC: fix json converter example and error message 8221 - BUG/MEDIUM: stream-int: completely detach connection on connect error 8222 - DOC: minor typo fixes to improve HTML parsing by haproxy-dconv 8223 - BUILD: make proto_tcp.c compatible with musl library 8224 - BUG/MAJOR: compression: initialize avail_in/next_in even during flush 8225 - BUG/MEDIUM: samples: make smp_dup() always duplicate the sample 8226 - MINOR: sample: implement smp_is_safe() and smp_make_safe() 8227 - MINOR: sample: provide smp_is_rw() and smp_make_rw() 8228 - BUG/MAJOR: server: the "sni" directive could randomly cause trouble 8229 - BUG/MEDIUM: stick-tables: do not fail on string keys with no allocated size 8230 - BUG/MEDIUM: stick-table: properly convert binary samples to keys 8231 - MINOR: sample: use smp_make_rw() in upper/lower converters 8232 - MINOR: tcp: add dst_is_local and src_is_local 8233 - BUG/MINOR: peers: some updates are pushed twice after a resync. 8234 - BUILD: protocol: fix some build errors on OpenBSD 8235 - BUILD: log: iovec requires to include sys/uio.h on OpenBSD 8236 - BUILD: tcp: do not include netinet/ip.h for IP_TTL 8237 - BUILD: connection: fix build breakage on openbsd due to missing in_systm.h 8238 - BUILD: checks: remove the last strcat and eliminate a warning on OpenBSD 8239 - BUILD: tcp: define SOL_TCP when only IPPROTO_TCP exists 8240 - BUILD: compression: remove a warning when no compression lib is used 8241 - BUILD: poll: remove unused hap_fd_isset() which causes a warning with clang 8242 - MINOR: tcp: add further tcp info fetchers 8243 - BUG/MINOR: peers: empty chunks after a resync. 8244 - BUG/MAJOR: stick-counters: possible crash when using sc_trackers with wrong table 8245 - MINOR: standard.c: ipcmp() function to compare 2 IP addresses stored in 2 struct sockaddr_storage 8246 - MINOR: standard.c: ipcpy() function to copy an IP address from a struct sockaddr_storage into an other one 8247 - MAJOR: listen section: don't use first bind port anymore when no server ports are provided 8248 82492016/05/10 : 1.7-dev3 8250 - MINOR: sample: Moves ARGS underlying type from 32 to 64 bits. 8251 - BUG/MINOR: log: Don't use strftime() which can clobber timezone if chrooted 8252 - BUILD: namespaces: fix a potential build warning in namespaces.c 8253 - MINOR: da: Using ARG12 macro for the sample fetch and the convertor. 8254 - DOC: add encoding to json converter example 8255 - BUG/MINOR: conf: "listener id" expects integer, but its not checked 8256 - DOC: Clarify tunes.vars.xxx-max-size settings 8257 - CLEANUP: chunk: adding NULL check to chunk_dup allocation. 8258 - CLEANUP: connection: fix double negation on memcmp() 8259 - BUG/MEDIUM: peers: fix incorrect age in frequency counters 8260 - BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are present 8261 - BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY headers 8262 - BUG/MINOR: lua: can't load external libraries 8263 - BUG/MINOR: prevent the dump of uninitialized vars 8264 - CLEANUP: map: it seems that the map were planed to be chained 8265 - MINOR: lua: move class registration facilities 8266 - MINOR: lua: remove some useless checks 8267 - CLEANUP: lua: Remove two same functions 8268 - MINOR: lua: refactor the Lua object registration 8269 - MINOR: lua: precise message when a critical error is catched 8270 - MINOR: lua: post initialization 8271 - MINOR: lua: Add internal function which strip spaces 8272 - MINOR: lua: convert field to lua type 8273 - DOC: "addr" parameter applies to both health and agent checks 8274 - DOC: timeout client: pointers to timeout http-request 8275 - DOC: typo on stick-store response 8276 - DOC: stick-table: amend paragraph blaming the loss of table upon reload 8277 - DOC: typo: ACL subdir match 8278 - DOC: typo: maxconn paragraph is wrong due to a wrong buffer size 8279 - DOC: regsub: parser limitation about the inability to use closing square brackets 8280 - DOC: typo: req.uri is now replaced by capture.req.uri 8281 - DOC: name set-gpt0 mismatch with the expected keyword 8282 - MINOR: http: sample fetch which returns unique-id 8283 - MINOR: dumpstats: extract stats fields enum and names 8284 - MINOR: dumpstats: split stats_dump_info_to_buffer() in two parts 8285 - MINOR: dumpstats: split stats_dump_fe_stats() in two parts 8286 - MINOR: dumpstats: split stats_dump_li_stats() in two parts 8287 - MINOR: dumpstats: split stats_dump_sv_stats() in two parts 8288 - MINOR: dumpstats: split stats_dump_be_stats() in two parts 8289 - MINOR: lua: dump general info 8290 - MINOR: lua: add class proxy 8291 - MINOR: lua: add class server 8292 - MINOR: lua: add class listener 8293 - BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the connection state. 8294 - MEDIUM: proxy: use dynamic allocation for error dumps 8295 - CLEANUP: remove unneeded casts 8296 - CLEANUP: uniformize last argument of malloc/calloc 8297 - DOC: fix "needed" typo 8298 - BUG/MINOR: dumpstats: fix write to global chunk 8299 - BUG/MINOR: dns: inapropriate way out after a resolution timeout 8300 - BUG/MINOR: dns: trigger a DNS query type change on resolution timeout 8301 - CLEANUP: proto_http: few corrections for gcc warnings. 8302 - BUG/MINOR: DNS: resolution structure change 8303 - BUG/MINOR : allow to log cookie for tarpit and denied request 8304 - BUG/MEDIUM: ssl: rewind the BIO when reading certificates 8305 - OPTIM/MINOR: session: abort if possible before connecting to the backend 8306 - DOC: http: rename the unique-id sample and add the documentation 8307 - BUG/MEDIUM: trace.c: rdtsc() is defined in two files 8308 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (2nd try) 8309 - BUG/MINOR: server: risk of over reading the pref_net array. 8310 - BUG/MINOR: cfgparse: couple of small memory leaks. 8311 - BUG/MEDIUM: sample: initialize the pointer before parse_binary call. 8312 - DOC: fix discrepancy in the example for http-request redirect 8313 - MINOR: acl: Add predefined METH_DELETE, METH_PUT 8314 - CLEANUP: .gitignore cleanup 8315 - DOC: Clarify IPv4 address / mask notation rules 8316 - CLEANUP: fix inconsistency between fd->iocb, proto->accept and accept() 8317 - BUG/MEDIUM: fix maxaccept computation on per-process listeners 8318 - BUG/MINOR: listener: stop unbound listeners on startup 8319 - BUG/MINOR: fix maxaccept computation according to the frontend process range 8320 - TESTS: add blocksig.c to run tests with all signals blocked 8321 - MEDIUM: unblock signals on startup. 8322 - MINOR: filters: Print the list of existing filters during HA startup 8323 - MINOR: filters: Typo in an error message 8324 - MINOR: filters: Filters must define the callbacks struct during config parsing 8325 - DOC: filters: Add filters documentation 8326 - BUG/MEDIUM: channel: don't allow to overwrite the reserve until connected 8327 - BUG/MEDIUM: channel: incorrect polling condition may delay event delivery 8328 - BUG/MEDIUM: channel: fix miscalculation of available buffer space (3rd try) 8329 - BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP mode 8330 - MINOR: Add ability for agent-check to set server maxconn 8331 - CLEANUP: Use server_parse_maxconn_change_request for maxconn CLI updates 8332 - MINOR: filters: add opaque data 8333 - BUG/MEDIUM: lua: protects the upper boundary of the argument list for converters/fetches. 8334 - MINOR: lua: migrate the argument mask to 64 bits type. 8335 - BUG/MINOR: dumpstats: Fix the "Total bytes saved" counter in backends stats 8336 - BUG/MINOR: log: fix a typo that would cause %HP to log <BADREQ> 8337 - BUG/MEDIUM: http: fix incorrect reporting of server errors 8338 - MINOR: channel: add new function channel_congested() 8339 - BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from dead client 8340 - BUG/MAJOR: channel: fix miscalculation of available buffer space (4th try) 8341 - BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared 8342 - BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers 8343 - BUG/MEDIUM: stats: show servers state may show an empty or incomplete result 8344 - BUG/MEDIUM: stats: show backend may show an empty or incomplete result 8345 - MINOR: stats: fix typo in help messages 8346 - MINOR: stats: show stat resolvers missing in the help message 8347 - BUG/MINOR: dns: fix DNS header definition 8348 - BUG/MEDIUM: dns: fix alignment issue when building DNS queries 8349 - CLEANUP: don't ignore scripts in .gitignore 8350 - BUILD: add a few release and backport scripts in scripts/ 8351 83522016/03/14 : 1.7-dev2 8353 - DOC: lua: fix lua API 8354 - DOC: mailers: typo in 'hostname' description 8355 - DOC: compression: missing mention of libslz for compression algorithm 8356 - BUILD/MINOR: regex: missing header 8357 - BUG/MINOR: stream: bad return code 8358 - DOC: lua: fix somme errors and add implicit types 8359 - MINOR: lua: add set/get priv for applets 8360 - BUG/MINOR: http: fix several off-by-one errors in the url_param parser 8361 - BUG/MINOR: http: Be sure to process all the data received from a server 8362 - MINOR: filters/http: Use a wrapper function instead of stream_int_retnclose 8363 - BUG/MINOR: chunk: make chunk_dup() always check and set dst->size 8364 - DOC: ssl: fixed some formatting errors in crt tag 8365 - MINOR: chunks: ensure that chunk_strcpy() adds a trailing zero 8366 - MINOR: chunks: add chunk_strcat() and chunk_newstr() 8367 - MINOR: chunk: make chunk_initstr() take a const string 8368 - MEDIUM: tools: add csv_enc_append() to preserve the original chunk 8369 - MINOR: tools: make csv_enc_append() always start at the first byte of the chunk 8370 - MINOR: lru: new function to delete <nb> least recently used keys 8371 - DOC: add Ben Shillito as the maintainer of 51d 8372 - BUG/MINOR: 51d: Ensures a unique domain for each configuration 8373 - BUG/MINOR: 51d: Aligns Pattern cache implementation with HAProxy best practices. 8374 - BUG/MINOR: 51d: Releases workset back to pool. 8375 - BUG/MINOR: 51d: Aligned const pointers to changes in 51Degrees. 8376 - CLEANUP: 51d: Aligned if statements with HAProxy best practices and removed casts from malloc. 8377 - MINOR: rename master process name in -Ds (systemd mode) 8378 - DOC: fix a few spelling mistakes 8379 - DOC: fix "workaround" spelling 8380 - BUG/MINOR: examples: Fixing haproxy.spec to remove references to .cfg files 8381 - MINOR: fix the return type for dns_response_get_query_id() function 8382 - MINOR: server state: missing LF (\n) on error message printed when parsing server state file 8383 - BUG/MEDIUM: dns: no DNS resolution happens if no ports provided to the nameserver 8384 - BUG/MAJOR: servers state: server port is erased when dns resolution is enabled on a server 8385 - BUG/MEDIUM: servers state: server port is used uninitialized 8386 - BUG/MEDIUM: config: Adding validation to stick-table expire value. 8387 - BUG/MEDIUM: sample: http_date() doesn't provide the right day of the week 8388 - BUG/MEDIUM: channel: fix miscalculation of available buffer space. 8389 - MEDIUM: pools: add a new flag to avoid rounding pool size up 8390 - BUG/MEDIUM: buffers: do not round up buffer size during allocation 8391 - BUG/MINOR: stream: don't force retries if the server is DOWN 8392 - BUG/MINOR: counters: make the sc-inc-gpc0 and sc-set-gpt0 touch the table 8393 - MINOR: unix: don't mention free ports on EAGAIN 8394 - BUG/CLEANUP: CLI: report the proper field states in "show sess" 8395 - MINOR: stats: send content-length with the redirect to allow keep-alive 8396 - BUG: stream_interface: Reuse connection even if the output channel is empty 8397 - DOC: remove old tunnel mode assumptions 8398 - BUG/MAJOR: http-reuse: fix risk of orphaned connections 8399 - BUG/MEDIUM: http-reuse: do not share private connections across backends 8400 - BUG/MINOR: ssl: Be sure to use unique serial for regenerated certificates 8401 - BUG/MINOR: stats: fix missing comma in stats on agent drain 8402 - MAJOR: filters: Add filters support 8403 - MINOR: filters: Do not reset stream analyzers if the client is gone 8404 - REORG: filters: Prepare creation of the HTTP compression filter 8405 - MAJOR: filters/http: Rewrite the HTTP compression as a filter 8406 - MEDIUM: filters: Use macros to call filters callbacks to speed-up processing 8407 - MEDIUM: filters: remove http_start_chunk, http_last_chunk and http_chunk_end 8408 - MEDIUM: filters: Replace filter_http_headers callback by an analyzer 8409 - MEDIUM: filters/http: Move body parsing of HTTP messages in dedicated functions 8410 - MINOR: filters: Add stream_filters structure to hide filters info 8411 - MAJOR: filters: Require explicit registration to filter HTTP body and TCP data 8412 - MINOR: filters: Remove unused or useless stuff and do small optimizations 8413 - MEDIUM: filters: Optimize the HTTP compression for chunk encoded response 8414 - MINOR: filters/http: Slightly update the parsing of chunks 8415 - MINOR: filters/http: Forward remaining data when a channel has no "data" filters 8416 - MINOR: filters: Add an filter example 8417 - MINOR: filters: Extract proxy stuff from the struct filter 8418 - MINOR: map: Add regex matching replacement 8419 - BUG/MINOR: lua: unsafe initialization 8420 - DOC: lua: fix somme errors 8421 - MINOR: lua: file dedicated to unsafe functions 8422 - MINOR: lua: add "now" time function 8423 - MINOR: standard: add RFC HTTP date parser 8424 - MINOR: lua: Add date functions 8425 - MINOR: lua: move common function 8426 - MINOR: lua: merge function 8427 - MINOR: lua: Add concat class 8428 - MINOR: standard: add function "escape_chunk" 8429 - MEDIUM: log: add a new log format flag "E" 8430 - DOC: add server name at rate-limit sessions example 8431 - BUG/MEDIUM: ssl: fix off-by-one in ALPN list allocation 8432 - BUG/MEDIUM: ssl: fix off-by-one in NPN list allocation 8433 - DOC: LUA: fix some typos and syntax errors 8434 - MINOR: cli: add a new "show env" command 8435 - MEDIUM: config: allow to manipulate environment variables in the global section 8436 - MEDIUM: cfgparse: reject incorrect 'timeout retry' keyword spelling in resolvers 8437 - MINOR: mailers: increase default timeout to 10 seconds 8438 - MINOR: mailers: use <CRLF> for all line endings 8439 - BUG/MAJOR: lua: segfault using Concat object 8440 - DOC: lua: copyrights 8441 - MINOR: common: mask conversion 8442 - MEDIUM: dns: extract options 8443 - MEDIUM: dns: add a "resolve-net" option which allow to prefer an ip in a network 8444 - MINOR: mailers: make it possible to configure the connection timeout 8445 - BUG/MAJOR: lua: applets can't sleep. 8446 - BUG/MINOR: server: some prototypes are renamed 8447 - BUG/MINOR: lua: Useless copy 8448 - BUG/MEDIUM: stats: stats bind-process doesn't propagate the process mask correctly 8449 - BUG/MINOR: server: fix the format of the warning on address change 8450 - CLEANUP: server: add "const" to some message strings 8451 - MINOR: server: generalize the "updater" source 8452 - BUG/MEDIUM: chunks: always reject negative-length chunks 8453 - BUG/MINOR: systemd: ensure we don't miss signals 8454 - BUG/MINOR: systemd: report the correct signal in debug message output 8455 - BUG/MINOR: systemd: propagate the correct signal to haproxy 8456 - MINOR: systemd: ensure a reload doesn't mask a stop 8457 - BUG/MEDIUM: cfgparse: wrong argument offset after parsing server "sni" keyword 8458 - CLEANUP: stats: Avoid computation with uninitialized bits. 8459 - CLEANUP: pattern: Ignore unknown samples in pat_match_ip(). 8460 - CLEANUP: map: Avoid memory leak in out-of-memory condition. 8461 - BUG/MINOR: tcpcheck: fix incorrect list usage resulting in failure to load certain configs 8462 - BUG/MAJOR: samples: check smp->strm before using it 8463 - MINOR: sample: add a new helper to initialize the owner of a sample 8464 - MINOR: sample: always set a new sample's owner before evaluating it 8465 - BUG/MAJOR: vars: always retrieve the stream and session from the sample 8466 - CLEANUP: payload: remove useless and confusing nullity checks for channel buffer 8467 - BUG/MINOR: ssl: fix usage of the various sample fetch functions 8468 - MINOR: stats: create fields types suitable for all CSV output data 8469 - MINOR: stats: add all the "show info" fields in a table 8470 - MEDIUM: stats: fill all the show info elements prior to displaying them 8471 - MINOR: stats: add a function to emit fields into a chunk 8472 - MINOR: stats: add stats_dump_info_fields() to dump one field per line 8473 - MEDIUM: stats: make use of stats_dump_info_fields() for "show info" 8474 - MINOR: stats: add a declaration of all stats fields 8475 - MINOR: stats: don't hard-code the CSV fields list anymore 8476 - MINOR: stats: create stats fields storage and CSV dump function 8477 - MEDIUM: stats: convert stats_dump_fe_stats() to use stats_dump_fields_csv() 8478 - MEDIUM: stats: make stats_dump_fe_stats() use stats fields for HTML dump 8479 - MEDIUM: stats: convert stats_dump_li_stats() to use stats_dump_fields_csv() 8480 - MEDIUM: stats: make stats_dump_li_stats() use stats fields for HTML dump 8481 - MEDIUM: stats: convert stats_dump_be_stats() to use stats_dump_fields_csv() 8482 - MEDIUM: stats: make stats_dump_be_stats() use stats fields for HTML dump 8483 - MEDIUM: stats: convert stats_dump_sv_stats() to use stats_dump_fields_csv() 8484 - MEDIUM: stats: make stats_dump_sv_stats() use the stats field for HTML 8485 - MEDIUM: stats: move the server state coloring logic to the server dump function 8486 - MINOR: stats: do not use srv->admin & STATS_ADMF_MAINT in HTML dumps 8487 - MINOR: stats: do not check srv->state for SRV_ST_STOPPED in HTML dumps 8488 - MINOR: stats: make CSV report server check status only when enabled 8489 - MINOR: stats: only report backend's down time if it has servers 8490 - MINOR: stats: prepend '*' in front of the check status when in progress 8491 - MINOR: stats: make HTML stats dump rely on the table for the check status 8492 - MINOR: stats: add agent_status, agent_code, agent_duration to output 8493 - MINOR: stats: add check_desc and agent_desc to the output fields 8494 - MINOR: stats: add check and agent's health values in the output 8495 - MEDIUM: stats: make the HTML server state dump use the CSV states 8496 - MEDIUM: stats: only report observe errors when observe is set 8497 - MEDIUM: stats: expose the same flags for CLI and HTTP accesses 8498 - MEDIUM: stats: report server's address in the CSV output 8499 - MEDIUM: stats: report the cookie value in the server & backend CSV dumps 8500 - MEDIUM: stats: compute the color code only in the HTML form 8501 - MEDIUM: stats: report the listeners' address in the CSV output 8502 - MEDIUM: stats: make it possible to report the WAITING state for listeners 8503 - REORG: stats: dump the frontend's HTML stats via a generic function 8504 - REORG: stats: dump the socket stats via the generic function 8505 - REORG: stats: dump the server stats via the generic function 8506 - REORG: stats: dump the backend stats via the generic function 8507 - MEDIUM: stats: add a new "mode" column to report the proxy mode 8508 - MINOR: stats: report the load balancing algorithm in CSV output 8509 - MINOR: stats: add 3 fields to report the frontend-specific connection stats 8510 - MINOR: stats: report number of intercepted requests for frontend and backends 8511 - MINOR: stats: introduce stats_dump_one_line() to dump one stats line 8512 - CLEANUP: stats: make stats_dump_fields_html() not rely on proxy anymore 8513 - MINOR: stats: add ST_SHOWADMIN to pass the admin info in the regular flags 8514 - MINOR: stats: make stats_dump_fields_html() not use &trash by default 8515 - MINOR: stats: add functions to emit typed fields into a chunk 8516 - MEDIUM: stats: support "show info typed" on the CLI 8517 - MEDIUM: stats: implement a typed output format for stats 8518 - DOC: document the "show info typed" and "show stat typed" output formats 8519 - MINOR: cfgparse: warn when uid parameter is not a number 8520 - MINOR: cfgparse: warn when gid parameter is not a number 8521 - BUG/MINOR: standard: Avoid free of non-allocated pointer 8522 - BUG/MINOR: pattern: Avoid memory leak on out-of-memory condition 8523 - CLEANUP: http: fix a build warning introduced by a recent fix 8524 - BUG/MINOR: log: GMT offset not updated when entering/leaving DST 8525 85262015/12/20 : 1.7-dev1 8527 - DOC: specify that stats socket doc (section 9.2) is in management 8528 - BUILD: install only relevant and existing documentation 8529 - CLEANUP: don't ignore debian/ directory if present 8530 - BUG/MINOR: dns: parsing error of some DNS response 8531 - BUG/MEDIUM: namespaces: don't fail if no namespace is used 8532 - BUG/MAJOR: ssl: free the generated SSL_CTX if the LRU cache is disabled 8533 - MEDIUM: dns: Don't use the ANY query type 8534 - BUILD: ssl: fix build error introduced in commit 7969a3 with OpenSSL < 1.0.0 8535 - DOC: fix a typo for a "deviceatlas" keyword 8536 - FIX: small typo in an example using the "Referer" header 8537 - MINOR: cli: ability to set per-server maxconn 8538 - DEBUG/MINOR: memory: add a build option to disable memory pools sharing 8539 - DEBUG/MEDIUM: memory: optionally protect free data in pools 8540 - DEBUG/MEDIUM: memory: add optional control pool memory operations 8541 - MEDIUM: memory: add accounting for failed allocations 8542 - BUG/MEDIUM: config: count memory limits on 64 bits, not 32 8543 - BUG/MAJOR: dns: first DNS response packet not matching queried hostname may lead to a loop 8544 - BUG/MINOR: dns: unable to parse CNAMEs response 8545 - BUG/MINOR: examples/haproxy.init: missing brace in quiet_check() 8546 - DOC: deviceatlas: more example use cases. 8547 - MINOR: config: allow IPv6 bracketed literals 8548 - BUG/BUILD: replace haproxy-systemd-wrapper with $(EXTRA) in install-bin. 8549 - BUILD: add Haiku as supported target. 8550 - BUG/MAJOR: http: don't requeue an idle connection that is already queued 8551 - DOC: typo on capture.res.hdr and capture.req.hdr 8552 - BUG/MINOR: dns: check for duplicate nameserver id in a resolvers section was missing 8553 - CLEANUP: use direction names in place of numeric values 8554 - BUG/MEDIUM: lua: sample fetches based on response doesn't work 8555 - MINOR: check: add agent-send server parameter 8556 - BUG/MINOR: http rule: http capture 'id' rule points to a non existing id 8557 - BUG/MINOR: server: check return value of fgets() in apply_server_state() 8558 - BUG/MINOR: acl: don't use record layer in req_ssl_ver 8559 - BUILD: freebsd: double declaration 8560 - BUG/MEDIUM: lua: clean output buffer 8561 - BUILD: check for libressl to be able to build against it 8562 - DOC: lua-api/index.rst small example fixes, spelling correction. 8563 - DOC: lua: architecture and first steps 8564 - DOC: relation between timeout http-request and option http-buffer-request 8565 - BUILD: Make deviceatlas require PCRE 8566 - BUG: http: do not abort keep-alive connections on server timeout 8567 - BUG/MEDIUM: http: switch the request channel to no-delay once done. 8568 - BUG/MINOR: lua: don't force-sslv3 LUA's SSL socket 8569 - BUILD/MINOR: http: proto_http.h needs sample.h 8570 - BUG/MEDIUM: http: don't enable auto-close on the response side 8571 - BUG/MEDIUM: stream: fix half-closed timeout handling 8572 - CLEANUP: compression: don't allocate DEFAULT_MAXZLIBMEM without USE_ZLIB 8573 - BUG/MEDIUM: cli: changing compression rate-limiting must require admin level 8574 - BUG/MEDIUM: sample: urlp can't match an empty value 8575 - BUILD: dumpstats: silencing warning for printf format specifier / time_t 8576 - CLEANUP: proxy: calloc call inverted arguments 8577 - MINOR: da: silent logging by default and displaying DeviceAtlas support if built. 8578 - BUG/MEDIUM: da: stop DeviceAtlas processing in the convertor if there is no input. 8579 - DOC: Edited 51Degrees section of README/ 8580 - BUG/MEDIUM: checks: email-alert not working when declared in defaults 8581 - BUG/MINOR: checks: email-alert causes a segfault when an unknown mailers section is configured 8582 - BUG/MINOR: checks: typo in an email-alert error message 8583 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and last rule is a CONNECT with no port 8584 - BUG/MINOR: tcpcheck: conf parsing error when no port configured on server and first rule(s) is (are) COMMENT 8585 - BUG/MEDIUM: http: fix http-reuse when frontend and backend differ 8586 - DOC: prefer using http-request/response over reqXXX/rspXXX directives 8587 - CLEANUP: haproxy: using _GNU_SOURCE instead of __USE_GNU macro. 8588 - MINOR: ssl: Added cert_key_and_chain struct 8589 - MEDIUM: ssl: Added support for creating SSL_CTX with multiple certs 8590 - MINOR: ssl: Added multi cert support for crt-list config keyword 8591 - MEDIUM: ssl: Added multi cert support for loading crt directories 8592 - MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling 8593 - BUILD: ssl: set SSL_SOCK_NUM_KEYTYPES with openssl < 1.0.2 8594 - MINOR: config: make tune.recv_enough configurable 8595 - BUG/MEDIUM: config: properly adjust maxconn with nbproc when memmax is forced 8596 - DOC: ssl: Adding docs for Multi-Cert bundling 8597 - BUG/MEDIUM: peers: table entries learned from a remote are pushed to others after a random delay. 8598 - BUG/MEDIUM: peers: old stick table updates could be repushed. 8599 - MINOR: lua: service/applet can have access to the HTTP headers when a POST is received 8600 - REORG/MINOR: lua: convert boolean "int" to bitfield 8601 - BUG/MEDIUM: lua: Lua applets must not fetch samples using http_txn 8602 - BUG/MINOR: lua: Lua applets must not use http_txn 8603 - BUG/MEDIUM: lua: Forbid HTTP applets from being called from tcp rulesets 8604 - BUG/MAJOR: lua: Do not force the HTTP analysers in use-services 8605 - CLEANUP: lua: bad error messages 8606 - CONTRIB: initiate a debugging suite to make debugging easier 8607 86082015/10/13 : 1.7-dev0 8609 - exact copy of 1.6.0 8610 86112015/10/13 : 1.6.0 8612 - BUG/MINOR: Handle interactive mode in cli handler 8613 - DOC: global section missing parameters 8614 - DOC: backend section missing parameters 8615 - DOC: stats paramaters available in frontend 8616 - MINOR: lru: do not allocate useless memory in lru64_lookup 8617 - BUG/MINOR: http: Add OPTIONS in supported http methods (found by find_http_meth) 8618 - BUG/MINOR: ssl: fix management of the cache where forged certificates are stored 8619 - MINOR: ssl: Release Servers SSL context when HAProxy is shut down 8620 - MINOR: ssl: Read the file used to generate certificates in any order 8621 - MINOR: ssl: Add support for EC for the CA used to sign generated certificates 8622 - MINOR: ssl: Add callbacks to set DH/ECDH params for generated certificates 8623 - BUG/MEDIUM: logs: fix time zone offset format in RFC5424 8624 - BUILD: Fix the build on OSX (htonll/ntohll) 8625 - BUILD: enable build on Linux/s390x 8626 - BUG/MEDIUM: lua: direction test failed 8627 - MINOR: lua: fix a spelling error in some error messages 8628 - CLEANUP: cli: ensure we can never double-free error messages 8629 - BUG/MEDIUM: lua: force server-close mode on Lua services 8630 - MEDIUM: init: support more command line arguments after pid list 8631 - MEDIUM: init: support a list of files on the command line 8632 - MINOR: debug: enable memory poisonning to use byte 0 8633 - BUILD: ssl: fix build error introduced by recent commit 8634 - BUG/MINOR: config: make the stats socket pass the correct proxy to the parsers 8635 - MEDIUM: server: implement TCP_USER_TIMEOUT on the server 8636 - DOC: mention the "namespace" options for bind and server lines 8637 - DOC: add the "management" documentation 8638 - DOC: move the stats socket documentation from config to management 8639 - MINOR: examples: update haproxy.spec to mention new docs 8640 - DOC: mention management.txt in README 8641 - DOC: remove haproxy-{en,fr}.txt 8642 - BUILD: properly report when USE_ZLIB and USE_SLZ are used together 8643 - MINOR: init: report use of libslz instead of "no compression" 8644 - CLEANUP: examples: remove some obsolete and confusing files 8645 - CLEANUP: examples: remove obsolete configuration file samples 8646 - CLEANUP: examples: fix the example file content-sw-sample.cfg 8647 - CLEANUP: examples: update sample file option-http_proxy.cfg 8648 - CLEANUP: examples: update sample file ssl.cfg 8649 - CLEANUP: tests: move a test file from examples/ to tests/ 8650 - CLEANUP: examples: shut up warnings in transparent proxy example 8651 - CLEANUP: tests: removed completely obsolete test files 8652 - DOC: update ROADMAP to remove what was done in 1.6 8653 - BUG/MEDIUM: pattern: fixup use_after_free in the pat_ref_delete_by_id 8654 86552015/10/06 : 1.6-dev7 8656 - MINOR: cli: Dump all resolvers stats if no resolver section is given 8657 - BUG: config: external-check command validation is checking for incorrect arguments. 8658 - DOC: documentation format cleanups 8659 - DOC: lua: few typos. 8660 - BUG/MEDIUM: str2ip: make getaddrinfo() consider local address selection policy 8661 - BUG/MEDIUM: logs: segfault writing to log from Lua 8662 - DOC: fix lua use-service example 8663 - MINOR: payload: add support for tls session ticket ext 8664 - MINOR: lua: remove the run flag 8665 - MEDIUM: lua: change the timeout execution 8666 - MINOR: lua: rename the tune.lua.applet-timeout 8667 - DOC: lua: update Lua doc 8668 - DOC: lua: update doc according with the last Lua changes 8669 - MINOR: http/tcp: fill the avalaible actions 8670 - DOC: reorder misplaced res.ssl_hello_type in the doc 8671 - BUG/MINOR: tcp: make silent-drop always force a TCP reset 8672 - CLEANUP: tcp: silent-drop: only drain the connection when quick-ack is disabled 8673 - BUILD: tcp: use IPPROTO_IP when SOL_IP is not available 8674 - BUILD: server: fix build warnings introduced by load-server-state 8675 - BUG/MEDIUM: server: fix misuse of format string in load-server-state's warnings 8676 86772015/09/28 : 1.6-dev6 8678 - BUG/MAJOR: can't enable a server through the stat socket 8679 - MINOR: server: Macro definition for server-state 8680 - MINOR: cli: new stats socket command: show servers state 8681 - DOC: stats socket command: show servers state 8682 - MINOR: config: new global directive server-state-base 8683 - DOC: global directive server-state-base 8684 - MINOR: config: new global section directive: server-state-file 8685 - DOC: new global directive: server-state-file 8686 - MINOR: config: new backend directives: load-server-state-from-file and server-state-file-name 8687 - DOC: load-server-state-from-file 8688 - MINOR: init: server state loaded from file 8689 - MINOR: server: startup slowstart task when using seamless reload of HAProxy 8690 - MINOR: cli: new stats socket command: show backend 8691 - DOC: servers state seamless reload example 8692 - BUG: dns: can't connect UDP socket on FreeBSD 8693 - MINOR: cfgparse: New function cfg_unregister_sections() 8694 - MINOR: chunk: New function free_trash_buffers() 8695 - BUG/MEDIUM: main: Freeing a bunch of static pointers 8696 - MINOR: proto_http: Externalisation of previously internal functions 8697 - MINOR: global: Few new struct fields for da module 8698 - MAJOR: da: Update of the DeviceAtlas API module 8699 - DOC: DeviceAtlas new keywords 8700 - DOC: README: DeviceAtlas sample configuration updates 8701 - MEDIUM: log: replace sendto() with sendmsg() in __send_log() 8702 - MEDIUM: log: use a separate buffer for the header and for the message 8703 - MEDIUM: logs: remove the hostname, tag and pid part from the logheader 8704 - MEDIUM: logs: add support for RFC5424 header format per logger 8705 - MEDIUM: logs: add a new RFC5424 log-format for the structured-data 8706 - DOC: mention support for the RFC5424 syslog message format 8707 - MEDIUM: logs: have global.log_send_hostname not contain the trailing space 8708 - MEDIUM: logs: pass the trailing "\n" as an iovec 8709 - BUG/MEDIUM: peers: some table updates are randomly not pushed. 8710 - BUG/MEDIUM: peers: same table updates re-pushed after a re-connect 8711 - BUG/MINOR: fct peer_prepare_ackmsg should not use trash. 8712 - MINOR: http: made CHECK_HTTP_MESSAGE_FIRST accessible to other functions 8713 - MINOR: global: Added new fields for 51Degrees device detection 8714 - DOC: Added more explanation for 51Degrees V3.2 8715 - BUILD: Changed 51Degrees option to support V3.2 8716 - MAJOR: 51d: Upgraded to support 51Degrees V3.2 and new features 8717 - MINOR: 51d: Improved string handling for LRU cache 8718 - DOC: add references to rise/fall for the fastinter explanation 8719 - MINOR: support cpu-map feature through the compile option USE_CPU_AFFINITY on FreeBSD 8720 - BUG/MAJOR: lua: potential unexpected aborts() 8721 - BUG/MINOR: lua: breaks the log message if his size exceed one buffer 8722 - MINOR: action: add private configuration 8723 - MINOR: action: add reference to the original keywork matched for the called parser. 8724 - MINOR: lua: change actions registration 8725 - MEDIUM: proto_http: smp_prefetch_http initialize txn 8726 - MINOR: channel: rename function chn_sess to chn_strm 8727 - CLEANUP: lua: align defines 8728 - MINOR: http: export http_get_path() function 8729 - MINOR: http: export the get_reason() function 8730 - MINOR: http: export function http_msg_analyzer() 8731 - MINOR: http: split initialization 8732 - MINOR: lua: reset pointer after use 8733 - MINOR: lua: identify userdata objects 8734 - MEDIUM: lua: use the function lua_rawset in place of lua_settable 8735 - BUG/MAJOR: lua: segfault after the channel data is modified by some Lua action. 8736 - CLEANUP: lua: use calloc in place of malloc 8737 - BUG/MEDIUM: lua: longjmp function must be unregistered 8738 - BUG/MEDIUM: lua: forces a garbage collection 8739 - BUG/MEDIUM: lua: wakeup task on bad conditions 8740 - MINOR: standard: avoid DNS resolution from the function str2sa_range() 8741 - MINOR: lua: extend socket address to support non-IP families 8742 - MINOR: lua/applet: the cosocket applet should use appctx_wakeup in place of task_wakeup 8743 - BUG/MEDIUM: lua: socket destroy before reading pending data 8744 - MEDIUM: lua: change the GC policy 8745 - OPTIM/MEDIUM: lua: executes the garbage collector only when using cosocket 8746 - BUG/MEDIUM: lua: don't reset undesired flags in hlua_ctx_resume 8747 - MINOR: applet: add init function 8748 - MINOR: applet: add an execution timeout 8749 - MINOR: stream/applet: add use-service action 8750 - MINOR: lua: add AppletTCP class and service 8751 - MINOR: lua: add AppletHTTP class and service 8752 - DOC: lua: some documentation update 8753 - DOC: add the documentation about internal circular lists 8754 - DOC: add a CONTRIBUTING file 8755 - DOC: add a MAINTAINERS file 8756 - BUG/MAJOR: peers: fix a crash when stopping peers on unbound processes 8757 - DOC: update coding-style to reference checkpatch.pl 8758 - BUG/MEDIUM: stick-tables: fix double-decrement of tracked entries 8759 - BUG/MINOR: args: add name for ARGT_VAR 8760 - DOC: add more entries to MAINTAINERS 8761 - DOC: add more entries to MAINTAINERS 8762 - CLEANUP: stream-int: remove obsolete function si_applet_call() 8763 - BUG/MAJOR: cli: do not dereference strm_li()->proto->name 8764 - BUG/MEDIUM: http: do not dereference strm_li(stream) 8765 - BUG/MEDIUM: proxy: do not dereference strm_li(stream) 8766 - BUG/MEDIUM: stream: do not dereference strm_li(stream) 8767 - MINOR: stream-int: use si_release_endpoint() to close idle conns 8768 - BUG/MEDIUM: payload: make req.payload and payload_lv aware of dynamic buffers 8769 - BUG/MEDIUM: acl: always accept match "found" 8770 - MINOR: applet: rename applet_runq to applet_active_queue 8771 - BUG/MAJOR: applet: use a separate run queue to maintain list integrity 8772 - MEDIUM: stream-int: split stream_int_update_conn() into si- and conn-specific parts 8773 - MINOR: stream-int: implement a new stream_int_update() function 8774 - MEDIUM: stream-int: factor out the stream update functions 8775 - MEDIUM: stream-int: call stream_int_update() from si_update() 8776 - MINOR: stream-int: export stream_int_update_* 8777 - MINOR: stream-int: move the applet_pause call out of the stream updates 8778 - MEDIUM: stream-int: clean up the conditions to enable reading in si_conn_wake_cb 8779 - MINOR: stream-int: implement the stream_int_notify() function 8780 - MEDIUM: stream-int: use the same stream notification function for applets and conns 8781 - MEDIUM: stream-int: completely remove stream_int_update_embedded() 8782 - MINOR: stream-int: rename si_applet_done() to si_applet_wake_cb() 8783 - BUG/MEDIUM: applet: fix reporting of broken write situation 8784 - BUG/MINOR: stats: do not call cli_release_handler 3 times 8785 - BUG/MEDIUM: cli: properly handle closed output 8786 - MINOR: cli: do not call the release handler on internal error. 8787 - BUG/MEDIUM: stream-int: avoid double-call to applet->release 8788 - DEBUG: add p_malloc() to return a poisonned memory area 8789 - CLEANUP: lua: remove unneeded memset(0) after calloc() 8790 - MINOR: lua: use the proper applet wakeup mechanism 8791 - BUG/MEDIUM: lua: better fix for the protocol check 8792 - BUG/MEDIUM: lua: properly set the target on the connection 8793 - MEDIUM: actions: pass a new "flags" argument to custom actions 8794 - MEDIUM: actions: add new flag ACT_FLAG_FINAL to notify about last call 8795 - MEDIUM: http: pass ACT_FLAG_FINAL to custom actions 8796 - MEDIUM: lua: only allow actions to yield if not in a final call 8797 - DOC: clarify how to make use of abstract sockets in socat 8798 - CLEANUP: config: make the errorloc/errorfile messages less confusing 8799 - MEDIUM: action: add a new flag ACT_FLAG_FIRST 8800 - BUG/MINOR: config: check that tune.bufsize is always positive 8801 - MEDIUM: config: set tune.maxrewrite to 1024 by default 8802 - DOC: add David Carlier as maintainer of da.c 8803 - DOC: fix some broken unexpected unicode chars in the Lua doc. 8804 - BUG/MEDIUM: proxy: ignore stopped peers 8805 - BUG/MEDIUM: proxy: do not wake stopped proxies' tasks during soft_stop() 8806 - MEDIUM: init: completely deallocate unused peers 8807 - BUG/MEDIUM: tcp: fix inverted condition to call custom actions 8808 - DOC: remove outdated actions lists on tcp-request/response 8809 - MEDIUM: tcp: add new tcp action "silent-drop" 8810 - DOC: add URLs to optional libraries in the README 8811 88122015/09/14 : 1.6-dev5 8813 - MINOR: dns: dns_resolution structure update: time_t to unsigned int 8814 - BUG/MEDIUM: dns: DNS resolution doesn't start 8815 - BUG/MAJOR: dns: dns client resolution infinite loop 8816 - MINOR: dns: coding style update 8817 - MINOR: dns: new bitmasks to use against DNS flags 8818 - MINOR: dns: dns_nameserver structure update: new counter for truncated response 8819 - MINOR: dns: New DNS response analysis code: DNS_RESP_TRUNCATED 8820 - MEDIUM: dns: handling of truncated response 8821 - MINOR: DNS client query type failover management 8822 - MINOR: dns: no expected DNS record type found 8823 - MINOR: dns: new flag to report that no IP can be found in a DNS response packet 8824 - BUG/MINOR: DNS request retry counter used for retry only 8825 - DOC: DNS documentation updated 8826 - MEDIUM: actions: remove ACTION_STOP 8827 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 (bis) 8828 - BUG/MINOR: lua: last log character truncated. 8829 - CLEANUP: typo: bad indent 8830 - CLEANUP: actions: missplaced includes 8831 - MINOR: build: missing header 8832 - CLEANUP: lua: Merge log functions 8833 - BUG/MAJOR: http: don't manipulate the server connection if it's killed 8834 - BUG/MINOR: http: remove stupid HTTP_METH_NONE entry 8835 - BUG/MAJOR: http: don't call http_send_name_header() after an error 8836 - MEDIUM: tools: make str2sa_range() optionally return the FQDN 8837 - BUG/MINOR: tools: make str2sa_range() report unresolvable addresses 8838 - BUG/MEDIUM: dns: use the correct server hostname when resolving 8839 88402015/08/30 : 1.6-dev4 8841 - MINOR: log: Add log-format variable %HQ, to log HTTP query strings 8842 - DOC: typo in 'redirect', 302 code meaning 8843 - DOC: typos in tcp-check expect examples 8844 - DOC: resolve-prefer default value and default-server update 8845 - MINOR: DNS counters: increment valid counter 8846 - BUG/MEDIUM: DNS resolution response parsing broken 8847 - MINOR: server: add new SRV_ADMF_CMAINT flag 8848 - MINOR: server SRV_ADMF_CMAINT flag doesn't imply SRV_ADMF_FMAINT 8849 - BUG/MEDIUM: dns: wrong first time DNS resolution 8850 - BUG/MEDIUM: lua: Lua tasks fail to start. 8851 - BUILD: add USE_LUA to BUILD_OPTIONS when it's used 8852 - DOC/MINOR: fix OpenBSD versions where haproxy works 8853 - MINOR: 51d: unable to start haproxy without "51degrees-data-file" 8854 - BUG/MEDIUM: peers: fix wrong message id on stick table updates acknowledgement. 8855 - BUG/MAJOR: peers: fix current table pointer not re-initialized on session release. 8856 - BUILD: ssl: Allow building against libssl without SSLv3. 8857 - DOC: clarify some points about SSL and the proxy protocol 8858 - DOC: mention support for RFC 5077 TLS Ticket extension in starter guide 8859 - BUG/MEDIUM: mailer: DATA part must be terminated with <CRLF>.<CRLF> 8860 - DOC: match several lua configuration option names to those implemented in code 8861 - MINOR cfgparse: Correct the mailer warning text to show the right names to the user 8862 - BUG/MINOR: ssl: TLS Ticket Key rotation broken via socket command 8863 - MINOR: stream: initialize the current_rule field to NULL on stream init 8864 - BUG/MEDIUM: lua: timeout error with converters, wrapper and actions. 8865 - CLEANUP: proto_http: remove useless initialisation 8866 - CLEANUP: http/tcp actions: remove the scope member 8867 - BUG/MINOR: proto_tcp: custom action continue is ignored 8868 - MINOR: proto_tcp: add session in the action prototype 8869 - MINOR: vars: reduce the code size of some wrappers 8870 - MINOR: Move http method enum from proto_http to sample 8871 - MINOR: sample: Add ipv6 to ipv4 and sint to ipv6 casts 8872 - MINOR: sample/proto_tcp: export "smp_fetch_src" 8873 - MEDIUM: cli: rely on the map's output type instead of the sample type 8874 - BUG/MEDIUM: stream: The stream doen't inherit SC from the session 8875 - BUG/MEDIUM: vars: segfault during the configuration parsing 8876 - BUG/MEDIUM: stick-tables: refcount error after copying SC for the session to the stream 8877 - BUG/MEDIUM: lua: bad error processing 8878 - MINOR: samples: rename a struct from sample_storage to sample_data 8879 - MINOR: samples: rename some struct member from "smp" to "data" 8880 - MEDIUM: samples: Use the "struct sample_data" in the "struct sample" 8881 - MINOR: samples: extract the anonymous union and create the union sample_value 8882 - MINOR: samples: rename union from "data" to "u" 8883 - MEDIUM: 51degrees: Adapt the 51Degrees library 8884 - MINOR: samples: data assignation simplification 8885 - MEDIUM: pattern/map: Maps can returns various types 8886 - MINOR: map: The map can return IPv4 and IPv6 8887 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) action structs 8888 - MINOR: actions: Remove the data opaque pointer 8889 - MINOR: lua: use the hlua_rule type in place of opaque type 8890 - MINOR: vars: use the vars types as argument in place of opaque type 8891 - MINOR: proto_http: use an "expr" type in place of generic opaque type. 8892 - MINOR: proto_http: replace generic opaque types by real used types for the actions on thr request line 8893 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" 8894 - MINOR: proto_http: replace generic opaque types by real used types in "http_capture" by id 8895 - MEDIUM: track-sc: Move the track-sc configuration storage in the union 8896 - MEDIUM: capture: Move the capture configuration storage in the union 8897 - MINOR: actions: add "from" information 8898 - MINOR: actions: remove the mark indicating the last entry in enum 8899 - MINOR: actions: Declare all the embedded actions in the same header file 8900 - MINOR: actions: change actions names 8901 - MEDIUM: actions: Add standard return code for the action API 8902 - MEDIUM: actions: Merge (http|tcp)-(request|reponse) keywords structs 8903 - MINOR: proto_tcp: proto_tcp.h is now useles 8904 - MINOR: actions: mutualise the action keyword lookup 8905 - MEDIUM: actions: Normalize the return code of the configuration parsers 8906 - MINOR: actions: Remove wrappers 8907 - MAJOR: stick-tables: use sample types in place of dedicated types 8908 - MEDIUM: stick-tables: use the sample type names 8909 - MAJOR: stick-tables: remove key storage from the key struct 8910 - MEDIUM: stick-tables: Add GPT0 in the stick tables 8911 - MINOR: stick-tables: Add GPT0 access 8912 - MINOR: stick-tables: Add GPC0 actions 8913 - BUG/MEDIUM: lua: the lua fucntion Channel:close() causes a segfault 8914 - DOC: ssl: missing LF 8915 - MINOR: lua: add core.done() function 8916 - DOC: fix function name 8917 - BUG/MINOR: lua: in some case a sample may remain undefined 8918 - DOC: fix "http_action_set_req_line()" comments 8919 - MINOR: http: Action for manipulating the returned status code. 8920 - MEDIUM: lua: turns txn:close into txn:done 8921 - BUG/MEDIUM: lua: cannot process more Lua hooks after a "done()" function call 8922 - BUILD: link with libdl if needed for Lua support 8923 - CLEANUP: backend: factor out objt_server() in connect_server() 8924 - MEDIUM: backend: don't call si_alloc_conn() when we reuse a valid connection 8925 - MEDIUM: stream-int: simplify si_alloc_conn() 8926 - MINOR: stream-int: add new function si_detach_endpoint() 8927 - MINOR: server: add a list of private idle connections 8928 - MINOR: connection: add a new list member in the connection struct 8929 - MEDIUM: stream-int: queue idle connections at the server 8930 - MINOR: stream-int: make si_idle_conn() only accept valid connections 8931 - MINOR: server: add a list of already used idle connections 8932 - MINOR: connection: add a new flag CO_FL_PRIVATE 8933 - MINOR: config: add new setting "http-reuse" 8934 - MAJOR: backend: initial work towards connection reuse 8935 - MAJOR: backend: improve the connection reuse mechanism 8936 - MEDIUM: backend: implement "http-reuse safe" 8937 - MINOR: server: add a list of safe, already reused idle connections 8938 - MEDIUM: backend: add the "http-reuse aggressive" strategy 8939 - DOC: document the new http-reuse directive 8940 - DOC: internals: document next steps for HTTP connection reuse 8941 - DOC: mention that %ms is left-padded with zeroes. 8942 - MINOR: init: indicate to check 'bind' lines when no listeners were found. 8943 - MAJOR: http: remove references to appsession 8944 - CLEANUP: config: remove appsession initialization 8945 - CLEANUP: appsession: remove appsession.c and sessionhash.c 8946 - CLEANUP: tests: remove sessionhash_test.c and test-cookie-appsess.cfg 8947 - CLEANUP: proxy: remove last references to appsession 8948 - CLEANUP: appsession: remove the last include files 8949 - DOC: remove documentation about appsession 8950 - CLEANUP: .gitignore: ignore more test files 8951 - CLEANUP: .gitignore: finally ignore everything but what is known. 8952 - MEDIUM: config: emit a warning on a frontend without listener 8953 - DOC: add doc/internals/entities-v2.txt 8954 - DOC: add doc/linux-syn-cookies.txt 8955 - DOC: add design thoughts on HTTP/2 8956 - DOC: add some thoughts on connection sharing for HTTP/2 8957 - DOC: add design thoughts on dynamic buffer allocation 8958 - BUG/MEDIUM: counters: ensure that src_{inc,clr}_gpc0 creates a missing entry 8959 - DOC: add new file intro.txt 8960 - MAJOR: tproxy: remove support for cttproxy 8961 - BUG/MEDIUM: lua: outgoing connection was broken since 1.6-dev2 8962 - DOC: lua: replace txn:close with txn:done in lua-api 8963 - DOC: intro: minor updates and fixes 8964 - DOC: intro: fix too long line. 8965 - DOC: fix example of http-request using ssl_fc_session_id 8966 - BUG/MEDIUM: lua: txn:done() still causes a segfault in TCP mode 8967 - CLEANUP: lua: fix some indent issues 8968 - BUG/MEDIUM: lua: fix a segfault in txn:done() if called twice 8969 - DOC: lua: mention than txn:close was renamed txn:done. 8970 89712015/07/22 : 1.6-dev3 8972 - CLEANUP: sample: generalize sample_fetch_string() as sample_fetch_as_type() 8973 - MEDIUM: http: Add new 'set-src' option to http-request 8974 - DOC usesrc root privileges requirments 8975 - BUG/MINOR: dns: wrong time unit for some DNS default parameters 8976 - MINOR: proxy: bit field for proxy_find_best_match diff status 8977 - MINOR: server: new server flag: SRV_F_FORCED_ID 8978 - MINOR: server: server_find functions: id, name, best_match 8979 - DOC: dns: fix chapters syntax 8980 - BUILD/MINOR: tools: rename popcount to my_popcountl 8981 - BUILD: add netbsd TARGET 8982 - MEDIUM: 51Degrees code refactoring and cleanup 8983 - MEDIUM: 51d: add LRU-based cache on User-Agent string detection 8984 - DOC: add notes about the "51degrees-cache-size" parameter 8985 - BUG/MEDIUM: 51d: possible incorrect operations on smp->data.str.str 8986 - BUG/MAJOR: connection: fix TLV offset calculation for proxy protocol v2 parsing 8987 - MINOR: Add sample fetch to detect Supported Elliptic Curves Extension 8988 - BUG/MINOR: payload: Add volatile flag to smp_fetch_req_ssl_ec_ext 8989 - BUG/MINOR: lua: type error in the arguments wrapper 8990 - CLEANUP: vars: remove unused struct 8991 - BUG/MINOR: http/sample: gmtime/localtime can fail 8992 - MINOR: standard: add 64 bits conversion functions 8993 - MAJOR: sample: converts uint and sint in 64 bits signed integer 8994 - MAJOR: arg: converts uint and sint in sint 8995 - MEDIUM: sample: switch to saturated arithmetic 8996 - MINOR: vars: returns variable content 8997 - MEDIUM: vars/sample: operators can use variables as parameter 8998 - BUG/MINOR: ssl: fix smp_fetch_ssl_fc_session_id 8999 - BUILD/MINOR: lua: fix a harmless build warning 9000 - BUILD/MINOR: stats: fix build warning due to condition always true 9001 - BUG/MAJOR: lru: fix unconditional call to free due to unexpected semi-colon 9002 - BUG/MEDIUM: logs: fix improper systematic use of quotes with a few tags 9003 - BUILD/MINOR: lua: ensure that hlua_ctx_destroy is properly defined 9004 - BUG/MEDIUM: lru: fix possible memory leak when ->free() is used 9005 - MINOR: vars: make the accounting not depend on the stream 9006 - MEDIUM: vars: move the session variables to the session, not the stream 9007 - BUG/MEDIUM: vars: do not freeze the connection when the expression cannot be fetched 9008 - BUG/MAJOR: buffers: make the buffer_slow_realign() function respect output data 9009 - BUG/MAJOR: tcp: tcp rulesets were still broken 9010 - MINOR: stats: improve compression stats reporting 9011 - MINOR: ssl: make self-generated certs also work with raw IPv6 addresses 9012 - CLEANUP: ssl: make ssl_sock_generated_cert_serial() take a const 9013 - CLEANUP: ssl: make ssl_sock_generate_certificate() use ssl_sock_generated_cert_serial() 9014 - BUG/MINOR: log: missing some ARGC_* entries in fmt_directives() 9015 - MINOR: args: add new context for servers 9016 - MINOR: stream: maintain consistence between channel_forward and HTTP forward 9017 - MINOR: ssl: provide ia function to set the SNI extension on a connection 9018 - MEDIUM: ssl: add sni support on the server lines 9019 - CLEANUP: stream: remove a useless call to si_detach() 9020 - CLEANUP: stream-int: fix a few outdated comments about stream_int_register_handler() 9021 - CLEANUP: stream-int: remove stream_int_unregister_handler() and si_detach() 9022 - MINOR: stream-int: only use si_release_endpoint() to release a connection 9023 - MINOR: standard: provide htonll() and ntohll() 9024 - CLEANUP/MINOR: dns: dns_str_to_dn_label() only needs a const char 9025 - BUG/MAJOR: dns: fix the length of the string to be copied 9026 90272015/06/17 : 1.6-dev2 9028 - BUG/MINOR: ssl: Display correct filename in error message 9029 - MEDIUM: logs: Add HTTP request-line log format directives 9030 - BUG/MEDIUM: check: tcpcheck regression introduced by e16c1b3f 9031 - BUG/MINOR: check: fix tcpcheck error message 9032 - MINOR: use an int instead of calling tcpcheck_get_step_id 9033 - MINOR: tcpcheck_rule structure update 9034 - MINOR: include comment in tcpcheck error log 9035 - DOC: tcpcheck comment documentation 9036 - MEDIUM: server: add support for changing a server's address 9037 - MEDIUM: server: change server ip address from stats socket 9038 - MEDIUM: protocol: add minimalist UDP protocol client 9039 - MEDIUM: dns: implement a DNS resolver 9040 - MAJOR: server: add DNS-based server name resolution 9041 - DOC: server name resolution + proto DNS 9042 - MINOR: dns: add DNS statistics 9043 - MEDIUM: http: configurable http result codes for http-request deny 9044 - BUILD: Compile clean when debug options defined 9045 - MINOR: lru: Add the possibility to free data when an item is removed 9046 - MINOR: lru: Add lru64_lookup function 9047 - MEDIUM: ssl: Add options to forge SSL certificates 9048 - MINOR: ssl: Export functions to manipulate generated certificates 9049 - MEDIUM: config: add DeviceAtlas global keywords 9050 - MEDIUM: global: add the DeviceAtlas required elements to struct global 9051 - MEDIUM: sample: add the da-csv converter 9052 - MEDIUM: init: DeviceAtlas initialization 9053 - BUILD: Makefile: add options to build with DeviceAtlas 9054 - DOC: README: explain how to build with DeviceAtlas 9055 - BUG/MEDIUM: http: fix the url_param fetch 9056 - BUG/MEDIUM: init: segfault if global._51d_property_names is not initialized 9057 - MAJOR: peers: peers protocol version 2.0 9058 - MINOR: peers: avoid re-scheduling of pending stick-table's updates still not pushed. 9059 - MEDIUM: peers: re-schedule stick-table's entry for sync when data is modified. 9060 - MEDIUM: peers: support of any stick-table data-types for sync 9061 - BUG/MAJOR: sample: regression on sample cast to stick table types. 9062 - CLEANUP: deinit: remove codes for cleaning p->block_rules 9063 - DOC: Fix L4TOUT typo in documentation 9064 - DOC: set-log-level in Logging section preamble 9065 - BUG/MEDIUM: compat: fix segfault on FreeBSD 9066 - MEDIUM: check: include server address and port in the send-state header 9067 - MEDIUM: backend: Allow redispatch on retry intervals 9068 - MINOR: Add TLS ticket keys reference and use it in the listener struct 9069 - MEDIUM: Add support for updating TLS ticket keys via socket 9070 - DOC: Document new socket commands "show tls-keys" and "set ssl tls-key" 9071 - MINOR: Add sample fetch which identifies if the SSL session has been resumed 9072 - DOC: Update doc about weight, act and bck fields in the statistics 9073 - BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten 9074 - MINOR: ssl: add a destructor to free allocated SSL ressources 9075 - MEDIUM: ssl: add the possibility to use a global DH parameters file 9076 - MEDIUM: ssl: replace standards DH groups with custom ones 9077 - MEDIUM: stats: Add enum srv_stats_state 9078 - MEDIUM: stats: Separate server state and colour in stats 9079 - MEDIUM: stats: Only report drain state in stats if server has SRV_ADMF_DRAIN set 9080 - MEDIUM: stats: Differentiate between DRAIN and DRAIN (agent) 9081 - MEDIUM: Lower priority of email alerts for log-health-checks messages 9082 - MEDIUM: Send email alerts when servers are marked as UP or enter the drain state 9083 - MEDIUM: Document when email-alerts are sent 9084 - BUG/MEDIUM: lua: bad argument number in analyser and in error message 9085 - MEDIUM: lua: automatically converts strings in proxy, tables, server and ip 9086 - BUG/MINOR: utf8: remove compilator warning 9087 - MEDIUM: map: uses HAProxy facilities to store default value 9088 - BUG/MINOR: lua: error in detection of mandatory arguments 9089 - BUG/MINOR: lua: set current proxy as default value if it is possible 9090 - BUG/MEDIUM: http: the action set-{method|path|query|uri} doesn't run. 9091 - BUG/MEDIUM: lua: undetected infinite loop 9092 - BUG/MAJOR: http: don't read past buffer's end in http_replace_value 9093 - BUG/MEDIUM: http: the function "(req|res)-replace-value" doesn't respect the HTTP syntax 9094 - MEDIUM/CLEANUP: http: rewrite and lighten http_transform_header() prototype 9095 - BUILD: lua: it miss the '-ldl' directive 9096 - MEDIUM: http: allows 'R' and 'S' in the protocol alphabet 9097 - MINOR: http: split the function http_action_set_req_line() in two parts 9098 - MINOR: http: split http_transform_header() function in two parts. 9099 - MINOR: http: export function inet_set_tos() 9100 - MINOR: lua: txn: add function set_(loglevel|tos|mark) 9101 - MINOR: lua: create and register HTTP class 9102 - DOC: lua: fix some typos 9103 - MINOR: lua: add log functions 9104 - BUG/MINOR: lua: Fix SSL initialisation 9105 - DOC: lua: some fixes 9106 - MINOR: lua: (req|res)_get_headers return more than one header value 9107 - MINOR: lua: map system integration in Lua 9108 - BUG/MEDIUM: http: functions set-{path,query,method,uri} breaks the HTTP parser 9109 - MINOR: sample: add url_dec converter 9110 - MEDIUM: sample: fill the struct sample with the session, proxy and stream pointers 9111 - MEDIUM: sample change the prototype of sample-fetches and converters functions 9112 - MINOR: sample: fill the struct sample with the options. 9113 - MEDIUM: sample: change the prototype of sample-fetches functions 9114 - MINOR: http: split the url_param in two parts 9115 - CLEANUP: http: bad indentation 9116 - MINOR: http: add body_param fetch 9117 - MEDIUM: http: url-encoded parsing function can run throught wrapped buffer 9118 - DOC: http: req.body_param documentation 9119 - MINOR: proxy: custom capture declaration 9120 - MINOR: capture: add two "capture" converters 9121 - MEDIUM: capture: Allow capture with slot identifier 9122 - MINOR: http: add array of generic pointers in http_res_rules 9123 - MEDIUM: capture: adds http-response capture 9124 - MINOR: common: escape CSV strings 9125 - MEDIUM: stats: escape some strings in the CSV dump 9126 - MINOR: tcp: add custom actions that can continue tcp-(request|response) processing 9127 - MINOR: lua: Lua tcp action are not final action 9128 - DOC: lua: schematics about lua socket organization 9129 - BUG/MINOR: debug: display (null) in place of "meth" 9130 - DOC: mention the "lua action" in documentation 9131 - MINOR: standard: add function that converts signed int to a string 9132 - BUG/MINOR: sample: wrong conversion of signed values 9133 - MEDIUM: sample: Add type any 9134 - MINOR: debug: add a special converter which display its input sample content. 9135 - MINOR: tcp: increase the opaque data array 9136 - MINOR: tcp/http/conf: extends the keyword registration options 9137 - MINOR: build: fix build dependency 9138 - MEDIUM: vars: adds support of variables 9139 - MINOR: vars: adds get and set functions 9140 - MINOR: lua: Variable access 9141 - MINOR: samples: add samples which returns constants 9142 - BUG/MINOR: vars/compil: fix some warnings 9143 - BUILD: add 51degrees options to makefile. 9144 - MINOR: global: add several 51Degrees members to global 9145 - MINOR: config: add 51Degrees config parsing. 9146 - MINOR: init: add 51Degrees initialisation code 9147 - MEDIUM: sample: add fiftyone_degrees converter. 9148 - MEDIUM: deinit: add cleanup for 51Degrees to deinit 9149 - MEDIUM: sample: add trie support to 51Degrees 9150 - DOC: add 51Degrees notes to configuration.txt. 9151 - DOC: add build indications for 51Degrees to README. 9152 - MEDIUM: cfgparse: introduce weak and strong quoting 9153 - BUG/MEDIUM: cfgparse: incorrect memmove in quotes management 9154 - MINOR: cfgparse: remove line size limitation 9155 - MEDIUM: cfgparse: expand environment variables 9156 - BUG/MINOR: cfgparse: fix typo in 'option httplog' error message 9157 - BUG/MEDIUM: cfgparse: segfault when userlist is misused 9158 - CLEANUP: cfgparse: remove reference to 'ruleset' section 9159 - MEDIUM: cfgparse: check section maximum number of arguments 9160 - MEDIUM: cfgparse: max arguments check in the global section 9161 - MEDIUM: cfgparse: check max arguments in the proxies sections 9162 - CLEANUP: stream-int: remove a redundant clearing of the linger_risk flag 9163 - MINOR: connection: make conn_sock_shutw() actually perform the shutdown() call 9164 - MINOR: stream-int: use conn_sock_shutw() to shutdown a connection 9165 - MINOR: connection: perform the call to xprt->shutw() in conn_data_shutw() 9166 - MEDIUM: stream-int: replace xprt->shutw calls with conn_data_shutw() 9167 - MINOR: checks: use conn_data_shutw_hard() instead of call via xprt 9168 - MINOR: connection: implement conn_sock_send() 9169 - MEDIUM: stream-int: make conn_si_send_proxy() use conn_sock_send() 9170 - MEDIUM: connection: make conn_drain() perform more controls 9171 - REORG: connection: move conn_drain() to connection.c and rename it 9172 - CLEANUP: stream-int: remove inclusion of fd.h that is not used anymore 9173 - MEDIUM: channel: don't always set CF_WAKE_WRITE on bi_put* 9174 - CLEANUP: lua: don't use si_ic/si_oc on known stream-ints 9175 - BUG/MEDIUM: peers: correctly configure the client timeout 9176 - MINOR: peers: centralize configuration of the peers frontend 9177 - MINOR: proxy: store the default target into the frontend's configuration 9178 - MEDIUM: stats: use frontend_accept() as the accept function 9179 - MEDIUM: peers: use frontend_accept() instead of peer_accept() 9180 - CLEANUP: listeners: remove unused timeout 9181 - MEDIUM: listener: store the default target per listener 9182 - BUILD: fix automatic inclusion of libdl. 9183 - MEDIUM: lua: implement a simple memory allocator 9184 - MEDIUM: compression: postpone buffer adjustments after compression 9185 - MEDIUM: compression: don't send leading zeroes with chunk size 9186 - BUG/MINOR: compression: consider the expansion factor in init 9187 - MINOR: http: check the algo name "identity" instead of the function pointer 9188 - CLEANUP: compression: statify all algo-specific functions 9189 - MEDIUM: compression: add a distinction between UA- and config- algorithms 9190 - MEDIUM: compression: add new "raw-deflate" compression algorithm 9191 - MEDIUM: compression: split deflate_flush() into flush and finish 9192 - CLEANUP: compression: remove unused reset functions 9193 - MAJOR: compression: integrate support for libslz 9194 - BUG/MEDIUM: http: hdr_cnt would not count any header when called without name 9195 - BUG/MAJOR: http: null-terminate the http actions keywords list 9196 - CLEANUP: lua: remove the unused hlua_sleep memory pool 9197 - BUG/MAJOR: lua: use correct object size when initializing a new converter 9198 - CLEANUP: lua: remove hard-coded sizeof() in object creations and mallocs 9199 - CLEANUP: lua: fix confusing local variable naming in hlua_txn_new() 9200 - CLEANUP: hlua: stop using variable name "s" alternately for hlua_txn and hlua_smp 9201 - CLEANUP: lua: get rid of the last "*ht" for struct hlua_txn. 9202 - CLEANUP: lua: rename last occurrences of "*s" to "*htxn" for hlua_txn 9203 - CLEANUP: lua: rename variable "sc" for struct hlua_smp 9204 - CLEANUP: lua: get rid of the last two "*hs" for hlua_smp 9205 - REORG/MAJOR: session: rename the "session" entity to "stream" 9206 - REORG/MEDIUM: stream: rename stream flags from SN_* to SF_* 9207 - MINOR: session: start to reintroduce struct session 9208 - MEDIUM: stream: allocate the session when a stream is created 9209 - MEDIUM: stream: move the listener's pointer to the session 9210 - MEDIUM: stream: move the frontend's pointer to the session 9211 - MINOR: session: add a pointer to the session's origin 9212 - MEDIUM: session: use the pointer to the origin instead of s->si[0].end 9213 - CLEANUP: sample: remove useless tests in fetch functions for l4 != NULL 9214 - MEDIUM: http: move header captures from http_txn to struct stream 9215 - MINOR: http: create a dedicated pool for http_txn 9216 - MAJOR: http: move http_txn out of struct stream 9217 - MAJOR: sample: don't pass l7 anymore to sample fetch functions 9218 - CLEANUP: lua: remove unused hlua_smp->l7 and hlua_txn->l7 9219 - MEDIUM: http: remove the now useless http_txn from {req/res} rules 9220 - CLEANUP: lua: don't pass http_txn anymore to hlua_request_act_wrapper() 9221 - MAJOR: sample: pass a pointer to the session to each sample fetch function 9222 - MINOR: stream: provide a few helpers to retrieve frontend, listener and origin 9223 - CLEANUP: stream: don't set ->target to the incoming connection anymore 9224 - MINOR: stream: move session initialization before the stream's 9225 - MINOR: session: store the session's accept date 9226 - MINOR: session: don't rely on s->logs.logwait in embryonic sessions 9227 - MINOR: session: implement session_free() and use it everywhere 9228 - MINOR: session: add stick counters to the struct session 9229 - REORG: stktable: move the stkctr_* functions from stream to sticktable 9230 - MEDIUM: streams: support looking up stkctr in the session 9231 - MEDIUM: session: update the session's stick counters upon session_free() 9232 - MEDIUM: proto_tcp: track the session's counters in the connection ruleset 9233 - MAJOR: tcp: make tcp_exec_req_rules() only rely on the session 9234 - MEDIUM: stream: don't call stream_store_counters() in kill_mini_session() nor session_accept() 9235 - MEDIUM: stream: move all the session-specific stuff of stream_accept() earlier 9236 - MAJOR: stream: don't initialize the stream anymore in stream_accept 9237 - MEDIUM: session: remove the task pointer from the session 9238 - REORG: session: move the session parts out of stream.c 9239 - MINOR: stream-int: make appctx_new() take the applet in argument 9240 - MEDIUM: peers: move the appctx initialization earlier 9241 - MINOR: session: introduce session_new() 9242 - MINOR: session: make use of session_new() when creating a new session 9243 - MINOR: peers: make use of session_new() when creating a new session 9244 - MEDIUM: peers: initialize the task before the stream 9245 - MINOR: session: set the CO_FL_CONNECTED flag on the connection once ready 9246 - CLEANUP: stream.c: do not re-attach the connection to the stream 9247 - MEDIUM: stream: isolate connection-specific initialization code 9248 - MEDIUM: stream: also accept appctx as origin in stream_accept_session() 9249 - MEDIUM: peers: make use of stream_accept_session() 9250 - MEDIUM: frontend: make ->accept only return +/-1 9251 - MEDIUM: stream: return the stream upon accept() 9252 - MEDIUM: frontend: move some stream initialisation to stream_new() 9253 - MEDIUM: frontend: move the fd-specific settings to session_accept_fd() 9254 - MEDIUM: frontend: don't restrict frontend_accept() to connections anymore 9255 - MEDIUM: frontend: move some remaining stream settings to stream_new() 9256 - CLEANUP: frontend: remove one useless local variable 9257 - MEDIUM: stream: don't rely on the session's listener anymore in stream_new() 9258 - MEDIUM: lua: make use of stream_new() to create an outgoing connection 9259 - MINOR: lua: minor cleanup in hlua_socket_new() 9260 - MINOR: lua: no need for setting timeouts / conn_retries in hlua_socket_new() 9261 - MINOR: peers: no need for setting timeouts / conn_retries in peer_session_create() 9262 - CLEANUP: stream-int: swap stream-int and appctx declarations 9263 - CLEANUP: namespaces: fix protection against multiple inclusions 9264 - MINOR: session: maintain the session count stats in the session, not the stream 9265 - MEDIUM: session: adjust the connection flags before stream_new() 9266 - MINOR: stream: pass the pointer to the origin explicitly to stream_new() 9267 - CLEANUP: poll: move the conditions for waiting out of the poll functions 9268 - BUG/MEDIUM: listener: don't report an error when resuming unbound listeners 9269 - BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only 9270 - BUG/MAJOR: tcp/http: fix current_rule assignment when restarting over a ruleset 9271 - BUG/MEDIUM: stream-int: always reset si->ops when si->end is nullified 9272 - DOC: update the entities diagrams 9273 - BUG/MEDIUM: http: properly retrieve the front connection 9274 - MINOR: applet: add a new "owner" pointer in the appctx 9275 - MEDIUM: applet: make the applet not depend on a stream interface anymore 9276 - REORG: applet: move the applet definitions out of stream_interface 9277 - CLEANUP: applet: rename struct si_applet to applet 9278 - REORG: stream-int: create si_applet_ops dedicated to applets 9279 - MEDIUM: applet: add basic support for an applet run queue 9280 - MEDIUM: applet: implement a run queue for active appctx 9281 - MEDIUM: stream-int: add a new function si_applet_done() 9282 - MAJOR: applet: now call si_applet_done() instead of si_update() in I/O handlers 9283 - MAJOR: stream: use a regular ->update for all stream interfaces 9284 - MEDIUM: dumpstats: don't unregister the applet anymore 9285 - MEDIUM: applet: centralize the call to si_applet_done() in the I/O handler 9286 - MAJOR: stream: do not allocate request buffers anymore when the left side is an applet 9287 - MINOR: stream-int: add two flags to indicate an applet's wishes regarding I/O 9288 - MEDIUM: applet: make the applets only use si_applet_{cant|want|stop}_{get|put} 9289 - MEDIUM: stream-int: pause the appctx if the task is woken up 9290 - BUG/MAJOR: tcp: only call registered actions when they're registered 9291 - BUG/MEDIUM: peers: fix applet scheduling 9292 - BUG/MEDIUM: peers: recent applet changes broke peers updates scheduling 9293 - MINOR: tools: provide an rdtsc() function for time comparisons 9294 - IMPORT: lru: import simple ebtree-based LRU functions 9295 - IMPORT: hash: import xxhash-r39 9296 - MEDIUM: pattern: add a revision to all pattern expressions 9297 - MAJOR: pattern: add LRU-based cache on pattern matching 9298 - BUG/MEDIUM: http: remove content-length from chunked messages 9299 - DOC: http: update the comments about the rules for determining transfer-length 9300 - BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to HTTP/1.1 9301 - BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad request 9302 - BUG/MEDIUM: http: remove content-length form responses with bad transfer-encoding 9303 - MEDIUM: http: restrict the HTTP version token to 1 digit as per RFC7230 9304 - MEDIUM: http: disable support for HTTP/0.9 by default 9305 - MEDIUM: http: add option-ignore-probes to get rid of the floods of 408 9306 - BUG/MINOR: config: clear proxy->table.peers.p for disabled proxies 9307 - MEDIUM: init: don't stop proxies in parent process when exiting 9308 - MINOR: stick-table: don't attach to peers in stopped state 9309 - MEDIUM: config: initialize stick-tables after peers, not before 9310 - MEDIUM: peers: add the ability to disable a peers section 9311 - MINOR: peers: store the pointer to the signal handler 9312 - MEDIUM: peers: unregister peers that were never started 9313 - MEDIUM: config: propagate the table's process list to the peers sections 9314 - MEDIUM: init: stop any peers section not bound to the correct process 9315 - MEDIUM: config: validate that peers sections are bound to exactly one process 9316 - MAJOR: peers: allow peers section to be used with nbproc > 1 9317 - DOC: relax the peers restriction to single-process 9318 - DOC: document option http-ignore-probes 9319 - DOC: fix the comments about the meaning of msg->sol in HTTP 9320 - BUG/MEDIUM: http: wait for the exact amount of body bytes in wait_for_request_body 9321 - BUG/MAJOR: http: prevent risk of reading past end with balance url_param 9322 - MEDIUM: stream: move HTTP request body analyser before process_common 9323 - MEDIUM: http: add a new option http-buffer-request 9324 - MEDIUM: http: provide 3 fetches for the body 9325 - DOC: update the doc on the proxy protocol 9326 - BUILD: pattern: fix build warnings introduced in the LRU cache 9327 - BUG/MEDIUM: stats: properly initialize the scope before dumping stats 9328 - CLEANUP: config: fix misleading information in error message. 9329 - MINOR: config: report the number of processes using a peers section in the error case 9330 - BUG/MEDIUM: config: properly compute the default number of processes for a proxy 9331 - MEDIUM: http: add new "capture" action for http-request 9332 - BUG/MEDIUM: http: fix the http-request capture parser 9333 - BUG/MEDIUM: http: don't forward client shutdown without NOLINGER except for tunnels 9334 - BUILD/MINOR: ssl: fix build failure introduced by recent patch 9335 - BUG/MAJOR: check: fix breakage of inverted tcp-check rules 9336 - CLEANUP: checks: fix double usage of cur / current_step in tcp-checks 9337 - BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end 9338 - CLEANUP: checks: simplify the loop processing of tcp-checks 9339 - BUG/MAJOR: checks: always check for end of list before proceeding 9340 - BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct 9341 - BUG/MAJOR: checks: break infinite loops when tcp-checks starts with comment 9342 - MEDIUM: http: make url_param iterate over multiple occurrences 9343 - BUG/MEDIUM: peers: apply a random reconnection timeout 9344 - MEDIUM: config: reject invalid config with name duplicates 9345 - MEDIUM: config: reject conflicts in table names 9346 - CLEANUP: proxy: make the proxy lookup functions more user-friendly 9347 - MINOR: proxy: simply ignore duplicates in proxy name lookups 9348 - MINOR: config: don't open-code proxy name lookups 9349 - MEDIUM: config: clarify the conflicting modes detection for backend rules 9350 - CLEANUP: proxy: remove now unused function findproxy_mode() 9351 - MEDIUM: stick-table: remove the now duplicate find_stktable() function 9352 - MAJOR: config: remove the deprecated reqsetbe / reqisetbe actions 9353 - MINOR: proxy: add a new function proxy_find_by_id() 9354 - MINOR: proxy: add a flag to memorize that the proxy's ID was forced 9355 - MEDIUM: proxy: add a new proxy_find_best_match() function 9356 - CLEANUP: http: explicitly reference request in http_apply_redirect_rules() 9357 - MINOR: http: prepare support for parsing redirect actions on responses 9358 - MEDIUM: http: implement http-response redirect rules 9359 - MEDIUM: http: no need to close the request on redirect if data was parsed 9360 - BUG/MEDIUM: http: fix body processing for the stats applet 9361 - BUG/MINOR: da: fix log-level comparison to emove annoying warning 9362 - CLEANUP: global: remove one ifdef USE_DEVICEATLAS 9363 - CLEANUP: da: move the converter registration to da.c 9364 - CLEANUP: da: register the config keywords in da.c 9365 - CLEANUP: adjust the envelope name in da.h to reflect the file name 9366 - CLEANUP: da: remove ifdef USE_DEVICEATLAS from da.c 9367 - BUILD: make 51D easier to build by defaulting to 51DEGREES_SRC 9368 - BUILD: fix build warning when not using 51degrees 9369 - BUILD: make DeviceAtlas easier to build by defaulting to DEVICEATLAS_SRC 9370 - BUILD: ssl: fix recent build breakage on older SSL libs 9371 93722015/03/11 : 1.6-dev1 9373 - CLEANUP: extract temporary $CFG to eliminate duplication 9374 - CLEANUP: extract temporary $BIN to eliminate duplication 9375 - CLEANUP: extract temporary $PIDFILE to eliminate duplication 9376 - CLEANUP: extract temporary $LOCKFILE to eliminate duplication 9377 - CLEANUP: extract quiet_check() to avoid duplication 9378 - BUG/MINOR: don't start haproxy on reload 9379 - DOC: Address issue where documentation is excluded due to a gitignore rule. 9380 - BUG/MEDIUM: systemd: set KillMode to 'mixed' 9381 - BUILD: fix "make install" to support spaces in the install dirs 9382 - BUG/MINOR: config: http-request replace-header arg typo 9383 - BUG: config: error in http-response replace-header number of arguments 9384 - DOC: missing track-sc* in http-request rules 9385 - BUILD: lua: missing ifdef related to SSL when enabling LUA 9386 - BUG/MEDIUM: regex: fix pcre_study error handling 9387 - MEDIUM: regex: Use pcre_study always when PCRE is used, regardless of JIT 9388 - BUG/MINOR: Fix search for -p argument in systemd wrapper. 9389 - MEDIUM: Improve signal handling in systemd wrapper. 9390 - DOC: fix typo in Unix Socket commands 9391 - BUG/MEDIUM: checks: external checks can't change server status to UP 9392 - BUG/MEDIUM: checks: segfault with external checks in a backend section 9393 - BUG/MINOR: checks: external checks shouldn't wait for timeout to return the result 9394 - BUG/MEDIUM: auth: fix segfault with http-auth and a configuration with an unknown encryption algorithm 9395 - BUG/MEDIUM: config: userlists should ensure that encrypted passwords are supported 9396 - BUG/MINOR: config: don't propagate process binding for dynamic use_backend 9397 - BUG/MINOR: log: fix request flags when keep-alive is enabled 9398 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks 9399 - MINOR: checks: allow external checks in backend sections 9400 - MEDIUM: checks: provide environment variables to the external checks 9401 - MINOR: checks: update dynamic environment variables in external checks 9402 - DOC: checks: environment variables used by "external-check command" 9403 - BUG/MEDIUM: backend: correctly detect the domain when use_domain_only is used 9404 - MINOR: ssl: load certificates in alphabetical order 9405 - BUG/MINOR: checks: prevent http keep-alive with http-check expect 9406 - MINOR: lua: typo in an error message 9407 - MINOR: report the Lua version in -vv 9408 - MINOR: lua: add a compilation error message when compiled with an incompatible version 9409 - BUG/MEDIUM: lua: segfault when calling haproxy sample fetches from lua 9410 - BUILD: try to automatically detect the Lua library name 9411 - BUILD/CLEANUP: systemd: avoid a warning due to mixed code and declaration 9412 - BUG/MEDIUM: backend: Update hash to use unsigned int throughout 9413 - BUG/MEDIUM: connection: fix memory corruption when building a proxy v2 header 9414 - MEDIUM: connection: add new bit in Proxy Protocol V2 9415 - BUG/MINOR: ssl: rejects OCSP response without nextupdate. 9416 - BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses. 9417 - BUG/MINOR: ssl: Fix OCSP resp update fails with the same certificate configured twice. 9418 - BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer. 9419 - MINOR: add fetchs 'ssl_c_der' and 'ssl_f_der' to return DER formatted certs 9420 - MINOR: ssl: add statement to force some ssl options in global. 9421 - BUG/MINOR: ssl: correctly initialize ssl ctx for invalid certificates 9422 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM. 9423 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string. 9424 - MINOR: samples: adds the bytes converter. 9425 - MINOR: samples: adds the field converter. 9426 - MINOR: samples: add the word converter. 9427 - BUG/MINOR: server: move the directive #endif to the end of file 9428 - BUG/MAJOR: buffer: check the space left is enough or not when input data in a buffer is wrapped 9429 - DOC: fix a few typos 9430 - CLEANUP: epoll: epoll_events should be allocated according to global.tune.maxpollevents 9431 - BUG/MINOR: http: fix typo: "401 Unauthorized" => "407 Unauthorized" 9432 - BUG/MINOR: parse: refer curproxy instead of proxy 9433 - BUG/MINOR: parse: check the validity of size string in a more strict way 9434 - BUILD: add new target 'make uninstall' to support uninstalling haproxy from OS 9435 - DOC: expand the docs for the provided stats. 9436 - BUG/MEDIUM: unix: do not unlink() abstract namespace sockets upon failure. 9437 - MEDIUM: ssl: Certificate Transparency support 9438 - MEDIUM: stats: proxied stats admin forms fix 9439 - MEDIUM: http: Compress HTTP responses with status codes 201,202,203 in addition to 200 9440 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing address information 9441 - MAJOR: namespace: add Linux network namespace support 9442 - MINOR: systemd: Check configuration before start 9443 - BUILD: ssl: handle boringssl in openssl version detection 9444 - BUILD: ssl: disable OCSP when using boringssl 9445 - BUILD: ssl: don't call get_rfc2409_prime when using boringssl 9446 - MINOR: ssl: don't use boringssl's cipher_list 9447 - BUILD: ssl: use OPENSSL_NO_OCSP to detect OCSP support 9448 - MINOR: stats: fix minor typo in HTML page 9449 - MINOR: Also accept SIGHUP/SIGTERM in systemd-wrapper 9450 - MEDIUM: Add support for configurable TLS ticket keys 9451 - DOC: Document the new tls-ticket-keys bind keyword 9452 - DOC: clearly state that the "show sess" output format is not fixed 9453 - MINOR: stats: fix minor typo fix in stats_dump_errors_to_buffer() 9454 - DOC: httplog does not support 'no' 9455 - BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange 9456 - MINOR: ssl: use SSL_get_ciphers() instead of directly accessing the cipher list. 9457 - BUG/MEDIUM: Consistently use 'check' in process_chk 9458 - MEDIUM: Add external check 9459 - BUG/MEDIUM: Do not set agent health to zero if server is disabled in config 9460 - MEDIUM/BUG: Only explicitly report "DOWN (agent)" if the agent health is zero 9461 - MEDIUM: Remove connect_chk 9462 - MEDIUM: Refactor init_check and move to checks.c 9463 - MEDIUM: Add free_check() helper 9464 - MEDIUM: Move proto and addr fields struct check 9465 - MEDIUM: Attach tcpcheck_rules to check 9466 - MEDIUM: Add parsing of mailers section 9467 - MEDIUM: Allow configuration of email alerts 9468 - MEDIUM: Support sending email alerts 9469 - DOC: Document email alerts 9470 - MINOR: Remove trailing '.' from email alert messages 9471 - MEDIUM: Allow suppression of email alerts by log level 9472 - BUG/MEDIUM: Do not consider an agent check as failed on L7 error 9473 - MINOR: deinit: fix memory leak 9474 - MINOR: http: export the function 'smp_fetch_base32' 9475 - BUG/MEDIUM: http: tarpit timeout is reset 9476 - MINOR: sample: add "json" converter 9477 - BUG/MEDIUM: pattern: don't load more than once a pattern list. 9478 - MINOR: map/acl/dumpstats: remove the "Done." message 9479 - BUG/MAJOR: ns: HAProxy segfault if the cli_conn is not from a network connection 9480 - BUG/MINOR: pattern: error message missing 9481 - BUG/MEDIUM: pattern: some entries are not deleted with case insensitive match 9482 - BUG/MINOR: ARG6 and ARG7 don't fit in a 32 bits word 9483 - MAJOR: poll: only rely on wake_expired_tasks() to compute the wait delay 9484 - MEDIUM: task: call session analyzers if the task is woken by a message. 9485 - MEDIUM: protocol: automatically pick the proto associated to the connection. 9486 - MEDIUM: channel: wake up any request analyzer on response activity 9487 - MINOR: converters: add a "void *private" argument to converters 9488 - MINOR: converters: give the session pointer as converter argument 9489 - MINOR: sample: add private argument to the struct sample_fetch 9490 - MINOR: global: export function and permits to not resolve DNS names 9491 - MINOR: sample: add function for browsing samples. 9492 - MINOR: global: export many symbols. 9493 - MINOR: includes: fix a lot of missing or useless includes 9494 - MEDIUM: tcp: add register keyword system. 9495 - MEDIUM: buffer: make bo_putblk/bo_putstr/bo_putchk return the number of bytes copied. 9496 - MEDIUM: http: change the code returned by the response processing rule functions 9497 - MEDIUM: http/tcp: permit to resume http and tcp custom actions 9498 - MINOR: channel: functions to get data from a buffer without copy 9499 - MEDIUM: lua: lua integration in the build and init system. 9500 - MINOR: lua: add ease functions 9501 - MINOR: lua: add runtime execution context 9502 - MEDIUM: lua: "com" signals 9503 - MINOR: lua: add the configuration directive "lua-load" 9504 - MINOR: lua: core: create "core" class and object 9505 - MINOR: lua: post initialisation bindings 9506 - MEDIUM: lua: add coroutine as tasks. 9507 - MINOR: lua: add sample and args type converters 9508 - MINOR: lua: txn: create class TXN associated with the transaction. 9509 - MINOR: lua: add shared context in the lua stack 9510 - MINOR: lua: txn: import existing sample-fetches in the class TXN 9511 - MINOR: lua: txn: add lua function in TXN that returns an array of http headers 9512 - MINOR: lua: register and execute sample-fetches in LUA 9513 - MINOR: lua: register and execute converters in LUA 9514 - MINOR: lua: add bindings for tcp and http actions 9515 - MINOR: lua: core: add sleep functions 9516 - MEDIUM: lua: socket: add "socket" class for TCP I/O 9517 - MINOR: lua: core: pattern and acl manipulation 9518 - MINOR: lua: channel: add "channel" class 9519 - MINOR: lua: txn: object "txn" provides two objects "channel" 9520 - MINOR: lua: core: can set the nice of the current task 9521 - MINOR: lua: core: can yield an execution stack 9522 - MINOR: lua: txn: add binding for closing the client connection. 9523 - MEDIUM: lua: Lua initialisation "on demand" 9524 - BUG/MAJOR: lua: send function fails and return bad bytes 9525 - MINOR: remove unused declaration. 9526 - MINOR: lua: remove some #define 9527 - MINOR: lua: use bitfield and macro in place of integer and enum 9528 - MINOR: lua: set skeleton for Lua execution expiration 9529 - MEDIUM: lua: each yielding function returns a wake up time. 9530 - MINOR: lua: adds "forced yield" flag 9531 - MEDIUM: lua: interrupt the Lua execution for running other process 9532 - MEDIUM: lua: change the sleep function core 9533 - BUG/MEDIUM: lua: the execution timeout is ignored in yield case 9534 - DOC: lua: Lua configuration documentation 9535 - MINOR: lua: add the struct session in the lua channel struct 9536 - BUG/MINOR: lua: set buffer if it is nnot avalaible. 9537 - BUG/MEDIUM: lua: reset flags before resuming execution 9538 - BUG/MEDIUM: lua: fix infinite loop about channel 9539 - BUG/MEDIUM: lua: the Lua process is not waked up after sending data on requests side 9540 - BUG/MEDIUM: lua: many errors when we try to send data with the channel API 9541 - MEDIUM: lua: use the Lua-5.3 version of the library 9542 - BUG/MAJOR: lua: some function are not yieldable, the forced yield causes errors 9543 - BUG/MEDIUM: lua: can't handle the response bytes 9544 - BUG/MEDIUM: lua: segfault with buffer_replace2 9545 - BUG/MINOR: lua: check buffers before initializing socket 9546 - BUG/MINOR: log: segfault if there are no proxy reference 9547 - BUG/MEDIUM: lua: sockets don't have buffer to write data 9548 - BUG/MEDIUM: lua: cannot connect socket 9549 - BUG/MINOR: lua: sockets receive behavior doesn't follows the specs 9550 - BUG/BUILD: lua: The strict Lua 5.3 version check is not done. 9551 - BUG/MEDIUM: buffer: one byte miss in buffer free space check 9552 - MEDIUM: lua: make the functions hlua_gethlua() and hlua_sethlua() faster 9553 - MINOR: replace the Core object by a simple model. 9554 - MEDIUM: lua: change the objects configuration 9555 - MEDIUM: lua: create a namespace for the fetches 9556 - MINOR: converters: add function to browse converters 9557 - MINOR: lua: wrapper for converters 9558 - MINOR: lua: replace function (req|get)_channel by a variable 9559 - MINOR: lua: fetches and converters can return an empty string in place of nil 9560 - DOC: lua api 9561 - BUG/MEDIUM: sample: fix random number upper-bound 9562 - BUG/MINOR: stats:Fix incorrect printf type. 9563 - BUG/MAJOR: session: revert all the crappy client-side timeout changes 9564 - BUG/MINOR: logs: properly initialize and count log sockets 9565 - BUG/MEDIUM: http: fetch "base" is not compatible with set-header 9566 - BUG/MINOR: counters: do not untrack counters before logging 9567 - BUG/MAJOR: sample: correctly reinitialize sample fetch context before calling sample_process() 9568 - MINOR: stick-table: make stktable_fetch_key() indicate why it failed 9569 - BUG/MEDIUM: counters: fix track-sc* to wait on unstable contents 9570 - BUILD: remove TODO from the spec file and add README 9571 - MINOR: log: make MAX_SYSLOG_LEN overridable at build time 9572 - MEDIUM: log: support a user-configurable max log line length 9573 - DOC: provide an example of how to use ssl_c_sha1 9574 - BUILD: checks: external checker needs signal.h 9575 - BUILD: checks: kill a minor warning on Solaris in external checks 9576 - BUILD: http: fix isdigit & isspace warnings on Solaris 9577 - BUG/MINOR: listener: set the listener's fd to -1 after deletion 9578 - BUG/MEDIUM: unix: failed abstract socket binding is retryable 9579 - MEDIUM: listener: implement a per-protocol pause() function 9580 - MEDIUM: listener: support rebinding during resume() 9581 - BUG/MEDIUM: unix: completely unbind abstract sockets during a pause() 9582 - DOC: explicitly mention the limits of abstract namespace sockets 9583 - DOC: minor fix on {sc,src}_kbytes_{in,out} 9584 - DOC: fix alphabetical sort of converters 9585 - MEDIUM: stick-table: implement lookup from a sample fetch 9586 - MEDIUM: stick-table: add new converters to fetch table data 9587 - MINOR: samples: add two converters for the date format 9588 - BUG/MAJOR: http: correctly rewind the request body after start of forwarding 9589 - DOC: remove references to CPU=native in the README 9590 - DOC: mention that "compression offload" is ignored in defaults section 9591 - DOC: mention that Squid correctly responds 400 to PPv2 header 9592 - BUILD: fix dependencies between config and compat.h 9593 - MINOR: session: export the function 'smp_fetch_sc_stkctr' 9594 - MEDIUM: stick-table: make it easier to register extra data types 9595 - BUG/MINOR: http: base32+src should use the big endian version of base32 9596 - MINOR: sample: allow IP address to cast to binary 9597 - MINOR: sample: add new converters to hash input 9598 - MINOR: sample: allow integers to cast to binary 9599 - BUILD: report commit ID in git versions as well 9600 - CLEANUP: session: move the stick counters declarations to stick_table.h 9601 - MEDIUM: http: add the track-sc* actions to http-request rules 9602 - BUG/MEDIUM: connection: fix proxy v2 header again! 9603 - BUG/MAJOR: tcp: fix a possible busy spinning loop in content track-sc* 9604 - OPTIM/MINOR: proxy: reduce struct proxy by 48 bytes on 64-bit archs 9605 - MINOR: log: add a new field "%lc" to implement a per-frontend log counter 9606 - BUG/MEDIUM: http: fix inverted condition in pat_match_meth() 9607 - BUG/MEDIUM: http: fix improper parsing of HTTP methods for use with ACLs 9608 - BUG/MINOR: pattern: remove useless allocation of unused trash in pat_parse_reg() 9609 - BUG/MEDIUM: acl: correctly compute the output type when a converter is used 9610 - CLEANUP: acl: cleanup some of the redundancy and spaghetti after last fix 9611 - BUG/CRITICAL: http: don't update msg->sov once data start to leave the buffer 9612 - MEDIUM: http: enable header manipulation for 101 responses 9613 - BUG/MEDIUM: config: propagate frontend to backend process binding again. 9614 - MEDIUM: config: properly propagate process binding between proxies 9615 - MEDIUM: config: make the frontends automatically bind to the listeners' processes 9616 - MEDIUM: config: compute the exact bind-process before listener's maxaccept 9617 - MEDIUM: config: only warn if stats are attached to multi-process bind directives 9618 - MEDIUM: config: report it when tcp-request rules are misplaced 9619 - DOC: indicate in the doc that track-sc* can wait if data are missing 9620 - MINOR: config: detect the case where a tcp-request content rule has no inspect-delay 9621 - MEDIUM: systemd-wrapper: support multiple executable versions and names 9622 - BUG/MEDIUM: remove debugging code from systemd-wrapper 9623 - BUG/MEDIUM: http: adjust close mode when switching to backend 9624 - BUG/MINOR: config: don't propagate process binding on fatal errors. 9625 - BUG/MEDIUM: check: rule-less tcp-check must detect connect failures 9626 - BUG/MINOR: tcp-check: report the correct failed step in the status 9627 - DOC: indicate that weight zero is reported as DRAIN 9628 - BUG/MEDIUM: config: avoid skipping disabled proxies 9629 - BUG/MINOR: config: do not accept more track-sc than configured 9630 - BUG/MEDIUM: backend: fix URI hash when a query string is present 9631 - BUG/MEDIUM: http: don't dump debug headers on MSG_ERROR 9632 - BUG/MAJOR: cli: explicitly call cli_release_handler() upon error 9633 - BUG/MEDIUM: tcp: fix outgoing polling based on proxy protocol 9634 - BUILD/MINOR: ssl: de-constify "ciphers" to avoid a warning on openssl-0.9.8 9635 - BUG/MEDIUM: tcp: don't use SO_ORIGINAL_DST on non-AF_INET sockets 9636 - BUG/BUILD: revert accidental change in the makefile from latest SSL fix 9637 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage 9638 - MEDIUM: ssl: add support for smaller SSL records 9639 - MINOR: session: release a few other pools when stopping 9640 - MINOR: task: release the task pool when stopping 9641 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends 9642 - BUG/MAJOR: frontend: initialize capture pointers earlier 9643 - BUG/MINOR: stats: correctly set the request/response analysers 9644 - MAJOR: polling: centralize calls to I/O callbacks 9645 - DOC: fix typo in the body parser documentation for msg.sov 9646 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size 9647 - MINOR: sample: add a few basic internal fetches (nbproc, proc, stopping) 9648 - DEBUG: pools: apply poisonning on every allocated pool 9649 - BUG/MAJOR: sessions: unlink session from list on out of memory 9650 - BUG/MEDIUM: patterns: previous fix was incomplete 9651 - BUG/MEDIUM: payload: ensure that a request channel is available 9652 - BUG/MINOR: tcp-check: don't condition data polling on check type 9653 - BUG/MEDIUM: tcp-check: don't rely on random memory contents 9654 - BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect 9655 - BUG/MINOR: config: fix typo in condition when propagating process binding 9656 - BUG/MEDIUM: config: do not propagate processes between stopped processes 9657 - BUG/MAJOR: stream-int: properly check the memory allocation return 9658 - BUG/MEDIUM: memory: fix freeing logic in pool_gc2() 9659 - BUG/MAJOR: namespaces: conn->target is not necessarily a server 9660 - BUG/MEDIUM: compression: correctly report zlib_mem 9661 - CLEANUP: lists: remove dead code 9662 - CLEANUP: memory: remove dead code 9663 - CLEANUP: memory: replace macros pool_alloc2/pool_free2 with functions 9664 - MINOR: memory: cut pool allocator in 3 layers 9665 - MEDIUM: memory: improve pool_refill_alloc() to pass a refill count 9666 - MINOR: stream-int: retrieve session pointer from stream-int 9667 - MINOR: buffer: reset a buffer in b_reset() and not channel_init() 9668 - MEDIUM: buffer: use b_alloc() to allocate and initialize a buffer 9669 - MINOR: buffer: move buffer initialization after channel initialization 9670 - MINOR: buffer: only use b_free to release buffers 9671 - MEDIUM: buffer: always assign a dummy empty buffer to channels 9672 - MEDIUM: buffer: add a new buf_wanted dummy buffer to report failed allocations 9673 - MEDIUM: channel: do not report full when buf_empty is present on a channel 9674 - MINOR: session: group buffer allocations together 9675 - MINOR: buffer: implement b_alloc_fast() 9676 - MEDIUM: buffer: implement b_alloc_margin() 9677 - MEDIUM: session: implement a basic atomic buffer allocator 9678 - MAJOR: session: implement a wait-queue for sessions who need a buffer 9679 - MAJOR: session: only allocate buffers when needed 9680 - MINOR: stats: report a "waiting" flags for sessions 9681 - MAJOR: session: only wake up as many sessions as available buffers permit 9682 - MINOR: config: implement global setting tune.buffers.reserve 9683 - MINOR: config: implement global setting tune.buffers.limit 9684 - MEDIUM: channel: implement a zero-copy buffer transfer 9685 - MEDIUM: stream-int: support splicing from applets 9686 - OPTIM: stream-int: try to send pending spliced data 9687 - CLEANUP: session: remove session_from_task() 9688 - DOC: add missing entry for log-format and clarify the text 9689 - MINOR: logs: add a new per-proxy "log-tag" directive 9690 - BUG/MEDIUM: http: fix header removal when previous header ends with pure LF 9691 - MINOR: config: extend the default max hostname length to 64 and beyond 9692 - BUG/MEDIUM: channel: fix possible integer overflow on reserved size computation 9693 - BUG/MINOR: channel: compare to_forward with buf->i, not buf->size 9694 - MINOR: channel: add channel_in_transit() 9695 - MEDIUM: channel: make buffer_reserved() use channel_in_transit() 9696 - MEDIUM: channel: make bi_avail() use channel_in_transit() 9697 - BUG/MEDIUM: channel: don't schedule data in transit for leaving until connected 9698 - CLEANUP: channel: rename channel_reserved -> channel_is_rewritable 9699 - MINOR: channel: rename channel_full() to !channel_may_recv() 9700 - MINOR: channel: rename buffer_reserved() to channel_reserved() 9701 - MINOR: channel: rename buffer_max_len() to channel_recv_limit() 9702 - MINOR: channel: rename bi_avail() to channel_recv_max() 9703 - MINOR: channel: rename bi_erase() to channel_truncate() 9704 - BUG/MAJOR: log: don't try to emit a log if no logger is set 9705 - MINOR: tools: add new round_2dig() function to round integers 9706 - MINOR: global: always export some SSL-specific metrics 9707 - MINOR: global: report information about the cost of SSL connections 9708 - MAJOR: init: automatically set maxconn and/or maxsslconn when possible 9709 - MINOR: http: add a new fetch "query" to extract the request's query string 9710 - MINOR: hash: add new function hash_crc32 9711 - MINOR: samples: provide a "crc32" converter 9712 - MEDIUM: backend: add the crc32 hash algorithm for load balancing 9713 - BUG/MINOR: args: add missing entry for ARGT_MAP in arg_type_names 9714 - BUG/MEDIUM: http: make http-request set-header compute the string before removal 9715 - MEDIUM: args: use #define to specify the number of bits used by arg types and counts 9716 - MEDIUM: args: increase arg type to 5 bits and limit arg count to 5 9717 - MINOR: args: add type-specific flags for each arg in a list 9718 - MINOR: args: implement a new arg type for regex : ARGT_REG 9719 - MEDIUM: regex: add support for passing regex flags to regex_exec_match() 9720 - MEDIUM: samples: add a regsub converter to perform regex-based transformations 9721 - BUG/MINOR: sample: fix case sensitivity for the regsub converter 9722 - MEDIUM: http: implement http-request set-{method,path,query,uri} 9723 - DOC: fix missing closing brackend on regsub 9724 - MEDIUM: samples: provide basic arithmetic and bitwise operators 9725 - MEDIUM: init: continue to enforce SYSTEM_MAXCONN with auto settings if set 9726 - BUG/MINOR: http: fix incorrect header value offset in replace-hdr/replace-value 9727 - BUG/MINOR: http: abort request processing on filter failure 9728 - MEDIUM: tcp: implement tcp-ut bind option to set TCP_USER_TIMEOUT 9729 - MINOR: ssl/server: add the "no-ssl-reuse" server option 9730 - BUG/MAJOR: peers: initialize s->buffer_wait when creating the session 9731 - MINOR: http: add a new function to iterate over each header line 9732 - MINOR: http: add the new sample fetches req.hdr_names and res.hdr_names 9733 - MEDIUM: task: always ensure that the run queue is consistent 9734 - BUILD: Makefile: add -Wdeclaration-after-statement 9735 - BUILD/CLEANUP: ssl: avoid a warning due to mixed code and declaration 9736 - BUILD/CLEANUP: config: silent 3 warnings about mixed declarations with code 9737 - MEDIUM: protocol: use a family array to index the protocol handlers 9738 - BUILD: lua: cleanup many mixed occurrences declarations & code 9739 - BUG/MEDIUM: task: fix recently introduced scheduler skew 9740 - BUG/MINOR: lua: report the correct function name in an error message 9741 - BUG/MAJOR: http: fix stats regression consecutive to HTTP_RULE_RES_YIELD 9742 - Revert "BUG/MEDIUM: lua: can't handle the response bytes" 9743 - MINOR: lua: convert IP addresses to type string 9744 - CLEANUP: lua: use the same function names in C and Lua 9745 - REORG/MAJOR: move session's req and resp channels back into the session 9746 - CLEANUP: remove now unused channel pool 9747 - REORG/MEDIUM: stream-int: introduce si_ic/si_oc to access channels 9748 - MEDIUM: stream-int: add a flag indicating which side the SI is on 9749 - MAJOR: stream-int: only rely on SI_FL_ISBACK to find the requested channel 9750 - MEDIUM: stream-interface: remove now unused pointers to channels 9751 - MEDIUM: stream-int: make si_sess() use the stream int's side 9752 - MEDIUM: stream-int: use si_task() to retrieve the task from the stream int 9753 - MEDIUM: stream-int: remove any reference to the owner 9754 - CLEANUP: stream-int: add si_ib/si_ob to dereference the buffers 9755 - CLEANUP: stream-int: add si_opposite() to find the other stream interface 9756 - REORG/MEDIUM: channel: only use chn_prod / chn_cons to find stream-interfaces 9757 - MEDIUM: channel: add a new flag "CF_ISRESP" for the response channel 9758 - MAJOR: channel: only rely on the new CF_ISRESP flag to find the SI 9759 - MEDIUM: channel: remove now unused ->prod and ->cons pointers 9760 - CLEANUP: session: simplify references to chn_{prod,cons}(&s->{req,res}) 9761 - CLEANUP: session: use local variables to access channels / stream ints 9762 - CLEANUP: session: don't needlessly pass a pointer to the stream-int 9763 - CLEANUP: session: don't use si_{ic,oc} when we know the session. 9764 - CLEANUP: stream-int: limit usage of si_ic/si_oc 9765 - CLEANUP: lua: limit usage of si_ic/si_oc 9766 - MINOR: channel: add chn_sess() helper to retrieve session from channel 9767 - MEDIUM: session: simplify receive buffer allocator to only use the channel 9768 - MEDIUM: lua: use CF_ISRESP to detect the channel's side 9769 - CLEANUP: lua: remove the session pointer from hlua_channel 9770 - CLEANUP: lua: hlua_channel_new() doesn't need the pointer to the session anymore 9771 - MEDIUM: lua: remove struct hlua_channel 9772 - MEDIUM: lua: remove hlua_sample_fetch 9773 97742014/06/19 : 1.6-dev0 9775 - exact copy of 1.5.0 9776 97772014/06/19 : 1.5.0 9778 - MEDIUM: ssl: ignored file names ending as '.issuer' or '.ocsp'. 9779 - MEDIUM: ssl: basic OCSP stapling support. 9780 - MINOR: ssl/cli: Fix unapropriate comment in code on 'set ssl ocsp-response' 9781 - MEDIUM: ssl: add 300s supported time skew on OCSP response update. 9782 - MINOR: checks: mysql-check: Add support for v4.1+ authentication 9783 - MEDIUM: ssl: Add the option to use standardized DH parameters >= 1024 bits 9784 - MEDIUM: ssl: fix detection of ephemeral diffie-hellman key exchange by using the cipher description. 9785 - MEDIUM: http: add actions "replace-header" and "replace-values" in http-req/resp 9786 - MEDIUM: Break out check establishment into connect_chk() 9787 - MEDIUM: Add port_to_str helper 9788 - BUG/MEDIUM: fix ignored values for half-closed timeouts (client-fin and server-fin) in defaults section. 9789 - BUG/MEDIUM: Fix unhandled connections problem with systemd daemon mode and SO_REUSEPORT. 9790 - MINOR: regex: fix a little configuration memory leak. 9791 - MINOR: regex: Create JIT compatible function that return match strings 9792 - MEDIUM: regex: replace all standard regex function by own functions 9793 - MEDIUM: regex: Remove null terminated strings. 9794 - MINOR: regex: Use native PCRE API. 9795 - MINOR: missing regex.h include 9796 - DOC: Add Exim as Proxy Protocol implementer. 9797 - BUILD: don't use type "uint" which is not portable 9798 - BUILD: stats: workaround stupid and bogus -Werror=format-security behaviour 9799 - BUG/MEDIUM: http: clear CF_READ_NOEXP when preparing a new transaction 9800 - CLEANUP: http: don't clear CF_READ_NOEXP twice 9801 - DOC: fix proxy protocol v2 decoder example 9802 - DOC: fix remaining occurrences of "pattern extraction" 9803 - MINOR: log: allow the HTTP status code to be logged even in TCP frontends 9804 - MINOR: logs: don't limit HTTP header captures to HTTP frontends 9805 - MINOR: sample: improve sample_fetch_string() to report partial contents 9806 - MINOR: capture: extend the captures to support non-header keys 9807 - MINOR: tcp: prepare support for the "capture" action 9808 - MEDIUM: tcp: add a new tcp-request capture directive 9809 - MEDIUM: session: allow shorter retry delay if timeout connect is small 9810 - MEDIUM: session: don't apply the retry delay when redispatching 9811 - MEDIUM: session: redispatch earlier when possible 9812 - MINOR: config: warn when tcp-check rules are used without option tcp-check 9813 - BUG/MINOR: connection: make proxy protocol v1 support the UNKNOWN protocol 9814 - DOC: proxy protocol example parser was still wrong 9815 - DOC: minor updates to the proxy protocol doc 9816 - CLEANUP: connection: merge proxy proto v2 header and address block 9817 - MEDIUM: connection: add support for proxy protocol v2 in accept-proxy 9818 - MINOR: tools: add new functions to quote-encode strings 9819 - DOC: clarify the CSV format 9820 - MEDIUM: stats: report the last check and last agent's output on the CSV status 9821 - MINOR: freq_ctr: introduce a new averaging method 9822 - MEDIUM: session: maintain per-backend and per-server time statistics 9823 - MEDIUM: stats: report per-backend and per-server time stats in HTML and CSV outputs 9824 - BUG/MINOR: http: fix typos in previous patch 9825 - DOC: remove the ultra-obsolete TODO file 9826 - DOC: update roadmap 9827 - DOC: minor updates to the README 9828 - DOC: mention the maxconn limitations with the select poller 9829 - DOC: commit a few old design thoughts files 9830 98312014/05/28 : 1.5-dev26 9832 - BUG/MEDIUM: polling: fix possible CPU hogging of worker processes after receiving SIGUSR1. 9833 - BUG/MINOR: stats: fix a typo on a closing tag for a server tracking another one 9834 - OPTIM: stats: avoid the calculation of a useless link on tracking servers in maintenance 9835 - MINOR: fix a few memory usage errors 9836 - CONTRIB: halog: Filter input lines by date and time through timestamp 9837 - MINOR: ssl: SSL_CTX_set_options() and SSL_CTX_set_mode() take a long, not an int 9838 - BUG/MEDIUM: regex: fix risk of buffer overrun in exp_replace() 9839 - MINOR: acl: set "str" as default match for strings 9840 - DOC: Add some precisions about acl default matching method 9841 - MEDIUM: acl: strenghten the option parser to report invalid options 9842 - BUG/MEDIUM: config: a stats-less config crashes in 1.5-dev25 9843 - BUG/MINOR: checks: tcp-check must not stop on '\0' for binary checks 9844 - MINOR: stats: improve alignment of color codes to save one line of header 9845 - MINOR: checks: simplify and improve reporting of state changes when using log-health-checks 9846 - MINOR: server: remove the SRV_DRAIN flag which can always be deduced 9847 - MINOR: server: use functions to detect state changes and to update them 9848 - MINOR: server: create srv_was_usable() from srv_is_usable() and use a pointer 9849 - BUG/MINOR: stats: do not report "100%" in the thottle column when server is draining 9850 - BUG/MAJOR: config: don't free valid regex memory 9851 - BUG/MEDIUM: session: don't clear CF_READ_NOEXP if analysers are not called 9852 - BUG/MINOR: stats: tracking servers may incorrectly report an inherited DRAIN status 9853 - MEDIUM: proxy: make timeout parser a bit stricter 9854 - REORG/MEDIUM: server: split server state and flags in two different variables 9855 - REORG/MEDIUM: server: move the maintenance bits out of the server state 9856 - MAJOR: server: use states instead of flags to store the server state 9857 - REORG: checks: put the functions in the appropriate files ! 9858 - MEDIUM: server: properly support and propagate the maintenance status 9859 - MEDIUM: server: allow multi-level server tracking 9860 - CLEANUP: checks: rename the server_status_printf function 9861 - MEDIUM: checks: simplify server up/down/nolb transitions 9862 - MAJOR: checks: move health checks changes to set_server_check_status() 9863 - MINOR: server: make the status reporting function support a reason 9864 - MINOR: checks: simplify health check reporting functions 9865 - MINOR: server: implement srv_set_stopped() 9866 - MINOR: server: implement srv_set_running() 9867 - MINOR: server: implement srv_set_stopping() 9868 - MEDIUM: checks: simplify failure notification using srv_set_stopped() 9869 - MEDIUM: checks: simplify success notification using srv_set_running() 9870 - MEDIUM: checks: simplify stopping mode notification using srv_set_stopping() 9871 - MEDIUM: stats: report a server's own state instead of the tracked one's 9872 - MINOR: server: make use of srv_is_usable() instead of checking eweight 9873 - MAJOR: checks: add support for a new "drain" administrative mode 9874 - MINOR: stats: use the admin flags for soft enable/disable/stop/start on the web page 9875 - MEDIUM: stats: introduce new actions to simplify admin status management 9876 - MINOR: cli: introduce a new "set server" command 9877 - MINOR: stats: report a distinct output for DOWN caused by agent 9878 - MINOR: checks: support specific check reporting for the agent 9879 - MINOR: checks: support a neutral check result 9880 - BUG/MINOR: cli: "agent" was missing from the "enable"/"disable" help message 9881 - MEDIUM: cli: add support for enabling/disabling health checks. 9882 - MEDIUM: stats: report down caused by agent prior to reporting up 9883 - MAJOR: agent: rework the response processing and support additional actions 9884 - MINOR: stats: improve the stats web page to support more actions 9885 - CONTRIB: halog: avoid calling time/localtime/mktime for each line 9886 - DOC: document the workarouds for Google Chrome's bogus pre-connect 9887 - MINOR: stats: report SSL key computations per second 9888 - MINOR: stats: add counters for SSL cache lookups and misses 9889 98902014/05/10 : 1.5-dev25 9891 - MEDIUM: connection: Implement and extented PROXY Protocol V2 9892 - MINOR: ssl: clean unused ACLs declarations 9893 - MINOR: ssl: adds fetchs and ACLs for ssl back connection. 9894 - MINOR: ssl: merge client's and frontend's certificate functions. 9895 - MINOR: ssl: adds ssl_f_sha1 fetch to return frontend's certificate fingerprint 9896 - MINOR: ssl: adds sample converter base64 for binary type. 9897 - MINOR: ssl: convert to binary ssl_fc_unique_id and ssl_bc_unique_id. 9898 - BUG/MAJOR: ssl: Fallback to private session cache if current lock mode is not supported. 9899 - MAJOR: ssl: Change default locks on ssl session cache. 9900 - BUG/MINOR: chunk: Fix function chunk_strcmp and chunk_strcasecmp match a substring. 9901 - MINOR: ssl: add global statement tune.ssl.force-private-cache. 9902 - MINOR: ssl: remove fallback to SSL session private cache if lock init fails. 9903 - BUG/MEDIUM: patterns: last fix was still not enough 9904 - MINOR: http: export the smp_fetch_cookie function 9905 - MINOR: http: generic pointer to rule argument 9906 - BUG/MEDIUM: pattern: a typo breaks automatic acl/map numbering 9907 - BUG/MAJOR: patterns: -i and -n are ignored for inlined patterns 9908 - BUG/MINOR: proxy: unsafe initialization of HTTP transaction when switching from TCP frontend 9909 - BUG/MINOR: http: log 407 in case of proxy auth 9910 - MINOR: http: rely on the message body parser to send 100-continue 9911 - MEDIUM: http: move reqadd after execution of http_request redirect 9912 - MEDIUM: http: jump to dedicated labels after http-request processing 9913 - BUG/MINOR: http: block rules forgot to increment the denied_req counter 9914 - BUG/MINOR: http: block rules forgot to increment the session's request counter 9915 - MEDIUM: http: move Connection header processing earlier 9916 - MEDIUM: http: remove even more of the spaghetti in the request path 9917 - MINOR: http: silently support the "block" action for http-request 9918 - CLEANUP: proxy: rename "block_cond" to "block_rules" 9919 - MEDIUM: http: emulate "block" rules using "http-request" rules 9920 - MINOR: http: remove the now unused loop over "block" rules 9921 - MEDIUM: http: factorize the "auth" action of http-request and stats 9922 - MEDIUM: http: make http-request rules processing return a verdict instead of a rule 9923 - MINOR: config: add minimum support for emitting warnings only once 9924 - MEDIUM: config: inform the user about the deprecatedness of "block" rules 9925 - MEDIUM: config: inform the user that "reqsetbe" is deprecated 9926 - MEDIUM: config: inform the user only once that "redispatch" is deprecated 9927 - MEDIUM: config: warn that '{cli,con,srv}timeout' are deprecated 9928 - BUG/MINOR: auth: fix wrong return type in pat_match_auth() 9929 - BUILD: config: remove a warning with clang 9930 - BUG/MAJOR: http: connection setup may stall on balance url_param 9931 - BUG/MEDIUM: http/session: disable client-side expiration only after body 9932 - BUG/MEDIUM: http: correctly report request body timeouts 9933 - BUG/MEDIUM: http: disable server-side expiration until client has sent the body 9934 - MEDIUM: listener: make the accept function more robust against pauses 9935 - BUILD: syscalls: remove improper inline statement in front of syscalls 9936 - BUILD: ssl: SSL_CTX_set_msg_callback() needs openssl >= 0.9.7 9937 - BUG/MAJOR: session: recover the correct connection pointer in half-initialized sessions 9938 - DOC: add some explanation on the shared cache build options in the readme. 9939 - MEDIUM: proxy: only adjust the backend's bind-process when already set 9940 - MEDIUM: config: limit nbproc to the machine's word size 9941 - MEDIUM: config: check the bind-process settings according to nbproc 9942 - MEDIUM: listener: parse the new "process" bind keyword 9943 - MEDIUM: listener: inherit the process mask from the proxy 9944 - MAJOR: listener: only start listeners bound to the same processes 9945 - MINOR: config: only report a warning when stats sockets are bound to more than 1 process 9946 - CLEANUP: config: set the maxaccept value for peers listeners earlier 9947 - BUG/MINOR: backend: only match IPv4 addresses with RDP cookies 9948 - BUG/MINOR: checks: correctly configure the address family and protocol 9949 - MINOR: tools: split is_addr() and is_inet_addr() 9950 - MINOR: protocols: use is_inet_addr() when only INET addresses are desired 9951 - MEDIUM: unix: add preliminary support for connecting to servers over UNIX sockets 9952 - MEDIUM: checks: only complain about the missing port when the check uses TCP 9953 - MEDIUM: unix: implement support for Linux abstract namespace sockets 9954 - DOC: map_beg was missing from the table of map_* converters 9955 - DOC: ebtree: indicate that prefix insertion/lookup may be used with strings 9956 - MEDIUM: pattern: use ebtree's longest match to index/lookup string beginning 9957 - BUILD: remove the obsolete BSD and OSX makefiles 9958 - MEDIUM: unix: avoid a double connect probe when no data are sent 9959 - DOC: stop referencing the slow git repository in the README 9960 - BUILD: only build the systemd wrapper on Linux 2.6 and above 9961 - DOC: update roadmap with completed tasks 9962 - MEDIUM: session: implement half-closed timeouts (client-fin and server-fin) 9963 99642014/04/26 : 1.5-dev24 9965 - MINOR: pattern: find element in a reference 9966 - MEDIUM: http: ACL and MAP updates through http-(request|response) rules 9967 - MEDIUM: ssl: explicitly log failed handshakes after a heartbeat 9968 - DOC: Full section dedicated to the converters 9969 - MEDIUM: http: register http-request and http-response keywords 9970 - BUG/MINOR: compression: correctly report incoming byte count 9971 - BUG/MINOR: http: don't report server aborts as client aborts 9972 - BUG/MEDIUM: channel: bi_putblk() must not wrap before the end of buffer 9973 - CLEANUP: buffers: remove unused function buffer_contig_space_with_res() 9974 - MEDIUM: stats: reimplement HTTP keep-alive on the stats page 9975 - BUG/MAJOR: http: fix timeouts during data forwarding 9976 - BUG/MEDIUM: http: 100-continue responses must process the next part immediately 9977 - MEDIUM: http: move skipping of 100-continue earlier 9978 - BUILD: stats: let gcc know that last_fwd cannot be used uninitialized... 9979 - CLEANUP: general: get rid of all old occurrences of "session *t" 9980 - CLEANUP: http: remove the useless "if (1)" inherited from version 1.4 9981 - BUG/MEDIUM: stats: mismatch between behaviour and doc about front/back 9982 - MEDIUM: http: enable analysers to have keep-alive on stats 9983 - REORG: http: move HTTP Connection response header parsing earlier 9984 - MINOR: stats: always emit HTTP/1.1 in responses 9985 - MINOR: http: add capture.req.ver and capture.res.ver 9986 - MINOR: checks: add a new global max-spread-checks directive 9987 - BUG/MAJOR: http: fix the 'next' pointer when performing a redirect 9988 - MINOR: http: implement the max-keep-alive-queue setting 9989 - DOC: fix alphabetic order of tcp-check 9990 - MINOR: connection: add a new error code for SSL with heartbeat 9991 - MEDIUM: ssl: implement a workaround for the OpenSSL heartbleed attack 9992 - BUG/MEDIUM: Revert "MEDIUM: ssl: Add standardized DH parameters >= 1024 bits" 9993 - BUILD: http: remove a warning on strndup 9994 - BUILD: ssl: avoid a warning about conn not used with OpenSSL < 1.0.1 9995 - BUG/MINOR: ssl: really block OpenSSL's response to heartbleed attack 9996 - MINOR: ssl: finally catch the heartbeats missing the padding 9997 99982014/04/23 : 1.5-dev23 9999 - BUG/MINOR: reject malformed HTTP/0.9 requests 10000 - MINOR: systemd wrapper: re-execute on SIGUSR2 10001 - MINOR: systemd wrapper: improve logging 10002 - MINOR: systemd wrapper: propagate exit status 10003 - BUG/MINOR: tcpcheck connect wrong behavior 10004 - MEDIUM: proxy: support use_backend with dynamic names 10005 - MINOR: stats: Enhancement to stats page to provide information of last session time. 10006 - BUG/MEDIUM: peers: fix key consistency for integer stick tables 10007 - DOC: fix a typo on http-server-close and encapsulate options with double-quotes 10008 - DOC: fix fetching samples syntax 10009 - MINOR: ssl: add ssl_fc_unique_id to fetch TLS Unique ID 10010 - MEDIUM: ssl: Use ALPN support as it will be available in OpenSSL 1.0.2 10011 - DOC: fix typo 10012 - CLEANUP: code style: use tabs to indent codes instead of spaces 10013 - DOC: fix a few config typos. 10014 - BUG/MINOR: raw_sock: also consider ENOTCONN in addition to EAGAIN for recv() 10015 - DOC: lowercase format string in unique-id 10016 - MINOR: set IP_FREEBIND on IPv6 sockets in transparent mode 10017 - BUG/MINOR: acl: req_ssl_sni fails with SSLv3 record version 10018 - BUG/MINOR: build: add missing objects in osx and bsd Makefiles 10019 - BUG/MINOR: build: handle whitespaces in wc -l output 10020 - BUG/MINOR: Fix name lookup ordering when compiled with USE_GETADDRINFO 10021 - MEDIUM: ssl: Add standardized DH parameters >= 1024 bits 10022 - BUG/MEDIUM: map: The map parser includes blank lines. 10023 - BUG/MINOR: log: The log of quotted capture header has been terminated by 2 quotes. 10024 - MINOR: standard: add function "encode_chunk" 10025 - BUG/MINOR: http: fix encoding of samples used in http headers 10026 - MINOR: sample: add hex converter 10027 - MEDIUM: sample: change the behavior of the bin2str cast 10028 - MAJOR: auth: Change the internal authentication system. 10029 - MEDIUM: acl/pattern: standardisation "of pat_parse_int()" and "pat_parse_dotted_ver()" 10030 - MEDIUM: pattern: The pattern parser no more uses <opaque> and just takes one string. 10031 - MEDIUM: pattern: Change the prototype of the function pattern_register(). 10032 - CONTRIB: ip6range: add a network IPv6 range to mask converter 10033 - MINOR: pattern: separe list element from the data part. 10034 - MEDIUM: pattern: add indexation function. 10035 - MEDIUM: pattern: The parse functions just return "struct pattern" without memory allocation 10036 - MINOR: pattern: Rename "pat_idx_elt" to "pattern_tree" 10037 - MINOR: sample: dont call the sample cast function "c_none" 10038 - MINOR: standard: Add function for converting cidr to network mask. 10039 - MEDIUM: sample: Remove types SMP_T_CSTR and SMP_T_CBIN, replace it by SMP_F_CONST flags 10040 - MEDIUM: sample/http_proto: Add new type called method 10041 - MINOR: dumpstats: Group map inline help 10042 - MEDIUM: pattern: The function pattern_exec_match() returns "struct pattern" if the patten match. 10043 - MINOR: dumpstats: change map inline sentences 10044 - MINOR: dumpstats: change the "get map" display management 10045 - MINOR: map/dumpstats: The cli cmd "get map ..." display the "int" format. 10046 - MEDIUM: pattern: The match function browse itself the list or the tree. 10047 - MEDIUM: pattern: Index IPv6 addresses in a tree. 10048 - MEDIUM: pattern: add delete functions 10049 - MEDIUM: pattern: add prune function 10050 - MEDIUM: pattern: add sample lookup function. 10051 - MEDIUM: pattern/dumpstats: The function pattern_lookup() is no longer used 10052 - MINOR: map/pattern: The sample parser is stored in the pattern 10053 - MAJOR: pattern/map: Extends the map edition system in the patterns 10054 - MEDIUM: pattern: merge same pattern 10055 - MEDIUM: pattern: The expected type is stored in the pattern head, and conversion is executed once. 10056 - MINOR: pattern: Each pattern is identified by unique id. 10057 - MINOR: pattern/acl: Each pattern of each acl can be load with specified id 10058 - MINOR: pattern: The function "pattern_register()" is no longer used. 10059 - MINOR: pattern: Merge function pattern_add() with pat_ref_push(). 10060 - MINOR: pattern: store configuration reference for each acl or map pattern. 10061 - MINOR: pattern: Each pattern expression element store the reference struct. 10062 - MINOR: dumpstats: display the reference for th key/pattern and value. 10063 - MEDIUM: pattern: delete() function uses the pat_ref_elt to find the element to be removed 10064 - MEDIUM: pattern_find_smp: functions find_smp uses the pat_ref_elt to find the element to be removed 10065 - MEDIUM: dumpstats/pattern: display and use each pointer of each pattern dumped 10066 - MINOR: pattern/map/acl: Centralization of the file parsers 10067 - MINOR: pattern: Check if the file reference is not used with acl and map 10068 - MINOR: acl/pattern: Acl "-M" option force to load file as map file with two columns 10069 - MEDIUM: dumpstats: Display error message during add of values. 10070 - MINOR: pattern: The function pat_ref_set() have now atomic behavior 10071 - MINOR: regex: The pointer regstr in the struc regex is no longer used. 10072 - MINOR: cli: Block the usage of the command "acl add" in many cases. 10073 - MINOR: doc: Update the documentation about the map and acl 10074 - MINOR: pattern: index duplicates 10075 - MINOR: configuration: File and line propagation 10076 - MINOR: dumpstat/conf: display all the configuration lines that using pattern reference 10077 - MINOR: standard: Disable ip resolution during the runtime 10078 - MINOR: pattern: Remove the flag "PAT_F_FROM_FILE". 10079 - MINOR: pattern: forbid dns resolutions 10080 - DOC: document "get map" / "get acl" on the CLI 10081 - MEDIUM: acl: Change the acl register struct 10082 - BUG/MEDIUM: acl: boolean only matches were broken by recent changes 10083 - DOC: pattern: pattern organisation schematics 10084 - MINOR: pattern/cli: Update used terms in documentation and cli 10085 - MINOR: cli: remove information about acl or map owner. 10086 - MINOR: session: don't always assume there's a listener 10087 - MINOR: pattern: Add function to prune and reload pattern list. 10088 - MINOR: standard: Add ipv6 support in the function url2sa(). 10089 - MEDIUM: config: Dynamic sections. 10090 - BUG/MEDIUM: stick-table: fix IPv4-to-IPv6 conversion in src_* fetches 10091 - MINOR: http: Add the "language" converter to for use with accept-language 10092 - BUG/MINOR: log: Don't dump empty unique-id 10093 - BUG/MAJOR: session: fix a possible crash with src_tracked 10094 - DOC: Update "language" documentation 10095 - MINOR: http: add the function "del-header" to the directives http-request and http-response 10096 - DOC: add some information on capture.(req|res).hdr 10097 - MINOR: http: capture.req.method and capture.req.uri 10098 - MINOR: http: optimize capture.req.method and capture.req.uri 10099 - MINOR: session: clean up the connection free code 10100 - BUG/MEDIUM: checks: immediately report a connection success 10101 - MEDIUM: connection: don't use real send() flags in snd_buf() 10102 - OPTIM: ssl: implement dynamic record size adjustment 10103 - MINOR: stats: report exact last session time in backend too 10104 - BUG/MEDIUM: stats: the "lastsess" field must appear last in the CSV. 10105 - BUG/MAJOR: check: fix memory leak in "tcp-check connect" over SSL 10106 - BUG/MINOR: channel: initialize xfer_small/xfer_large on new buffers 10107 - MINOR: channel: add the date of last read in the channel 10108 - MEDIUM: stream-int: automatically disable CF_STREAMER flags after idle 10109 - MINOR: ssl: add DEFAULT_SSL_MAX_RECORD to set the record size at build time 10110 - MINOR: config: make the stream interface idle timer user-configurable 10111 - MINOR: config: add global directives to set default SSL ciphers 10112 - MINOR: sample: add a rand() sample fetch to return a sample. 10113 - BUG/MEDIUM: config: immediately abort if peers section has no name 10114 - BUG/MINOR: ssl: fix syntax in config error message 10115 - BUG/MEDIUM: ssl: always send a full buffer after EAGAIN 10116 - BUG/MINOR: config: server on-marked-* statement is ignored in default-server 10117 - BUG/MEDIUM: backend: prefer-last-server breaks redispatch 10118 - BUG/MEDIUM: http: continue to emit 503 on keep-alive to different server 10119 - MEDIUM: acl: fix pattern type for payload / payload_lv 10120 - BUG/MINOR: config: fix a crash on startup when a disabled backend references a peer 10121 - BUG/MEDIUM: compression: fix the output type of the compressor name 10122 - BUG/MEDIUM: http: don't start to forward request data before the connect 10123 - MINOR: http: release compression context only in http_end_txn() 10124 - MINOR: protect ebimtree/ebistree against multiple inclusions 10125 - MEDIUM: proxy: create a tree to store proxies by name 10126 - MEDIUM: proxy: make findproxy() use trees to look up proxies 10127 - MEDIUM: proxy: make get_backend_server() use findproxy() to lookup proxies 10128 - MEDIUM: stick-table: lookup table names using trees. 10129 - MEDIUM: config: faster lookup for duplicated proxy name 10130 - CLEANUP: acl: remove obsolete test in parse_acl_expr() 10131 - MINOR: sample: move smp_to_type to sample.c 10132 - MEDIUM: compression: consider the "q=" attribute in Accept-Encoding 10133 - REORG: cfgparse: move server keyword parsing to server.c 10134 - BUILD: adjust makefile for AIX 5.1 10135 - BUG/MEDIUM: pattern: fix wrong definition of the pat_prune_fcts array 10136 - CLEANUP: pattern: move array definitions to proto/ and not types/ 10137 - BUG/MAJOR: counters: check for null-deref when looking up an alternate table 10138 - BUILD: ssl: previous patch failed 10139 - BUILD/MEDIUM: standard: get rid of the last strcpy() 10140 - BUILD/MEDIUM: standard: get rid of sprintf() 10141 - BUILD/MEDIUM: cfgparse: get rid of sprintf() 10142 - BUILD/MEDIUM: checks: get rid of sprintf() 10143 - BUILD/MEDIUM: http: remove calls to sprintf() 10144 - BUG/MEDIUM: systemd-wrapper: fix locating of haproxy binary 10145 - BUILD/MINOR: ssl: remove one call to sprintf() 10146 - MEDIUM: http: don't reject anymore message bodies not containing the url param 10147 - MEDIUM: http: wait for the first chunk or message body length in http_process_body 10148 - CLEANUP: http: rename http_process_request_body() 10149 - CLEANUP: http: prepare dedicated processing for chunked encoded message bodies 10150 - MINOR: http: make msg->eol carry the last CRLF length 10151 - MAJOR: http: do not use msg->sol while processing messages or forwarding data 10152 - MEDIUM: http: http_parse_chunk_crlf() must not advance the buffer pointer 10153 - MAJOR: http: don't update msg->sov anymore while processing the body 10154 - MINOR: http: add a small helper to compute the amount of body bytes present 10155 - MEDIUM: http: add a small helper to compute how far to rewind to find headers 10156 - MINOR: http: add a small helper to compute how far to rewind to find URI 10157 - MEDIUM: http: small helpers to compute how far to rewind to find BODY and DATA 10158 - MAJOR: http: reset msg->sov after headers are forwarded 10159 - MEDIUM: http: forward headers again while waiting for connection to complete 10160 - BUG/MINOR: http: deinitialize compression after a parsing error 10161 - BUG/MINOR: http: deinitialize compression after a compression error 10162 - MEDIUM: http: headers must be forwarded even if data was already inspected 10163 - MAJOR: http: re-enable compression on chunked encoding 10164 - MAJOR: http/compression: fix chunked-encoded response processing 10165 - MEDIUM: http: cleanup: centralize a little bit HTTP compression end 10166 - MEDIUM: http: start to centralize the forwarding code 10167 - MINOR: http: further cleanups of response forwarding function 10168 - MEDIUM: http: only allocate the temporary compression buffer when needed 10169 - MAJOR: http: centralize data forwarding in the request path 10170 - CLEANUP: http: document the response forwarding states 10171 - CLEANUP: http: remove all calls to http_silent_debug() 10172 - DOC: internal: add some reminders about HTTP parsing and pointer states 10173 - BUG/MAJOR: http: fix bug in parse_qvalue() when selecting compression algo 10174 - BUG/MINOR: stats: last session was not always set 10175 - DOC: add pointer to the Cyril's HTML doc in the README 10176 - MEDIUM: config: relax use_backend check to make the condition optional 10177 - MEDIUM: config: report misplaced http-request rules 10178 - MEDIUM: config: report misplaced use-server rules 10179 - DOC: update roadmap with what was done. 10180 101812014/02/03 : 1.5-dev22 10182 - MEDIUM: tcp-check new feature: connect 10183 - MEDIUM: ssl: Set verify 'required' as global default for servers side. 10184 - MINOR: ssl: handshake optim for long certificate chains. 10185 - BUG/MINOR: pattern: pattern comparison executed twice 10186 - BUG/MEDIUM: map: segmentation fault with the stats's socket command "set map ..." 10187 - BUG/MEDIUM: pattern: Segfault in binary parser 10188 - MINOR: pattern: move functions for grouping pat_match_* and pat_parse_* and add documentation. 10189 - MINOR: standard: The parse_binary() returns the length consumed and his documentation is updated 10190 - BUG/MINOR: payload: the patterns of the acl "req.ssl_ver" are no parsed with the good function. 10191 - BUG/MEDIUM: pattern: "pat_parse_dotted_ver()" set bad expect_type. 10192 - BUG/MINOR: sample: The c_str2int converter does not fail if the entry is not an integer 10193 - BUG/MEDIUM: http/auth: Sometimes the authentication credentials can be mix between two requests 10194 - MINOR: doc: Bad cli function name. 10195 - MINOR: http: smp_fetch_capture_header_* fetch captured headers 10196 - BUILD: last release inadvertently prepended a "+" in front of the date 10197 - BUG/MEDIUM: stream-int: fix the keep-alive idle connection handler 10198 - BUG/MEDIUM: backend: do not re-initialize the connection's context upon reuse 10199 - BUG: Revert "OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes" 10200 - BUG/MINOR: checks: successful check completion must not re-enable MAINT servers 10201 - MINOR: http: try to stick to same server after status 401/407 10202 - BUG/MINOR: http: always disable compression on HTTP/1.0 10203 - OPTIM: poll: restore polling after a poll/stop/want sequence 10204 - OPTIM: http: don't stop polling for read on the client side after a request 10205 - BUG/MEDIUM: checks: unchecked servers could not be enabled anymore 10206 - BUG/MEDIUM: stats: the web interface must check the tracked servers before enabling 10207 - BUG/MINOR: channel: CHN_INFINITE_FORWARD must be unsigned 10208 - BUG/MINOR: stream-int: do not clear the owner upon unregister 10209 - MEDIUM: stats: add support for HTTP keep-alive on the stats page 10210 - BUG/MEDIUM: stats: fix HTTP/1.0 breakage introduced in previous patch 10211 - Revert "MEDIUM: stats: add support for HTTP keep-alive on the stats page" 10212 - MAJOR: channel: add a new flag CF_WAKE_WRITE to notify the task of writes 10213 - OPTIM: session: set the READ_DONTWAIT flag when connecting 10214 - BUG/MINOR: http: don't clear the SI_FL_DONT_WAKE flag between requests 10215 - MINOR: session: factor out the connect time measurement 10216 - MEDIUM: session: prepare to support earlier transitions to the established state 10217 - MEDIUM: stream-int: make si_connect() return an established state when possible 10218 - MINOR: checks: use an inline function for health_adjust() 10219 - OPTIM: session: put unlikely() around the freewheeling code 10220 - MEDIUM: config: report a warning when multiple servers have the same name 10221 - BUG: Revert "OPTIM: poll: restore polling after a poll/stop/want sequence" 10222 - BUILD/MINOR: listener: remove a glibc warning on accept4() 10223 - BUG/MAJOR: connection: fix mismatch between rcv_buf's API and usage 10224 - BUILD: listener: fix recent accept4() again 10225 - BUG/MAJOR: ssl: fix breakage caused by recent fix abf08d9 10226 - BUG/MEDIUM: polling: ensure we update FD status when there's no more activity 10227 - MEDIUM: listener: fix polling management in the accept loop 10228 - MINOR: protocol: improve the proto->drain() API 10229 - MINOR: connection: add a new conn_drain() function 10230 - MEDIUM: tcp: report in tcp_drain() that lingering is already disabled on close 10231 - MEDIUM: connection: update callers of ctrl->drain() to use conn_drain() 10232 - MINOR: connection: add more error codes to report connection errors 10233 - MEDIUM: tcp: report connection error at the connection level 10234 - MEDIUM: checks: make use of chk_report_conn_err() for connection errors 10235 - BUG/MEDIUM: unique_id: HTTP request counter is not stable 10236 - DOC: fix misleading information about SIGQUIT 10237 - BUG/MAJOR: fix freezes during compression 10238 - BUG/MEDIUM: stream-interface: don't wake the task up before end of transfer 10239 - BUILD: fix VERDATE exclusion regex 10240 - CLEANUP: polling: rename "spec_e" to "state" 10241 - DOC: add a diagram showing polling state transitions 10242 - REORG: polling: rename "spec_e" to "state" and "spec_p" to "cache" 10243 - REORG: polling: rename "fd_spec" to "fd_cache" 10244 - REORG: polling: rename the cache allocation functions 10245 - REORG: polling: rename "fd_process_spec_events()" to "fd_process_cached_events()" 10246 - MAJOR: polling: rework the whole polling system 10247 - MAJOR: connection: remove the CO_FL_WAIT_{RD,WR} flags 10248 - MEDIUM: connection: remove conn_{data,sock}_poll_{recv,send} 10249 - MEDIUM: connection: add check for readiness in I/O handlers 10250 - MEDIUM: stream-interface: the polling flags must always be updated in chk_snd_conn 10251 - MINOR: stream-interface: no need to call fd_stop_both() on error 10252 - MEDIUM: connection: no need to recheck FD state 10253 - CLEANUP: connection: use conn_ctrl_ready() instead of checking the flag 10254 - CLEANUP: connection: use conn_xprt_ready() instead of checking the flag 10255 - CLEANUP: connection: fix comments in connection.h to reflect new behaviour. 10256 - OPTIM: raw-sock: don't speculate after a short read if polling is enabled 10257 - MEDIUM: polling: centralize polled events processing 10258 - MINOR: polling: create function fd_compute_new_polled_status() 10259 - MINOR: cli: add more information to the "show info" output 10260 - MEDIUM: listener: add support for limiting the session rate in addition to the connection rate 10261 - MEDIUM: listener: apply a limit on the session rate submitted to SSL 10262 - REORG: stats: move the stats socket states to dumpstats.c 10263 - MINOR: cli: add the new "show pools" command 10264 - BUG/MEDIUM: counters: flush content counters after each request 10265 - BUG/MEDIUM: counters: fix stick-table entry leak when using track-sc2 in connection 10266 - MINOR: tools: add very basic support for composite pointers 10267 - MEDIUM: counters: stop relying on session flags at all 10268 - BUG/MINOR: cli: fix missing break in command line parser 10269 - BUG/MINOR: config: correctly report when log-format headers require HTTP mode 10270 - MAJOR: http: update connection mode configuration 10271 - MEDIUM: http: make keep-alive + httpclose be passive mode 10272 - MAJOR: http: switch to keep-alive mode by default 10273 - BUG/MEDIUM: http: fix regression caused by recent switch to keep-alive by default 10274 - BUG/MEDIUM: listener: improve detection of non-working accept4() 10275 - BUILD: listener: add fcntl.h and unistd.h 10276 - BUG/MINOR: raw_sock: correctly set the MSG_MORE flag 10277 102782013/12/17 : 1.5-dev21 10279 - MINOR: stats: don't use a monospace font to report numbers 10280 - MINOR: session: remove debugging code 10281 - BUG/MAJOR: patterns: fix double free caused by loading strings from files 10282 - MEDIUM: http: make option http_proxy automatically rewrite the URL 10283 - BUG/MEDIUM: http: cook_cnt() forgets to set its output type 10284 - BUG/MINOR: stats: correctly report throttle rate of low weight servers 10285 - BUG/MEDIUM: checks: servers must not start in slowstart mode 10286 - BUG/MINOR: acl: parser must also stop at comma on ACL-only keywords 10287 - MEDIUM: stream-int: implement a very simplistic idle connection manager 10288 - DOC: update the ROADMAP file 10289 102902013/12/16 : 1.5-dev20 10291 - DOC: add missing options to the manpage 10292 - DOC: add manpage references to all system calls 10293 - DOC: update manpage reference to haproxy-en.txt 10294 - DOC: remove -s and -l options from the manpage 10295 - DOC: missing information for the "description" keyword 10296 - DOC: missing http-send-name-header keyword in keyword table 10297 - MINOR: tools: function my_memmem() to lookup binary contents 10298 - MEDIUM: checks: add send/expect tcp based check 10299 - MEDIUM: backend: Enhance hash-type directive with an algorithm options 10300 - MEDIUM: backend: Implement avalanche as a modifier of the hashing functions. 10301 - DOC: Documentation for hashing function, with test results. 10302 - BUG/MEDIUM: ssl: potential memory leak using verifyhost 10303 - BUILD: ssl: compilation issue with openssl v0.9.6. 10304 - BUG/MINOR: ssl: potential memory leaks using ssl_c_key_alg or ssl_c_sig_alg. 10305 - MINOR: ssl: optimization of verifyhost on wildcard certificates. 10306 - BUG/MINOR: ssl: verifyhost does not match empty strings on wildcard. 10307 - MINOR: ssl: Add statement 'verifyhost' to "server" statements 10308 - CLEANUP: session: remove event_accept() which was not used anymore 10309 - BUG/MINOR: deinit: free fdinfo while doing cleanup 10310 - DOC: minor typo fix in documentation 10311 - BUG/MEDIUM: server: set the macro for server's max weight SRV_UWGHT_MAX to SRV_UWGHT_RANGE 10312 - BUG/MINOR: use the same check condition for server as other algorithms 10313 - DOC: fix typo in comments 10314 - BUG/MINOR: deinit: free server map which is allocated in init_server_map() 10315 - CLEANUP: stream_interface: cleanup loop information in si_conn_send_loop() 10316 - MINOR: buffer: align the last output line of buffer_dump() 10317 - MINOR: buffer: align the last output line if there are less than 8 characters left 10318 - DOC: stick-table: modify the description 10319 - OPTIM: stream_interface: return directly if the connection flag CO_FL_ERROR has been set 10320 - CLEANUP: code style: use tabs to indent codes 10321 - DOC: checkcache: block responses with cacheable cookies 10322 - BUG/MINOR: check_config_validity: check the returned value of stktable_init() 10323 - MEDIUM: haproxy-systemd-wrapper: Use haproxy in same directory 10324 - MEDIUM: systemd-wrapper: Kill child processes when interrupted 10325 - LOW: systemd-wrapper: Write debug information to stdout 10326 - BUG/MINOR: http: fix "set-tos" not working in certain configurations 10327 - MEDIUM: http: add IPv6 support for "set-tos" 10328 - DOC: ssl: update build instructions to use new SSL_* variables 10329 - BUILD/MINOR: systemd: fix compiler warning about unused result 10330 - url32+src - like base32+src but whole url including parameters 10331 - BUG/MINOR: fix forcing fastinter in "on-error" 10332 - CLEANUP: Make parameters of srv_downtime and srv_getinter const 10333 - CLEANUP: Remove unused 'last_slowstart_change' field from struct peer 10334 - MEDIUM: Split up struct server's check element 10335 - MEDIUM: Move result element to struct check 10336 - MEDIUM: Paramatise functions over the check of a server 10337 - MEDIUM: cfgparse: Factor out check initialisation 10338 - MEDIUM: Add state to struct check 10339 - MEDIUM: Move health element to struct check 10340 - MEDIUM: Add helper for task creation for checks 10341 - MEDIUM: Add helper function for failed checks 10342 - MEDIUM: Log agent fail, stopped or down as info 10343 - MEDIUM: Remove option lb-agent-chk 10344 - MEDIUM: checks: Add supplementary agent checks 10345 - MEDIUM: Do not mark a server as down if the agent is unavailable 10346 - MEDIUM: Set rise and fall of agent checks to 1 10347 - MEDIUM: Add enable and disable agent unix socket commands 10348 - MEDIUM: Add DRAIN state and report it on the stats page 10349 - BUILD/MINOR: missing header file 10350 - CLEANUP: regex: Create regex_comp function that compiles regex using compilation options 10351 - CLEANUP: The function "regex_exec" needs the string length but in many case they expect null terminated char. 10352 - MINOR: http: some exported functions were not in the header file 10353 - MINOR: http: change url_decode to return the size of the decoded string. 10354 - BUILD/MINOR: missing header file 10355 - BUG/MEDIUM: sample: The function v4tov6 cannot support input and output overlap 10356 - BUG/MINOR: arg: fix error reporting for add-header/set-header sample fetch arguments 10357 - MINOR: sample: export the generic sample conversion parser 10358 - MINOR: sample: export sample_casts 10359 - MEDIUM: acl: use the fetch syntax 'fetch(args),conv(),conv()' into the ACL keyword 10360 - MINOR: stick-table: use smp_expr_output_type() to retrieve the output type of a "struct sample_expr" 10361 - MINOR: sample: provide the original sample_conv descriptor struct to the argument checker function. 10362 - MINOR: tools: Add a function to convert buffer to an ipv6 address 10363 - MINOR: acl: export acl arrays 10364 - MINOR: acl: Extract the pattern parsing and indexation from the "acl_read_patterns_from_file()" function 10365 - MINOR: acl: Extract the pattern matching function 10366 - MINOR: sample: Define new struct sample_storage 10367 - MEDIUM: acl: associate "struct sample_storage" to each "struct acl_pattern" 10368 - REORG: acl/pattern: extract pattern matching from the acl file and create pattern.c 10369 - MEDIUM: pattern: create pattern expression 10370 - MEDIUM: pattern: rename "acl" prefix to "pat" 10371 - MEDIUM: sample: let the cast functions set their output type 10372 - MINOR: sample: add a private field to the struct sample_conv 10373 - MINOR: map: Define map types 10374 - MEDIUM: sample: add the "map" converter 10375 - MEDIUM: http: The redirect strings follows the log format rules. 10376 - BUG/MINOR: acl: acl parser does not recognize empty converter list 10377 - BUG/MINOR: map: The map list was declared in the map.h file 10378 - MINOR: map: Cleanup the initialisation of map descriptors. 10379 - MEDIUM: map: merge identical maps 10380 - BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node" 10381 - BUG/MEDIUM: map: Bad map file parser 10382 - CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN 10383 - BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end 10384 - MINOR: map: export map_get_reference() function 10385 - MINOR: pattern: Each pattern sets the expected input type 10386 - MEDIUM: acl: Last patch change the output type 10387 - MEDIUM: pattern: Extract the index process from the pat_parse_*() functions 10388 - MINOR: standard: The function parse_binary() can use preallocated buffer 10389 - MINOR: regex: Change the struct containing regex 10390 - MINOR: regex: Copy the original regex expression into string. 10391 - MINOR: pattern: add support for compiling patterns for lookups 10392 - MINOR: pattern: make the pattern matching function return a pointer to the matched element 10393 - MINOR: map: export parse output sample functions 10394 - MINOR: pattern: add function to lookup a specific entry in pattern list 10395 - MINOR: pattern/map: Each pattern must free the associated sample 10396 - MEDIUM: dumpstat: make the CLI parser understand the backslash as an escape char 10397 - MEDIUM: map: dynamic manipulation of maps 10398 - BUG/MEDIUM: unique_id: junk in log on empty unique_id 10399 - BUG/MINOR: log: junk at the end of syslog packet 10400 - MINOR: Makefile: provide cscope rule 10401 - DOC: compression: chunk are not compressed anymore 10402 - MEDIUM: session: disable lingering on the server when the client aborts 10403 - BUG/MEDIUM: prevent gcc from moving empty keywords lists into BSS 10404 - DOC: remove the comment saying that SSL certs are not checked on the server side 10405 - BUG: counters: third counter was not stored if others unset 10406 - BUG/MAJOR: http: don't emit the send-name-header when no server is available 10407 - BUG/MEDIUM: http: "option checkcache" fails with the no-cache header 10408 - BUG/MAJOR: http: sample prefetch code was not properly migrated 10409 - BUG/MEDIUM: splicing: fix abnormal CPU usage with splicing 10410 - BUG/MINOR: stream_interface: don't call chk_snd() on polled events 10411 - OPTIM: splicing: use splice() for the last block when relevant 10412 - MEDIUM: sample: handle comma-delimited converter list 10413 - MINOR: sample: fix sample_process handling of unstable data 10414 - CLEANUP: acl: move the 3 remaining sample fetches to samples.c 10415 - MINOR: sample: add a new "date" fetch to return the current date 10416 - MINOR: samples: add the http_date([<offset>]) sample converter. 10417 - DOC: minor improvements to the part on the stats socket. 10418 - MEDIUM: sample: systematically pass the keyword pointer to the keyword 10419 - MINOR: payload: split smp_fetch_rdp_cookie() 10420 - MINOR: counters: factor out smp_fetch_sc*_tracked 10421 - MINOR: counters: provide a generic function to retrieve a stkctr for sc* and src. 10422 - MEDIUM: counters: factor out smp_fetch_sc*_get_gpc0 10423 - MEDIUM: counters: factor out smp_fetch_sc*_gpc0_rate 10424 - MEDIUM: counters: factor out smp_fetch_sc*_inc_gpc0 10425 - MEDIUM: counters: factor out smp_fetch_sc*_clr_gpc0 10426 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cnt 10427 - MEDIUM: counters: factor out smp_fetch_sc*_conn_rate 10428 - MEDIUM: counters: factor out smp_fetch_sc*_conn_cur 10429 - MEDIUM: counters: factor out smp_fetch_sc*_sess_cnt 10430 - MEDIUM: counters: factor out smp_fetch_sc*_sess_rate 10431 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_cnt 10432 - MEDIUM: counters: factor out smp_fetch_sc*_http_req_rate 10433 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_cnt 10434 - MEDIUM: counters: factor out smp_fetch_sc*_http_err_rate 10435 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_in 10436 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_in_rate 10437 - MEDIUM: counters: factor out smp_fetch_sc*_kbytes_out 10438 - MEDIUM: counters: factor out smp_fetch_sc*_bytes_out_rate 10439 - MEDIUM: counters: factor out smp_fetch_sc*_trackers 10440 - MINOR: session: make the number of stick counter entries more configurable 10441 - MEDIUM: counters: support passing the counter number as a fetch argument 10442 - MEDIUM: counters: support looking up a key in an alternate table 10443 - MEDIUM: cli: adjust the method for feeding frequency counters in tables 10444 - MINOR: cli: make it possible to enter multiple values at once with "set table" 10445 - MINOR: payload: allow the payload sample fetches to retrieve arbitrary lengths 10446 - BUG/MINOR: cli: "clear table" must not kill entries that don't match condition 10447 - MINOR: ssl: use MAXPATHLEN instead of PATH_MAX 10448 - MINOR: config: warn when a server with no specific port uses rdp-cookie 10449 - BUG/MEDIUM: unique_id: HTTP request counter must be unique! 10450 - DOC: add a mention about the limited chunk size 10451 - BUG/MEDIUM: fix broken send_proxy on FreeBSD 10452 - MEDIUM: stick-tables: flush old entries upon soft-stop 10453 - MINOR: tcp: add new "close" action for tcp-response 10454 - MINOR: payload: provide the "res.len" fetch method 10455 - BUILD: add SSL_INC/SSL_LIB variables to force the path to openssl 10456 - MINOR: http: compute response time before processing headers 10457 - BUG/MINOR: acl: fix improper string size assignment in proxy argument 10458 - BUG/MEDIUM: http: accept full buffers on smp_prefetch_http 10459 - BUG/MINOR: acl: implicit arguments of ACL keywords were not properly resolved 10460 - BUG/MEDIUM: session: risk of crash on out of memory conditions 10461 - BUG/MINOR: peers: set the accept date in outgoing connections 10462 - BUG/MEDIUM: tcp: do not skip tracking rules on second pass 10463 - BUG/MEDIUM: acl: do not evaluate next terms after a miss 10464 - MINOR: acl: add a warning when an ACL keyword is used without any value 10465 - MINOR: tcp: don't use tick_add_ifset() when timeout is known to be set 10466 - BUG/MINOR: acl: remove patterns from the tree before freeing them 10467 - MEDIUM: backend: add support for the wt6 hash 10468 - OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes 10469 - OPTIM/MINOR: mark the source address as already known on accept() 10470 - BUG/MINOR: stats: don't count tarpitted connections twice 10471 - CLEANUP: http: homogenize processing of denied req counter 10472 - CLEANUP: http: merge error handling for req* and http-request * 10473 - BUG/MEDIUM: http: fix possible parser crash when parsing erroneous "http-request redirect" rules 10474 - BUG/MINOR: http: fix build warning introduced with url32/url32_src 10475 - BUG/MEDIUM: checks: fix slow start regression after fix attempt 10476 - BUG/MAJOR: server: weight calculation fails for map-based algorithms 10477 - MINOR: stats: report correct throttling percentage for servers in slowstart 10478 - OPTIM: connection: fold the error handling with handshake handling 10479 - MINOR: peers: accept to learn strings of different lengths 10480 - BUG/MAJOR: fix haproxy crash when using server tracking instead of checks 10481 - BUG/MAJOR: check: fix haproxy crash during soft-stop/soft-start 10482 - BUG/MINOR: stats: do not report "via" on tracking servers in maintenance 10483 - BUG/MINOR: connection: fix typo in error message report 10484 - BUG/MINOR: backend: fix target address retrieval in transparent mode 10485 - BUG/MINOR: config: report the correct track-sc number in tcp-rules 10486 - BUG/MINOR: log: fix log-format parsing errors 10487 - DOC: add some information about how to apply converters to samples 10488 - MINOR: acl/pattern: use types different from int to clarify who does what. 10489 - MINOR: pattern: import acl_find_match_name() into pattern.h 10490 - MEDIUM: stick-tables: support automatic conversion from ipv4<->ipv6 10491 - MEDIUM: log-format: relax parsing of '%' followed by unsupported characters 10492 - BUG/MINOR: http: usual deinit stuff in last commit 10493 - BUILD: log: silent a warning about isblank() with latest patches 10494 - BUG/MEDIUM: checks: fix health check regression causing them to depend on declaration order 10495 - BUG/MEDIUM: checks: fix a long-standing issue with reporting connection errors 10496 - BUG/MINOR: checks: don't consider errno and use conn->err_code 10497 - BUG/MEDIUM: checks: also update the DRAIN state from the web interface 10498 - MINOR: stats: remove some confusion between the DRAIN state and NOLB 10499 - BUG/MINOR: tcp: check that no error is pending during a connect probe 10500 - BUG/MINOR: connection: check EINTR when sending a PROXY header 10501 - MEDIUM: connection: set the socket shutdown flags on socket errors 10502 - BUG/MEDIUM: acl: fix regression introduced by latest converters support 10503 - MINOR: connection: clear errno prior to checking for errors 10504 - BUG/MINOR: checks: do not trust errno in write event before any syscall 10505 - MEDIUM: checks: centralize error reporting 10506 - OPTIM: checks: don't poll on recv when using plain TCP connects 10507 - OPTIM: checks: avoid setting SO_LINGER twice 10508 - MINOR: tools: add a generic binary hex string parser 10509 - BUG/MEDIUM: checks: tcp-check: do not poll when there's nothing to send 10510 - BUG/MEDIUM: check: tcp-check might miss some outgoing data when socket buffers are full 10511 - BUG/MEDIUM: args: fix double free on error path in argument expression parser 10512 - BUG/MINOR: acl: fix sample expression error reporting 10513 - BUG/MINOR: checks: tcp-check actions are enums, not flags 10514 - MEDIUM: checks: make tcp-check perform multiple send() at once 10515 - BUG/MEDIUM: stick: completely remove the unused flag from the store entries 10516 - OPTIM: ebtree: pack the struct eb_node to avoid holes on 64-bit 10517 - BUG/MEDIUM: stick-tables: complete the latest fix about store-responses 10518 - CLEANUP: stream_interface: remove unused field err_loc 10519 - MEDIUM: stats: don't use conn->xprt_st anymore 10520 - MINOR: session: add a simple function to retrieve a session from a task 10521 - MEDIUM: stats: don't use conn->xprt_ctx anymore 10522 - MEDIUM: peers: don't rely on conn->xprt_ctx anymore 10523 - MINOR: http: prevent smp_fetch_url_{ip,port} from using si->conn 10524 - MINOR: connection: make it easier to emit proxy protocol for unknown addresses 10525 - MEDIUM: stats: prepare the HTTP stats I/O handler to support more states 10526 - MAJOR: stats: move the HTTP stats handling to its applet 10527 - MEDIUM: stats: move request argument processing to the final step 10528 - MEDIUM: session: detect applets from the session by using s->target 10529 - MAJOR: session: check for a connection to an applet in sess_prepare_conn_req() 10530 - MAJOR: session: pass applet return traffic through the response analysers 10531 - MEDIUM: stream-int: split the shutr/shutw functions between applet and conn 10532 - MINOR: stream-int: make the shutr/shutw functions void 10533 - MINOR: obj: provide a safe and an unsafe access to pointed objects 10534 - MINOR: connection: add a field to store an object type 10535 - MINOR: connection: always initialize conn->objt_type to OBJ_TYPE_CONN 10536 - MEDIUM: stream interface: move the peers' ptr into the applet context 10537 - MINOR: stream-interface: move the applet context to its own struct 10538 - MINOR: obj: introduce a new type appctx 10539 - MINOR: stream-int: rename ->applet to ->appctx 10540 - MINOR: stream-int: split si_prepare_embedded into si_prepare_none and si_prepare_applet 10541 - MINOR: stream-int: add a new pointer to the end point 10542 - MEDIUM: stream-interface: set the pointer to the applet into the applet context 10543 - MAJOR: stream interface: remove the ->release function pointer 10544 - MEDIUM: stream-int: make ->end point to the connection or the appctx 10545 - CLEANUP: stream-int: remove obsolete si_ctrl function 10546 - MAJOR: stream-int: stop using si->conn and use si->end instead 10547 - MEDIUM: stream-int: do not allocate a connection in parallel to applets 10548 - MEDIUM: session: attach incoming connection to target on embryonic sessions 10549 - MINOR: connection: add conn_init() to (re)initialize a connection 10550 - MINOR: checks: call conn_init() to properly initialize the connection. 10551 - MINOR: peers: make use of conn_init() to initialize the connection 10552 - MINOR: session: use conn_init() to initialize the connections 10553 - MINOR: http: use conn_init() to reinitialize the server connection 10554 - MEDIUM: connection: replace conn_prepare with conn_assign 10555 - MINOR: get rid of si_takeover_conn() 10556 - MINOR: connection: add conn_new() / conn_free() 10557 - MAJOR: connection: add two new flags to indicate readiness of control/transport 10558 - MINOR: stream-interface: introduce si_reset() and si_set_state() 10559 - MINOR: connection: reintroduce conn_prepare to set the protocol and transport 10560 - MINOR: connection: replace conn_assign with conn_attach 10561 - MEDIUM: stream-interface: introduce si_attach_conn to replace si_prepare_conn 10562 - MAJOR: stream interface: dynamically allocate the outgoing connection 10563 - MEDIUM: connection: move the send_proxy offset to the connection 10564 - MINOR: connection: check for send_proxy during the connect(), not the SI 10565 - MEDIUM: connection: merge the send_proxy and local_send_proxy calls 10566 - MEDIUM: stream-int: replace occurrences of si->appctx with si_appctx() 10567 - MEDIUM: stream-int: return the allocated appctx in stream_int_register_handler() 10568 - MAJOR: stream-interface: dynamically allocate the applet context 10569 - MEDIUM: session: automatically register the applet designated by the target 10570 - MEDIUM: stats: delay appctx initialization 10571 - CLEANUP: peers: use less confusing state/status code names 10572 - MEDIUM: peers: delay appctx initialization 10573 - MINOR: stats: provide some appctx information in "show sess all" 10574 - DIET/MINOR: obj: pack the obj_type enum to 8 bits 10575 - DIET/MINOR: connection: rearrange a few fields to save 8 bytes in the struct 10576 - DIET/MINOR: listener: rearrange a few fields in struct listener to save 16 bytes 10577 - DIET/MINOR: proxy: rearrange a few fields in struct proxy to save 16 bytes 10578 - DIET/MINOR: session: reduce the struct session size by 8 bytes 10579 - DIET/MINOR: stream-int: rearrange a few fields in struct stream_interface to save 8 bytes 10580 - DIET/MINOR: http: reduce the size of struct http_txn by 8 bytes 10581 - MINOR: http: switch the http state to an enum 10582 - MINOR: http: use an enum for the auth method in http_auth_data 10583 - DIET/MINOR: task: reduce struct task size by 8 bytes 10584 - MINOR: stream_interface: add reporting of ressouce allocation errors 10585 - MINOR: session: report lack of resources using the new stream-interface's error code 10586 - BUILD: simplify the date and version retrieval in the makefile 10587 - BUILD: prepare the makefile to skip format lines in SUBVERS and VERDATE 10588 - BUILD: use format tags in VERDATE and SUBVERS files 10589 - BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full 10590 - CLEANUP: check: server port is unsigned 10591 - BUG/MEDIUM: checks: agent doesn't get the response if server does not closes 10592 - MINOR: tools: buf2ip6 must not modify output on failure 10593 - MINOR: pattern: do not assign SMP_TYPES by default to patterns 10594 - MINOR: sample: make sample_parse_expr() use memprintf() to report parse errors 10595 - MINOR: arg: improve wording on error reporting 10596 - BUG/MEDIUM: sample: simplify and fix the argument parsing 10597 - MEDIUM: acl: fix the argument parser to let the lower layer report detailed errors 10598 - MEDIUM: acl: fix the initialization order of the ACL expression 10599 - CLEANUP: acl: remove useless blind copy-paste from sample converters 10600 - TESTS: add regression tests for ACL and sample expression parsers 10601 - BUILD: time: adapt the type of TV_ETERNITY to the local system 10602 - MINOR: chunks: allocate the trash chunks before parsing the config 10603 - BUILD: definitely silence some stupid GCC warnings 10604 - MINOR: chunks: always initialize the output chunk in get_trash_chunk() 10605 - MINOR: checks: improve handling of the servers tracking chain 10606 - REORG: checks: retrieve the check-specific defines from server.h to checks.h 10607 - MINOR: checks: use an enum instead of flags to report a check result 10608 - MINOR: checks: rename the state flags 10609 - MINOR: checks: replace state DISABLED with CONFIGURED and ENABLED 10610 - MINOR: checks: use check->state instead of srv->state & SRV_CHECKED 10611 - MINOR: checks: fix agent check interval computation 10612 - MINOR: checks: add a PAUSED state for the checks 10613 - MINOR: checks: create the agent tasks even when no check is configured 10614 - MINOR: checks: add a flag to indicate what check is an agent 10615 - MEDIUM: checks: enable agent checks even if health checks are disabled 10616 - BUG/MEDIUM: checks: ensure we can enable a server after boot 10617 - BUG/MEDIUM: checks: tracking servers must not inherit the MAINT flag 10618 - BUG/MAJOR: session: repair tcp-request connection rules 10619 - BUILD: fix SUBVERS extraction in the Makefile 10620 - BUILD: pattern: silence a warning about uninitialized value 10621 - BUILD: log: fix build warning on Solaris 10622 - BUILD: dumpstats: fix build error on Solaris 10623 - DOC: move option pgsql-check to the correct place 10624 - DOC: move option tcp-check to the proper place 10625 - MINOR: connection: add simple functions to report connection readiness 10626 - MEDIUM: connection: centralize handling of nolinger in fd management 10627 - OPTIM: http: set CF_READ_DONTWAIT on response message 10628 - OPTIM: http: do not re-enable reading on client side while closing the server side 10629 - MINOR: config: add option http-keep-alive 10630 - MEDIUM: connection: inform si_alloc_conn() whether existing conn is OK or not 10631 - MAJOR: stream-int: handle the connection reuse in si_connect() 10632 - MAJOR: http: add the keep-alive transition on the server side 10633 - MAJOR: backend: enable connection reuse 10634 - MINOR: http: add option prefer-last-server 10635 - MEDIUM: http: do not report connection errors for second and further requests 10636 106372013/06/17 : 1.5-dev19 10638 - MINOR: stats: remove the autofocus on the scope input field 10639 - BUG/MEDIUM: Fix crt-list file parsing error: filtered name was ignored. 10640 - BUG/MEDIUM: ssl: EDH ciphers are not usable if no DH parameters present in pem file. 10641 - BUG/MEDIUM: shctx: makes the code independent on SSL runtime version. 10642 - MEDIUM: ssl: improve crt-list format to support negation 10643 - BUG: ssl: fix crt-list for clients not supporting SNI 10644 - MINOR: stats: show soft-stopped servers in different color 10645 - BUG/MINOR: config: "source" does not work in defaults section 10646 - BUG: regex: fix pcre compile error when using JIT 10647 - MINOR: ssl: add pattern fetch 'ssl_c_sha1' 10648 - BUG: ssl: send payload gets corrupted if tune.ssl.maxrecord is used 10649 - MINOR: show PCRE version and JIT status in -vv 10650 - BUG/MINOR: jit: don't rely on USE flag to detect support 10651 - DOC: readme: add suggestion to link against static openssl 10652 - DOC: examples: provide simplified ssl configuration 10653 - REORG: tproxy: prepare the transparent proxy defines for accepting other OSes 10654 - MINOR: tproxy: add support for FreeBSD 10655 - MINOR: tproxy: add support for OpenBSD 10656 - DOC: examples: provide an example of transparent proxy configuration for FreeBSD 8 10657 - CLEANUP: fix minor typo in error message. 10658 - CLEANUP: fix missing include <string.h> in proto/listener.h 10659 - CLEANUP: protect checks.h from multiple inclusions 10660 - MINOR: compression: acl "res.comp" and fetch "res.comp_algo" 10661 - BUG/MINOR: http: add-header/set-header did not accept the ACL condition 10662 - BUILD: mention in the Makefile that USE_PCRE_JIT is for libpcre >= 8.32 10663 - BUG/MEDIUM: splicing is broken since 1.5-dev12 10664 - BUG/MAJOR: acl: add implicit arguments to the resolve list 10665 - BUG/MINOR: tcp: fix error reporting for TCP rules 10666 - CLEANUP: peers: remove a bit of spaghetti to prepare for the next bugfix 10667 - MINOR: stick-table: allow to allocate an entry without filling it 10668 - BUG/MAJOR: peers: fix an overflow when syncing strings larger than 16 bytes 10669 - MINOR: session: only call http_send_name_header() when changing the server 10670 - MINOR: tcp: report the erroneous word in tcp-request track* 10671 - BUG/MAJOR: backend: consistent hash can loop forever in certain circumstances 10672 - BUG/MEDIUM: log: fix regression on log-format handling 10673 - MEDIUM: log: report file name, line number, and directive name with log-format errors 10674 - BUG/MINOR: cli: "clear table" did not work anymore without a key 10675 - BUG/MINOR: cli: "clear table xx data.xx" does not work anymore 10676 - BUG/MAJOR: http: compression still has defects on chunked responses 10677 - BUG/MINOR: stats: fix confirmation links on the stats interface 10678 - BUG/MINOR: stats: the status bar does not appear anymore after a change 10679 - BUG/MEDIUM: stats: allocate the stats frontend also on "stats bind-process" 10680 - BUG/MEDIUM: stats: fix a regression when dealing with POST requests 10681 - BUG/MINOR: fix unterminated ACL array in compression 10682 - BUILD: last fix broke non-linux platforms 10683 - MINOR: init: indicate the SSL runtime version on -vv. 10684 - BUG/MEDIUM: compression: the deflate algorithm must use global settings as well 10685 - BUILD: stdbool is not portable (again) 10686 - DOC: readme: add a small reminder about restrictions to respect in the code 10687 - MINOR: ebtree: add new eb_next_dup/eb_prev_dup() functions to visit duplicates 10688 - BUG/MINOR: acl: fix a double free during exit when using PCRE_JIT 10689 - DOC: fix wrong copy-paste in the rspdel example 10690 - MINOR: counters: make it easier to extend the amount of tracked counters 10691 - MEDIUM: counters: add support for tracking a third counter 10692 - MEDIUM: counters: add a new "gpc0_rate" counter in stick-tables 10693 - BUG/MAJOR: http: always ensure response buffer has some room for a response 10694 - MINOR: counters: add fetch/acl sc*_tracked to indicate whether a counter is tracked 10695 - MINOR: defaults: allow REQURI_LEN and CAPTURE_LEN to be redefined 10696 - MINOR: log: add a new flag 'L' for locally processed requests 10697 - MINOR: http: add full-length header fetch methods 10698 - MEDIUM: protocol: implement a "drain" function in protocol layers 10699 - MEDIUM: http: add a new "http-response" ruleset 10700 - MEDIUM: http: add the "set-nice" action to http-request and http-response 10701 - MEDIUM: log: add a log level override value in struct session 10702 - MEDIUM: http: add support for action "set-log-level" in http-request/http-response 10703 - MEDIUM: http: add support for "set-tos" in http-request/http-response 10704 - MEDIUM: http: add the "set-mark" action on http-request/http-response rules 10705 - MEDIUM: tcp: add "tcp-request connection expect-proxy layer4" 10706 - MEDIUM: acl: automatically detect the type of certain fetches 10707 - MEDIUM: acl: remove a lot of useless ACLs that are equivalent to their fetches 10708 - MEDIUM: acl: remove 15 additional useless ACLs that are equivalent to their fetches 10709 - DOC: major reorg of ACL + sample fetch 10710 - CLEANUP: http: remove the bogus urlp_ip ACL match 10711 - MINOR: acl: add the new "env()" fetch method to retrieve an environment variable 10712 - BUG/MINOR: acl: correctly consider boolean fetches when doing casts 10713 - BUG/CRITICAL: fix a possible crash when using negative header occurrences 10714 - DOC: update ROADMAP file 10715 - MEDIUM: counters: use sc0/sc1/sc2 instead of sc1/sc2/sc3 10716 - MEDIUM: stats: add proxy name filtering on the statistic page 10717 107182013/04/03 : 1.5-dev18 10719 - DOCS: Add explanation of intermediate certs to crt paramater 10720 - DOC: typo and minor fixes in compression paragraph 10721 - MINOR: config: http-request configuration error message misses new keywords 10722 - DOC: minor typo fix in documentation 10723 - BUG/MEDIUM: ssl: ECDHE ciphers not usable without named curve configured. 10724 - MEDIUM: ssl: add bind-option "strict-sni" 10725 - MEDIUM: ssl: add mapping from SNI to cert file using "crt-list" 10726 - MEDIUM: regex: Use PCRE JIT in acl 10727 - DOC: simplify bind option "interface" explanation 10728 - DOC: tfo: bump required kernel to linux-3.7 10729 - BUILD: add explicit support for TFO with USE_TFO 10730 - MEDIUM: New cli option -Ds for systemd compatibility 10731 - MEDIUM: add haproxy-systemd-wrapper 10732 - MEDIUM: add systemd service 10733 - BUG/MEDIUM: systemd-wrapper: don't leak zombie processes 10734 - BUG/MEDIUM: remove supplementary groups when changing gid 10735 - BUG/MEDIUM: config: fix parser crash with bad bind or server address 10736 - BUG/MINOR: Correct logic in cut_crlf() 10737 - CLEANUP: checks: Make desc argument to set_server_check_status const 10738 - CLEANUP: dumpstats: Make cli_release_handler() static 10739 - MEDIUM: server: Break out set weight processing code 10740 - MEDIUM: server: Allow relative weights greater than 100% 10741 - MEDIUM: server: Tighten up parsing of weight string 10742 - MEDIUM: checks: Add agent health check 10743 - BUG/MEDIUM: ssl: openssl 0.9.8 doesn't open /dev/random before chroot 10744 - BUG/MINOR: time: frequency counters are not totally accurate 10745 - BUG/MINOR: http: don't process abortonclose when request was sent 10746 - BUG/MEDIUM: stream_interface: don't close outgoing connections on shutw() 10747 - BUG/MEDIUM: checks: ignore late resets after valid responses 10748 - DOC: fix bogus recommendation on usage of gpc0 counter 10749 - BUG/MINOR: http-compression: lookup Cache-Control in the response, not the request 10750 - MINOR: signal: don't block SIGPROF by default 10751 - OPTIM: epoll: make use of EPOLLRDHUP 10752 - OPTIM: splice: detect shutdowns and avoid splice() == 0 10753 - OPTIM: splice: assume by default that splice is working correctly 10754 - BUG/MINOR: log: temporary fix for lost SSL info in some situations 10755 - BUG/MEDIUM: peers: only the last peers section was used by tables 10756 - BUG/MEDIUM: config: verbosely reject peers sections with multiple local peers 10757 - BUG/MINOR: epoll: use a fix maxevents argument in epoll_wait() 10758 - BUG/MINOR: config: fix improper check for failed memory alloc in ACL parser 10759 - BUG/MINOR: config: free peer's address when exiting upon parsing error 10760 - BUG/MINOR: config: check the proper variable when parsing log minlvl 10761 - BUG/MEDIUM: checks: ensure the health_status is always within bounds 10762 - BUG/MINOR: cli: show sess should always validate s->listener 10763 - BUG/MINOR: log: improper NULL return check on utoa_pad() 10764 - CLEANUP: http: remove a useless null check 10765 - CLEANUP: tcp/unix: remove useless NULL check in {tcp,unix}_bind_listener() 10766 - BUG/MEDIUM: signal: signal handler does not properly check for signal bounds 10767 - BUG/MEDIUM: tools: off-by-one in quote_arg() 10768 - BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage 10769 - BUG/MINOR: unix: remove the 'level' field from the ux struct 10770 - CLEANUP: http: don't try to deinitialize http compression if it fails before init 10771 - CLEANUP: config: slowstart is never negative 10772 - CLEANUP: config: maxcompcpuusage is never negative 10773 - BUG/MEDIUM: log: emit '-' for empty fields again 10774 - BUG/MEDIUM: checks: fix a race condition between checks and observe layer7 10775 - BUILD: fix a warning emitted by isblank() on non-c99 compilers 10776 - BUILD: improve the makefile's support for libpcre 10777 - MEDIUM: halog: add support for counting per source address (-ic) 10778 - MEDIUM: tools: make str2sa_range support all address syntaxes 10779 - MEDIUM: config: make use of str2sa_range() instead of str2sa() 10780 - MEDIUM: config: use str2sa_range() to parse server addresses 10781 - MEDIUM: config: use str2sa_range() to parse peers addresses 10782 - MINOR: tests: add a config file to ease address parsing tests. 10783 - MINOR: ssl: add a global tunable for the max SSL/TLS record size 10784 - BUG/MINOR: syscall: fix NR_accept4 system call on sparc/linux 10785 - BUILD/MINOR: syscall: add definition of NR_accept4 for ARM 10786 - MINOR: config: report missing peers section name 10787 - BUG/MEDIUM: tools: fix bad character handling in str2sa_range() 10788 - BUG/MEDIUM: stats: never apply "unix-bind prefix" to the global stats socket 10789 - MINOR: tools: prepare str2sa_range() to return an error message 10790 - BUG/MEDIUM: checks: don't call connect() on unsupported address families 10791 - MINOR: tools: prepare str2sa_range() to accept a prefix 10792 - MEDIUM: tools: make str2sa_range() parse unix addresses too 10793 - MEDIUM: config: make str2listener() use str2sa_range() to parse unix addresses 10794 - MEDIUM: config: use a single str2sa_range() call to parse bind addresses 10795 - MEDIUM: config: use str2sa_range() to parse log addresses 10796 - CLEANUP: tools: remove str2sun() which is not used anymore. 10797 - MEDIUM: config: add complete support for str2sa_range() in dispatch 10798 - MEDIUM: config: add complete support for str2sa_range() in server addr 10799 - MEDIUM: config: add complete support for str2sa_range() in 'server' 10800 - MEDIUM: config: add complete support for str2sa_range() in 'peer' 10801 - MEDIUM: config: add complete support for str2sa_range() in 'source' and 'usesrc' 10802 - CLEANUP: minor cleanup in str2sa_range() and str2ip() 10803 - CLEANUP: config: do not use multiple errmsg at once 10804 - MEDIUM: tools: support specifying explicit address families in str2sa_range() 10805 - MAJOR: listener: support inheriting a listening fd from the parent 10806 - MAJOR: tools: support environment variables in addresses 10807 - BUG/MEDIUM: http: add-header should not emit "-" for empty fields 10808 - BUG/MEDIUM: config: ACL compatibility check on "redirect" was wrong 10809 - BUG/MEDIUM: http: fix another issue caused by http-send-name-header 10810 - DOC: mention the new HTTP 307 and 308 redirect statues 10811 - MEDIUM: poll: do not use FD_* macros anymore 10812 - BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE 10813 - BUG/MINOR: acl: ssl_fc_{alg,use}_keysize must parse integers, not strings 10814 - BUG/MINOR: acl: ssl_c_used, ssl_fc{,_has_crt,_has_sni} take no pattern 10815 - BUILD: fix usual isdigit() warning on solaris 10816 - BUG/MEDIUM: tools: vsnprintf() is not always reliable on Solaris 10817 - OPTIM: buffer: remove one jump in buffer_count() 10818 - OPTIM: http: improve branching in chunk size parser 10819 - OPTIM: http: optimize the response forward state machine 10820 - BUILD: enable poll() by default in the makefile 10821 - BUILD: add explicit support for Mac OS/X 10822 - BUG/MAJOR: http: use a static storage for sample fetch context 10823 - BUG/MEDIUM: ssl: improve error processing and reporting in ssl_sock_load_cert_list_file() 10824 - BUG/MAJOR: http: fix regression introduced by commit a890d072 10825 - BUG/MAJOR: http: fix regression introduced by commit d655ffe 10826 - BUG/CRITICAL: using HTTP information in tcp-request content may crash the process 10827 - MEDIUM: acl: remove flag ACL_MAY_LOOKUP which is improperly used 10828 - MEDIUM: samples: use new flags to describe compatibility between fetches and their usages 10829 - MINOR: log: indicate it when some unreliable sample fetches are logged 10830 - MEDIUM: samples: move payload-based fetches and ACLs to their own file 10831 - MINOR: backend: rename sample fetch functions and declare the sample keywords 10832 - MINOR: frontend: rename sample fetch functions and declare the sample keywords 10833 - MINOR: listener: rename sample fetch functions and declare the sample keywords 10834 - MEDIUM: http: unify acl and sample fetch functions 10835 - MINOR: session: rename sample fetch functions and declare the sample keywords 10836 - MAJOR: acl: make all ACLs reference the fetch function via a sample. 10837 - MAJOR: acl: remove the arg_mask from the ACL definition and use the sample fetch's 10838 - MAJOR: acl: remove fetch argument validation from the ACL struct 10839 - MINOR: http: add new direction-explicit sample fetches for headers and cookies 10840 - MINOR: payload: add new direction-explicit sample fetches 10841 - CLEANUP: acl: remove ACL hooks which were never used 10842 - MEDIUM: proxy: remove acl_requires and just keep a flag "http_needed" 10843 - MINOR: sample: provide a function to report the name of a sample check point 10844 - MAJOR: acl: convert all ACL requires to SMP use+val instead of ->requires 10845 - CLEANUP: acl: remove unused references to ACL_USE_* 10846 - MINOR: http: replace acl_parse_ver with acl_parse_str 10847 - MEDIUM: acl: move the ->parse, ->match and ->smp fields to acl_expr 10848 - MAJOR: acl: add option -m to change the pattern matching method 10849 - MINOR: acl: remove the use_count in acl keywords 10850 - MEDIUM: acl: have a pointer to the keyword name in acl_expr 10851 - MEDIUM: acl: support using sample fetches directly in ACLs 10852 - MEDIUM: http: remove val_usr() to validate user_lists 10853 - MAJOR: sample: maintain a per-proxy list of the fetch args to resolve 10854 - MINOR: ssl: add support for the "alpn" bind keyword 10855 - MINOR: http: status code 303 is HTTP/1.1 only 10856 - MEDIUM: http: implement redirect 307 and 308 10857 - MINOR: http: status 301 should not be marked non-cacheable 10858 108592012/12/28 : 1.5-dev17 10860 - MINOR: ssl: Setting global tune.ssl.cachesize value to 0 disables SSL session cache. 10861 - BUG/MEDIUM: stats: fix stats page regression introduced by commit 20b0de5 10862 - BUG/MINOR: stats: last fix was still wrong 10863 - BUG/MINOR: stats: http-request rules still don't cope with stats 10864 - BUG/MINOR: http: http-request add-header emits a corrupted header 10865 - BUG/MEDIUM: stats: disable request analyser when processing POST or HEAD 10866 - BUG/MINOR: log: make log-format, unique-id-format and add-header more independant 10867 - BUILD: log: unused variable svid 10868 - CLEANUP: http: rename the misleading http_check_access_rule 10869 - MINOR: http: move redirect rule processing to its own function 10870 - REORG: config: move the http redirect rule parser to proto_http.c 10871 - MEDIUM: http: add support for "http-request redirect" rules 10872 - MEDIUM: http: add support for "http-request tarpit" rule 10873 108742012/12/24 : 1.5-dev16 10875 - BUG/MEDIUM: ssl: Prevent ssl error from affecting other connections. 10876 - BUG/MINOR: ssl: error is not reported if it occurs simultaneously with peer close detection. 10877 - MINOR: ssl: add fetch and acl "ssl_c_used" to check if current SSL session uses a client certificate. 10878 - MINOR: contrib: make the iprange tool grep for addresses 10879 - CLEANUP: polling: gcc doesn't always optimize constants away 10880 - OPTIM: poll: optimize fd management functions for low register count CPUs 10881 - CLEANUP: poll: remove a useless double-check on fdtab[fd].owner 10882 - OPTIM: epoll: use a temp variable for intermediary flag computations 10883 - OPTIM: epoll: current fd does not count as a new one 10884 - BUG/MINOR: poll: the I/O handler was called twice for polled I/Os 10885 - MINOR: http: make resp_ver and status ACLs check for the presence of a response 10886 - BUG/MEDIUM: stream-interface: fix possible stalls during transfers 10887 - BUG/MINOR: stream_interface: don't return when the fd is already set 10888 - BUG/MEDIUM: connection: always update connection flags prior to computing polling 10889 - CLEANUP: buffer: use buffer_empty() instead of buffer_len()==0 10890 - BUG/MAJOR: stream_interface: fix occasional data transfer freezes 10891 - BUG/MEDIUM: stream_interface: fix another case where the reader might not be woken up 10892 - BUG/MINOR: http: don't abort client connection on premature responses 10893 - BUILD: no need to clean up when making git-tar 10894 - MINOR: log: add a tag for amount of bytes uploaded from client to server 10895 - BUG/MEDIUM: log: fix possible segfault during config parsing 10896 - MEDIUM: log: change a few log tokens to make them easier to remember 10897 - BUG/MINOR: log: add_to_logformat_list() used the wrong constants 10898 - MEDIUM: log-format: make the format parser more robust and more extensible 10899 - MINOR: sample: support cast from bool to string 10900 - MINOR: samples: add a function to fetch and convert any sample to a string 10901 - MINOR: log: add lf_text_len 10902 - MEDIUM: log: add the ability to include samples in logs 10903 - REORG: stats: massive code reorg and cleanup 10904 - REORG: stats: move the HTTP header injection to proto_http 10905 - REORG: stats: functions are now HTTP/CLI agnostic 10906 - BUG/MINOR: log: fix regression introduced by commit 8a3f52 10907 - MINOR: chunks: centralize the trash chunk allocation 10908 - MEDIUM: stats: use hover boxes instead of title to report details 10909 - MEDIUM: stats: use multi-line tips to display detailed counters 10910 - MINOR: tools: simplify the use of the int to ascii macros 10911 - MINOR: stats: replace STAT_FMT_CSV with STAT_FMT_HTML 10912 - MINOR: http: prepare to support more http-request actions 10913 - MINOR: log: make parse_logformat_string() take a const char * 10914 - MEDIUM: http: add http-request 'add-header' and 'set-header' to build headers 10915 109162012/12/12 : 1.5-dev15 10917 - DOC: add a few precisions on compression 10918 - BUG/MEDIUM: ssl: Fix handshake failure on session resumption with client cert. 10919 - BUG/MINOR: ssl: One free session in cache remains unused. 10920 - BUG/MEDIUM: ssl: first outgoing connection would fail with {ca,crt}-ignore-err 10921 - MEDIUM: ssl: manage shared cache by blocks for huge sessions. 10922 - MINOR: acl: add fetch for server session rate 10923 - BUG/MINOR: compression: Content-Type is case insensitive 10924 - MINOR: compression: disable on multipart or status != 200 10925 - BUG/MINOR: http: don't report client aborts as server errors 10926 - MINOR: stats: compute the ratio of compressed response based on 2xx responses 10927 - MINOR: http: factor out the content-type checks 10928 - BUG/MAJOR: stats: correctly check for a possible divide error when showing compression ratios 10929 - BUILD: ssl: OpenSSL 0.9.6 has no renegociation 10930 - BUG/MINOR: http: disable compression when message has no body 10931 - MINOR: compression: make the stats a bit more robust 10932 - BUG/MEDIUM: comp: DEFAULT_MAXZLIBMEM was expressed in bytes and not megabytes 10933 - MINOR: connection: don't remove failed handshake flags 10934 - MEDIUM: connection: add an error code in connections 10935 - MEDIUM: connection: add minimal error reporting in logs for incomplete connections 10936 - MEDIUM: connection: add error reporting for the PROXY protocol header 10937 - MEDIUM: connection: add error reporting for the SSL 10938 - DOC: document the connection error format in logs 10939 - BUG/MINOR: http: don't log a 503 on client errors while waiting for requests 10940 - BUILD: stdbool is not portable 10941 - BUILD: ssl: NAME_MAX is not portable, use MAXPATHLEN instead 10942 - BUG/MAJOR: raw_sock: must check error code on hangup 10943 - BUG/MAJOR: polling: do not set speculative events on ERR nor HUP 10944 - BUG/MEDIUM: session: fix FD leak when transport layer logging is enabled 10945 - MINOR: stats: add a few more information on session dump 10946 - BUG/MINOR: tcp: set the ADDR_TO_SET flag on outgoing connections 10947 - CLEANUP: connection: remove unused server/proxy/task/si_applet declarations 10948 - BUG/MEDIUM: tcp: process could theorically crash on lack of source ports 10949 - MINOR: cfgparse: mention "interface" in the list of allowed "source" options 10950 - MEDIUM: connection: introduce "struct conn_src" for servers and proxies 10951 - CLEANUP: proto_tcp: use the same code to bind servers and backends 10952 - CLEANUP: backend: use the same tproxy address selection code for servers and backends 10953 - BUG/MEDIUM: stick-tables: conversions to strings were broken in dev13 10954 - MEDIUM: proto_tcp: add support for tracking L7 information 10955 - MEDIUM: counters: add sc1_trackers/sc2_trackers 10956 - MINOR: http: add the "base32" pattern fetch function 10957 - MINOR: http: add the "base32+src" fetch method. 10958 - CLEANUP: session: use an array for the stick counters 10959 - BUG/MINOR: proto_tcp: fix parsing of "table" in track-sc1/2 10960 - BUG/MINOR: proto_tcp: bidirectional fetches not supported anymore in track-sc1/2 10961 - BUG/MAJOR: connection: always recompute polling status upon I/O 10962 - BUG/MINOR: connection: remove a few synchronous calls to polling updates 10963 - MINOR: config: improve error checking on TCP stick-table tracking 10964 - DOC: add some clarifications to the readme 10965 109662012/11/26 : 1.5-dev14 10967 - DOC: fix minor typos 10968 - BUG/MEDIUM: compression: does not forward trailers 10969 - MINOR: buffer_dump with ASCII 10970 - BUG/MEDIUM: checks: mark the check as stopped after a connect error 10971 - BUG/MEDIUM: checks: ensure we completely disable polling upon success 10972 - BUG/MINOR: checks: don't mark the FD as closed before transport close 10973 - MEDIUM: checks: avoid accumulating TIME_WAITs during checks 10974 - MINOR: cli: report the msg state in full text in "show sess $PTR" 10975 - CLEANUP: checks: rename some server check flags 10976 - MAJOR: checks: rework completely bogus state machine 10977 - BUG/MINOR: checks: slightly clean the state machine up 10978 - MEDIUM: checks: avoid waking the application up for pure TCP checks 10979 - MEDIUM: checks: close the socket as soon as we have a response 10980 - BUG/MAJOR: checks: close FD on all timeouts 10981 - MINOR: checks: fix recv polling after connect() 10982 - MEDIUM: connection: provide a common conn_full_close() function 10983 - BUG/MEDIUM: checks: prevent TIME_WAITs from appearing also on timeouts 10984 - BUG/MAJOR: peers: the listener's maxaccept was not set and caused loops 10985 - MINOR: listeners: make the accept loop more robust when maxaccept==0 10986 - BUG/MEDIUM: acl: correctly resolve all args, not just the first one 10987 - BUG/MEDIUM: acl: make prue_acl_expr() correctly free ACL expressions upon exit 10988 - BUG/MINOR: stats: fix inversion of the report of a check in progress 10989 - MEDIUM: tcp: add explicit support for delayed ACK in connect() 10990 - BUG/MEDIUM: connection: always disable polling upon error 10991 - MINOR: connection: abort earlier when errors are detected 10992 - BUG/MEDIUM: checks: report handshake failures 10993 - BUG/MEDIUM: connection: local_send_proxy must wait for connection to establish 10994 - MINOR: tcp: add support for the "v6only" bind option 10995 - MINOR: stats: also report the computed compression savings in html stats 10996 - MINOR: stats: report the total number of compressed responses per front/back 10997 - MINOR: tcp: add support for the "v4v6" bind option 10998 - DOC: stats: document the comp_rsp stats column 10999 - BUILD: buffer: fix another isprint() warning on solaris 11000 - MINOR: cli: add support for the "show sess all" command 11001 - BUG/MAJOR: cli: show sess <id> may randomly corrupt the back-ref list 11002 - MINOR: cli: improve output format for show sess $ptr 11003 110042012/11/22 : 1.5-dev13 11005 - BUILD: fix build issue without USE_OPENSSL 11006 - BUILD: fix compilation error with DEBUG_FULL 11007 - DOC: ssl: remove prefer-server-ciphers documentation 11008 - DOC: ssl: surround keywords with quotes 11009 - DOC: fix minor typo on http-send-name-header 11010 - BUG/MEDIUM: acls using IPv6 subnets patterns incorrectly match IPs 11011 - BUG/MAJOR: fix a segfault on option http_proxy and url_ip acl 11012 - MEDIUM: http: accept IPv6 values with (s)hdr_ip acl 11013 - BUILD: report zlib support in haproxy -vv 11014 - DOC: compression: add some details and clean up the formatting 11015 - DOC: Change is_ssl acl to ssl_fc acl in example 11016 - DOC: make it clear what the HTTP request size is 11017 - MINOR: ssl: try to load Diffie-Hellman parameters from cert file 11018 - DOC: ssl: update 'crt' statement on 'bind' about Diffie-Hellman parameters loading 11019 - MINOR: ssl: add elliptic curve Diffie-Hellman support for ssl key generation 11020 - DOC: ssl: add 'ecdhe' statement on 'bind' 11021 - MEDIUM: ssl: add client certificate authentication support 11022 - DOC: ssl: add 'verify', 'cafile' and 'crlfile' statements on 'bind' 11023 - MINOR: ssl: add fetch and ACL 'client_crt' to test a client cert is present 11024 - DOC: ssl: add fetch and ACL 'client_cert' 11025 - MINOR: ssl: add ignore verify errors options 11026 - DOC: ssl: add 'ca-ignore-err' and 'crt-ignore-err' statements on 'bind' 11027 - MINOR: ssl: add fetch and ACL 'ssl_verify_result' 11028 - DOC: ssl: add fetch and ACL 'ssl_verify_result' 11029 - MINOR: ssl: add fetches and ACLs to return verify errors 11030 - DOC: ssl: add fetches and ACLs 'ssl_verify_crterr', 'ssl_verify_caerr', and 'ssl_verify_crterr_depth' 11031 - MINOR: ssl: disable shared memory and locks on session cache if nbproc == 1 11032 - MINOR: ssl: add build param USE_PRIVATE_CACHE to build cache without shared memory 11033 - MINOR: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'. 11034 - DOC: ssl : add statements 'notlsv11' and 'notlsv12' and rename 'notlsv1' to 'notlsv10'. 11035 - MEDIUM: config: authorize frontend and listen without bind. 11036 - MINOR: ssl: add statement 'no-tls-tickets' on bind to disable stateless session resumption 11037 - DOC: ssl: add 'no-tls-tickets' statement documentation. 11038 - BUG/MINOR: ssl: Fix CRL check was not enabled when crlfile was specified. 11039 - BUG/MINOR: build: Fix compilation issue on openssl 0.9.6 due to missing CRL feature. 11040 - BUG/MINOR: conf: Fix 'maxsslconn' statement error if built without OPENSSL. 11041 - BUG/MINOR: build: Fix failure with USE_OPENSSL=1 and USE_FUTEX=1 on archs i486 and i686. 11042 - MINOR: ssl: remove prefer-server-ciphers statement and set it as the default on ssl listeners. 11043 - BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes 11044 - MINOR: ssl: add 'crt-base' and 'ca-base' global statements. 11045 - MEDIUM: conf: rename 'nosslv3' and 'notlsvXX' statements 'no-sslv3' and 'no-tlsvXX'. 11046 - MEDIUM: conf: rename 'cafile' and 'crlfile' statements 'ca-file' and 'crl-file' 11047 - MINOR: ssl: use bit fields to store ssl options instead of one int each 11048 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on bind. 11049 - MINOR: ssl: add 'force-sslv3' and 'force-tlsvXX' statements on server 11050 - MINOR: ssl: add defines LISTEN_DEFAULT_CIPHERS and CONNECT_DEFAULT_CIPHERS. 11051 - BUG/MINOR: ssl: Fix issue on server statements 'no-tls*' and 'no-sslv3' 11052 - MINOR: ssl: move ssl context init for servers from cfgparse.c to ssl_sock.c 11053 - MEDIUM: ssl: reject ssl server keywords in default-server statement 11054 - MINOR: ssl: add statement 'no-tls-tickets' on server side. 11055 - MINOR: ssl: add statements 'verify', 'ca-file' and 'crl-file' on servers. 11056 - DOC: Fix rename of options cafile and crlfile to ca-file and crl-file. 11057 - MINOR: sample: manage binary to string type convertion in stick-table and samples. 11058 - MINOR: acl: add parse and match primitives to use binary type on ACLs 11059 - MINOR: sample: export 'sample_get_trash_chunk(void)' 11060 - MINOR: conf: rename all ssl modules fetches using prefix 'ssl_fc' and 'ssl_c' 11061 - MINOR: ssl: add pattern and ACLs fetches 'ssl_fc_protocol', 'ssl_fc_cipher', 'ssl_fc_use_keysize' and 'ssl_fc_alg_keysize' 11062 - MINOR: ssl: add pattern fetch 'ssl_fc_session_id' 11063 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_version' and 'ssl_f_version' 11064 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_s_dn', 'ssl_c_i_dn', 'ssl_f_s_dn' and 'ssl_c_i_dn' 11065 - MINOR: ssl: add pattern and ACLs 'ssl_c_sig_alg' and 'ssl_f_sig_alg' 11066 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_key_alg' and 'ssl_f_key_alg' 11067 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_notbefore', 'ssl_c_notafter', 'ssl_f_notbefore' and 'ssl_f_notafter' 11068 - MINOR: ssl: add 'crt' statement on server. 11069 - MINOR: ssl: checks the consistency of a private key with the corresponding certificate 11070 - BUG/MEDIUM: ssl: review polling on reneg. 11071 - BUG/MEDIUM: ssl: Fix some reneg cases not correctly handled. 11072 - BUG/MEDIUM: ssl: Fix sometimes reneg fails if requested by server. 11073 - MINOR: build: allow packagers to specify the ssl cache size 11074 - MINOR: conf: add warning if ssl is not enabled and a certificate is present on bind. 11075 - MINOR: ssl: Add tune.ssl.lifetime statement in global. 11076 - MINOR: compression: Enable compression for IE6 w/SP2, IE7 and IE8 11077 - BUG: http: revert broken optimisation from 82fe75c1a79dac933391501b9d293bce34513755 11078 - DOC: duplicate ssl_sni section 11079 - MEDIUM: HTTP compression (zlib library support) 11080 - CLEANUP: use struct comp_ctx instead of union 11081 - BUILD: remove dependency to zlib.h 11082 - MINOR: compression: memlevel and windowsize 11083 - MEDIUM: use pool for zlib 11084 - MINOR: compression: try init in cfgparse.c 11085 - MINOR: compression: init before deleting headers 11086 - MEDIUM: compression: limit RAM usage 11087 - MINOR: compression: tune.comp.maxlevel 11088 - MINOR: compression: maximum compression rate limit 11089 - MINOR: log-format: check number of arguments in cfgparse.c 11090 - BUG/MEDIUM: compression: no Content-Type header but type in configuration 11091 - BUG/MINOR: compression: deinit zlib only when required 11092 - MEDIUM: compression: don't compress when no data 11093 - MEDIUM: compression: use pool for comp_ctx 11094 - MINOR: compression: rate limit in 'show info' 11095 - MINOR: compression: report zlib memory usage 11096 - BUG/MINOR: compression: dynamic level increase 11097 - DOC: compression: unsupported cases. 11098 - MINOR: compression: CPU usage limit 11099 - MEDIUM: http: add "redirect scheme" to ease HTTP to HTTPS redirection 11100 - BUG/MAJOR: ssl: missing tests in ACL fetch functions 11101 - MINOR: config: add a function to indent error messages 11102 - REORG: split "protocols" files into protocol and listener 11103 - MEDIUM: config: replace ssl_conf by bind_conf 11104 - CLEANUP: listener: remove unused conf->file and conf->line 11105 - MEDIUM: listener: add a minimal framework to register "bind" keyword options 11106 - MEDIUM: config: move the "bind" TCP parameters to proto_tcp 11107 - MEDIUM: move bind SSL parsing to ssl_sock 11108 - MINOR: config: improve error reporting for "bind" lines 11109 - MEDIUM: config: move the common "bind" settings to listener.c 11110 - MEDIUM: config: move all unix-specific bind keywords to proto_uxst.c 11111 - MEDIUM: config: enumerate full list of registered "bind" keywords upon error 11112 - MINOR: listener: add a scope field in the bind keyword lists 11113 - MINOR: config: pass the file and line to config keyword parsers 11114 - MINOR: stats: fill the file and line numbers in the stats frontend 11115 - MINOR: config: set the bind_conf entry on listeners created from a "listen" line. 11116 - MAJOR: listeners: use dual-linked lists to chain listeners with frontends 11117 - REORG: listener: move unix perms from the listener to the bind_conf 11118 - BUG: backend: balance hdr was broken since 1.5-dev11 11119 - MINOR: standard: make memprintf() support a NULL destination 11120 - MINOR: config: make str2listener() use memprintf() to report errors. 11121 - MEDIUM: stats: remove the stats_sock struct from the global struct 11122 - MINOR: ssl: set the listeners' data layer to ssl during parsing 11123 - MEDIUM: stats: make use of the standard "bind" parsers to parse global socket 11124 - DOC: move bind options to their own section 11125 - DOC: stats: refer to "bind" section for "stats socket" settings 11126 - DOC: fix index to reference bind and server options 11127 - BUG: http: do not print garbage on invalid requests in debug mode 11128 - BUG/MINOR: config: check the proper pointer to report unknown protocol 11129 - CLEANUP: connection: offer conn_prepare() to set up a connection 11130 - CLEANUP: config: fix typo inteface => interface 11131 - BUG: stats: fix regression introduced by commit 4348fad1 11132 - MINOR: cli: allow to set frontend maxconn to zero 11133 - BUG/MAJOR: http: chunk parser was broken with buffer changes 11134 - MEDIUM: monitor: simplify handling of monitor-net and mode health 11135 - MINOR: connection: add a pointer to the connection owner 11136 - MEDIUM: connection: make use of the owner instead of container_of 11137 - BUG/MINOR: ssl: report the L4 connection as established when possible 11138 - BUG/MEDIUM: proxy: must not try to stop disabled proxies upon reload 11139 - BUG/MINOR: config: use a copy of the file name in proxy configurations 11140 - BUG/MEDIUM: listener: don't pause protocols that do not support it 11141 - MEDIUM: proxy: add the global frontend to the list of normal proxies 11142 - BUG/MINOR: epoll: correctly disable FD polling in fd_rem() 11143 - MINOR: signal: really ignore signals configured with no handler 11144 - MINOR: buffers: add a few functions to write chars, strings and blocks 11145 - MINOR: raw_sock: always report asynchronous connection errors 11146 - MEDIUM: raw_sock: improve connection error reporting 11147 - REORG: connection: rename the data layer the "transport layer" 11148 - REORG: connection: rename app_cb "data" 11149 - MINOR: connection: provide a generic data layer wakeup callback 11150 - MINOR: connection: split conn_prepare() in two functions 11151 - MINOR: connection: add an init callback to the data_cb struct 11152 - MEDIUM: session: use a specific data_cb for embryonic sessions 11153 - MEDIUM: connection: use a generic data-layer init() callback 11154 - MEDIUM: connection: reorganize connection flags 11155 - MEDIUM: connection: only call the data->wake callback on activity 11156 - MEDIUM: connection: make it possible for data->wake to return an error 11157 - MEDIUM: session: register a data->wake callback to process errors 11158 - MEDIUM: connection: don't call the data->init callback upon error 11159 - MEDIUM: connection: it's not the data layer's role to validate the connection 11160 - MEDIUM: connection: automatically disable polling on error 11161 - REORG: connection: move the PROXY protocol management to connection.c 11162 - MEDIUM: connection: add a new local send-proxy transport callback 11163 - MAJOR: checks: make use of the connection layer to send checks 11164 - REORG: server: move the check-specific parts into a check subsection 11165 - MEDIUM: checks: use real buffers to store requests and responses 11166 - MEDIUM: check: add the ctrl and transport layers in the server check structure 11167 - MAJOR: checks: completely use the connection transport layer 11168 - MEDIUM: checks: add the "check-ssl" server option 11169 - MEDIUM: checks: enable the PROXY protocol with health checks 11170 - CLEANUP: checks: remove minor warnings for assigned but not used variables 11171 - MEDIUM: tcp: enable TCP Fast Open on systems which support it 11172 - BUG: connection: fix regression from commit 9e272bf9 11173 - CLEANUP: cttproxy: remove a warning on undeclared close() 11174 - BUG/MAJOR: ensure that hdr_idx is always reserved when L7 fetches are used 11175 - MEDIUM: listener: add support for linux's accept4() syscall 11176 - MINOR: halog: sort output by cookie code 11177 - BUG/MINOR: halog: -ad/-ac report the correct number of output lines 11178 - BUG/MINOR: halog: fix help message for -ut/-uto 11179 - MINOR: halog: add a parameter to limit output line count 11180 - BUILD: accept4: move the socketcall declaration outside of accept4() 11181 - MINOR: server: add minimal infrastructure to parse keywords 11182 - MINOR: standard: make indent_msg() support empty messages 11183 - MEDIUM: server: check for registered keywords when parsing unknown keywords 11184 - MEDIUM: server: move parsing of keyword "id" to server.c 11185 - BUG/MEDIUM: config: check-send-proxy was ignored if SSL was not builtin 11186 - MEDIUM: ssl: move "server" keyword SSL options parsing to ssl_sock.c 11187 - MEDIUM: log: suffix the frontend's name with '~' when using SSL 11188 - MEDIUM: connection: always unset the transport layer upon close 11189 - BUG/MINOR: session: fix some leftover from debug code 11190 - BUG/MEDIUM: session: enable the conn_session_update() callback 11191 - MEDIUM: connection: add a flag to hold the transport layer 11192 - MEDIUM: log: add a new LW_XPRT flag to pin the transport layer 11193 - MINOR: log: make lf_text use a const char * 11194 - MEDIUM: log: report SSL ciphers and version in logs using logformat %sslc/%sslv 11195 - REORG: http: rename msg->buf to msg->chn since it's a channel 11196 - CLEANUP: http: use 'chn' to name channel variables, not 'buf' 11197 - CLEANUP: channel: use 'chn' instead of 'buf' as local variable names 11198 - CLEANUP: tcp: use 'chn' instead of 'buf' or 'b' for channel pointer names 11199 - CLEANUP: stream_interface: use 'chn' instead of 'b' to name channel pointers 11200 - CLEANUP: acl: use 'chn' instead of 'b' to name channel pointers 11201 - MAJOR: channel: replace the struct buffer with a pointer to a buffer 11202 - OPTIM: channel: reorganize struct members to improve cache efficiency 11203 - CLEANUP: session: remove term_trace which is not used anymore 11204 - OPTIM: session: reorder struct session fields 11205 - OPTIM: connection: pack the struct target 11206 - DOC: document relations between internal entities 11207 - MINOR: ssl: add 'ssl_npn' sample/acl to extract TLS/NPN information 11208 - BUILD: ssl: fix shctx build on older compilers 11209 - MEDIUM: ssl: add support for the "npn" bind keyword 11210 - BUG: ssl: fix ssl_sni ACLs to correctly process regular expressions 11211 - MINOR: chunk: provide string compare functions 11212 - MINOR: sample: accept fetch keywords without parenthesis 11213 - MEDIUM: sample: pass an empty list instead of a null for fetch args 11214 - MINOR: ssl: improve socket behaviour upon handshake abort. 11215 - BUG/MEDIUM: http: set DONTWAIT on data when switching to tunnel mode 11216 - MEDIUM: listener: provide a fallback for accept4() when not supported 11217 - BUG/MAJOR: connection: risk of crash on certain tricky close scenario 11218 - MEDIUM: cli: allow the stats socket to be bound to a specific set of processes 11219 - OPTIM: channel: inline channel_forward's fast path 11220 - OPTIM: http: inline http_parse_chunk_size() and http_skip_chunk_crlf() 11221 - OPTIM: tools: inline hex2i() 11222 - CLEANUP: http: rename HTTP_MSG_DATA_CRLF state 11223 - MINOR: compression: automatically disable compression for older browsers 11224 - MINOR: compression: optimize memLevel to improve byte rate 11225 - BUG/MINOR: http: compression should consider all Accept-Encoding header values 11226 - BUILD: fix coexistence of openssl and zlib 11227 - MINOR: ssl: add pattern and ACLs fetches 'ssl_c_serial' and 'ssl_f_serial' 11228 - BUG/MEDIUM: command-line option -D must have precedence over "debug" 11229 - MINOR: tools: add a clear_addr() function to unset an address 11230 - BUG/MEDIUM: tcp: transparent bind to the source only when address is set 11231 - CLEANUP: remove trashlen 11232 - MAJOR: session: detach the connections from the stream interfaces 11233 - DOC: update document describing relations between internal entities 11234 - BUILD: make it possible to specify ZLIB path 11235 - MINOR: compression: add an offload option to remove the Accept-Encoding header 11236 - BUG: compression: disable auto-close and enable MSG_MORE during transfer 11237 - CLEANUP: completely remove trashlen 11238 - MINOR: chunk: add a function to reset a chunk 11239 - CLEANUP: replace chunk_printf() with chunk_appendf() 11240 - MEDIUM: make the trash be a chunk instead of a char * 11241 - MEDIUM: remove remains of BUFSIZE in HTTP auth and sample conversions 11242 - MEDIUM: stick-table: allocate the table key of size buffer size 11243 - BUG/MINOR: stream_interface: don't loop over ->snd_buf() 11244 - BUG/MINOR: session: ensure that we don't retry connection if some data were sent 11245 - OPTIM: session: don't process the whole session when only timers need a refresh 11246 - BUG/MINOR: session: mark the handshake as complete earlier 11247 - MAJOR: connection: remove the CO_FL_CURR_*_POL flag 11248 - BUG/MAJOR: always clear the CO_FL_WAIT_* flags after updating polling flags 11249 - MAJOR: sepoll: make the poller totally event-driven 11250 - OPTIM: stream_interface: disable reading when CF_READ_DONTWAIT is set 11251 - BUILD: compression: remove a build warning 11252 - MEDIUM: fd: don't unset fdtab[].updated upon delete 11253 - REORG: fd: move the speculative I/O management from ev_sepoll 11254 - REORG: fd: move the fd state management from ev_sepoll 11255 - REORG: fd: centralize the processing of speculative events 11256 - BUG: raw_sock: also consider ENOTCONN in addition to EAGAIN 11257 - BUILD: stream_interface: remove si_fd() and its references 11258 - BUILD: compression: enable build in BSD and OSX Makefiles 11259 - MAJOR: ev_select: make the poller support speculative events 11260 - MAJOR: ev_poll: make the poller support speculative events 11261 - MAJOR: ev_kqueue: make the poller support speculative events 11262 - MAJOR: polling: replace epoll with sepoll and remove sepoll 11263 - MAJOR: polling: remove unused callbacks from the poller struct 11264 - MEDIUM: http: refrain from sending "Connection: close" when Upgrade is present 11265 - CLEANUP: channel: remove any reference of the hijackers 11266 - CLEANUP: stream_interface: remove the external task type target 11267 - MAJOR: connection: replace struct target with a pointer to an enum 11268 - BUG: connection: fix typo in previous commit 11269 - BUG: polling: don't skip polled events in the spec list 11270 - MINOR: splice: disable it when the system returns EBADF 11271 - MINOR: build: allow packagers to specify the default maxzlibmem 11272 - BUG: halog: fix broken output limitation 11273 - BUG: proxy: fix server name lookup in get_backend_server() 11274 - BUG: compression: do not always increment the round counter on allocation failure 11275 - BUG/MEDIUM: compression: release the zlib pools between keep-alive requests 11276 - MINOR: global: don't prevent nbproc from being redefined 11277 - MINOR: config: support process ranges for "bind-process" 11278 - MEDIUM: global: add support for CPU binding on Linux ("cpu-map") 11279 - MINOR: ssl: rename and document the tune.ssl.cachesize option 11280 - DOC: update the PROXY protocol spec to support v2 11281 - MINOR: standard: add a simple popcount function 11282 - MEDIUM: adjust the maxaccept per listener depending on the number of processes 11283 - BUG: compression: properly disable compression when content-type does not match 11284 - MINOR: cli: report connection status in "show sess xxx" 11285 - BUG/MAJOR: stream_interface: certain workloads could cause get stuck 11286 - BUILD: cli: fix build when SSL is enabled 11287 - MINOR: cli: report the fd state in "show sess xxx" 11288 - MINOR: cli: report an error message on missing argument to compression rate 11289 - MINOR: http: add some debugging functions to pretty-print msg state names 11290 - BUG/MAJOR: stream_interface: read0 not always handled since dev12 11291 - DOC: documentation on http header capture is wrong 11292 - MINOR: http: allow the cookie capture size to be changed 11293 - DOC: http header capture has not been limited in size for a long time 11294 - DOC: update readme with build methods for BSD 11295 - BUILD: silence a warning on Solaris about usage of isdigit() 11296 - MINOR: stats: report HTTP compression stats per frontend and per backend 11297 - MINOR: log: add '%Tl' to log-format 11298 - MINOR: samples: update the url_param fetch to match parameters in the path 11299 113002012/09/10 : 1.5-dev12 11301 - CONTRIB: halog: sort URLs by avg bytes_read or total bytes_read 11302 - MEDIUM: ssl: add support for prefer-server-ciphers option 11303 - MINOR: IPv6 support for transparent proxy 11304 - MINOR: protocol: add SSL context to listeners if USE_OPENSSL is defined 11305 - MINOR: server: add SSL context to servers if USE_OPENSSL is defined 11306 - MEDIUM: connection: add a new handshake flag for SSL (CO_FL_SSL_WAIT_HS). 11307 - MEDIUM: ssl: add new files ssl_sock.[ch] to provide the SSL data layer 11308 - MEDIUM: config: add the 'ssl' keyword on 'bind' lines 11309 - MEDIUM: config: add support for the 'ssl' option on 'server' lines 11310 - MEDIUM: ssl: protect against client-initiated renegociation 11311 - BUILD: add optional support for SSL via the USE_OPENSSL flag 11312 - MEDIUM: ssl: add shared memory session cache implementation. 11313 - MEDIUM: ssl: replace OpenSSL's session cache with the shared cache 11314 - MINOR: ssl add global setting tune.sslcachesize to set SSL session cache size. 11315 - MEDIUM: ssl: add support for SNI and wildcard certificates 11316 - DOC: Typos cleanup 11317 - DOC: fix name for "option independant-streams" 11318 - DOC: specify the default value for maxconn in the context of a proxy 11319 - BUG/MINOR: to_log erased with unique-id-format 11320 - LICENSE: add licence exception for OpenSSL 11321 - BUG/MAJOR: cookie prefix doesn't support cookie-less servers 11322 - BUILD: add an AIX 5.2 (and later) target. 11323 - MEDIUM: fd/si: move peeraddr from struct fdinfo to struct connection 11324 - MINOR: halog: use the more recent dual-mode fgets2 implementation 11325 - BUG/MEDIUM: ebtree: ebmb_insert() must not call cmp_bits on full-length matches 11326 - CLEANUP: halog: make clean should also remove .o files 11327 - OPTIM: halog: make use of memchr() on platforms which provide a fast one 11328 - OPTIM: halog: improve cold-cache behaviour when loading a file 11329 - BUG/MINOR: ACL implicit arguments must be created with unresolved flag 11330 - MINOR: replace acl_fetch_{path,url}* with smp_fetch_* 11331 - MEDIUM: pattern: add the "base" sample fetch method 11332 - OPTIM: i386: make use of kernel-mode-linux when available 11333 - BUG/MINOR: tarpit: fix condition to return the HTTP 500 message 11334 - BUG/MINOR: polling: some events were not set in various pollers 11335 - MINOR: http: add the urlp_val ACL match 11336 - BUG: stktable: tcp_src_to_stktable_key() must return NULL on invalid families 11337 - MINOR: stats/cli: add plans to support more stick-table actions 11338 - MEDIUM: stats/cli: add support for "set table key" to enter values 11339 - REORG/MEDIUM: fd: remove FD_STCLOSE from struct fdtab 11340 - REORG/MEDIUM: fd: remove checks for FD_STERROR in ev_sepoll 11341 - REORG/MEDIUM: fd: get rid of FD_STLISTEN 11342 - REORG/MINOR: connection: move declaration to its own include file 11343 - REORG/MINOR: checks: put a struct connection into the server 11344 - MINOR: connection: add flags to the connection struct 11345 - MAJOR: get rid of fdtab[].state and use connection->flags instead 11346 - MINOR: fd: add a new I/O handler to fdtab 11347 - MEDIUM: polling: prepare to call the iocb() function when defined. 11348 - MEDIUM: checks: make use of fdtab->iocb instead of cb[] 11349 - MEDIUM: protocols: use the generic I/O callback for accept callbacks 11350 - MINOR: connection: add a handler for fd-based connections 11351 - MAJOR: connection: replace direct I/O callbacks with the connection callback 11352 - MINOR: fd: make fdtab->owner a connection and not a stream_interface anymore 11353 - MEDIUM: connection: remove the FD_POLL_* flags only once 11354 - MEDIUM: connection: extract the send_proxy callback from proto_tcp 11355 - MAJOR: tcp: remove the specific I/O callbacks for TCP connection probes 11356 - CLEANUP: remove the now unused fdtab direct I/O callbacks 11357 - MAJOR: remove the stream interface and task management code from sock_* 11358 - MEDIUM: stream_interface: pass connection instead of fd in sock_ops 11359 - MEDIUM: stream_interface: centralize the SI_FL_ERR management 11360 - MAJOR: connection: add a new CO_FL_CONNECTED flag 11361 - MINOR: rearrange tcp_connect_probe() and fix wrong return codes 11362 - MAJOR: connection: call data layer handshakes from the handler 11363 - MEDIUM: fd: remove the EV_FD_COND_* primitives 11364 - MINOR: sock_raw: move calls to si_data_close upper 11365 - REORG: connection: replace si_data_close() with conn_data_close() 11366 - MEDIUM: sock_raw: introduce a read0 callback that is different from shutr 11367 - MAJOR: stream_int: use a common stream_int_shut*() functions regardless of the data layer 11368 - MAJOR: fd: replace all EV_FD_* macros with new fd_*_* inline calls 11369 - MEDIUM: fd: add fd_poll_{recv,send} for use when explicit polling is required 11370 - MEDIUM: connection: add definitions for dual polling mechanisms 11371 - MEDIUM: connection: make use of the new polling functions 11372 - MAJOR: make use of conn_{data|sock}_{poll|stop|want}* in connection handlers 11373 - MEDIUM: checks: don't use FD_WAIT_* anymore 11374 - MINOR: fd: get rid of FD_WAIT_* 11375 - MEDIUM: stream_interface: offer a generic function for connection updates 11376 - MEDIUM: stream-interface: offer a generic chk_rcv function for connections 11377 - MEDIUM: stream-interface: add a snd_buf() callback to sock_ops 11378 - MEDIUM: stream-interface: provide a generic stream_int_chk_snd_conn() function 11379 - MEDIUM: stream-interface: provide a generic si_conn_send_cb callback 11380 - MEDIUM: stream-interface: provide a generic stream_sock_read0() function 11381 - REORG/MAJOR: use "struct channel" instead of "struct buffer" 11382 - REORG/MAJOR: extract "struct buffer" from "struct channel" 11383 - MINOR: connection: provide conn_{data|sock}_{read0|shutw} functions 11384 - REORG: sock_raw: rename the files raw_sock* 11385 - MAJOR: raw_sock: extract raw_sock_to_buf() from raw_sock_read() 11386 - MAJOR: raw_sock: temporarily disable splicing 11387 - MINOR: stream-interface: add an rcv_buf callback to sock_ops 11388 - REORG: stream-interface: move sock_raw_read() to si_conn_recv_cb() 11389 - MAJOR: connection: split the send call into connection and stream interface 11390 - MAJOR: stream-interface: restore splicing mechanism 11391 - MAJOR: stream-interface: make conn_notify_si() more robust 11392 - MEDIUM: proxy-proto: don't use buffer flags in conn_si_send_proxy() 11393 - MAJOR: stream-interface: don't commit polling changes in every callback 11394 - MAJOR: stream-interface: fix splice not to call chk_snd by itself 11395 - MEDIUM: stream-interface: don't remove WAIT_DATA when a handshake is in progress 11396 - CLEANUP: connection: split sock_ops into data_ops, app_cp and si_ops 11397 - REORG: buffers: split buffers into chunk,buffer,channel 11398 - MAJOR: channel: remove the BF_OUT_EMPTY flag 11399 - REORG: buffer: move buffer_flush, b_adv and b_rew to buffer.h 11400 - MINOR: channel: rename bi_full to channel_full as it checks the whole channel 11401 - MINOR: buffer: provide a new buffer_full() function 11402 - MAJOR: channel: stop relying on BF_FULL to take action 11403 - MAJOR: channel: remove the BF_FULL flag 11404 - REORG: channel: move buffer_{replace,insert_line}* to buffer.{c,h} 11405 - CLEANUP: channel: usr CF_/CHN_ prefixes instead of BF_/BUF_ 11406 - CLEANUP: channel: use "channel" instead of "buffer" in function names 11407 - REORG: connection: move the target pointer from si to connection 11408 - MAJOR: connection: move the addr field from the stream_interface 11409 - MEDIUM: stream_interface: remove CAP_SPLTCP/CAP_SPLICE flags 11410 - MEDIUM: proto_tcp: remove any dependence on stream_interface 11411 - MINOR: tcp: replace tcp_src_to_stktable_key with addr_to_stktable_key 11412 - MEDIUM: connection: add an ->init function to data layer 11413 - MAJOR: session: introduce embryonic sessions 11414 - MAJOR: connection: make the PROXY decoder a handshake handler 11415 - CLEANUP: frontend: remove the old proxy protocol decoder 11416 - MAJOR: connection: rearrange the polling flags. 11417 - MEDIUM: connection: only call tcp_connect_probe when nothing was attempted yet 11418 - MEDIUM: connection: complete the polling cleanups 11419 - MEDIUM: connection: avoid calling handshakes when polling is required 11420 - MAJOR: stream_interface: continue to update data polling flags during handshakes 11421 - CLEANUP: fd: remove fdtab->flags 11422 - CLEANUP: fdtab: flatten the struct and merge the spec struct with the rest 11423 - CLEANUP: includes: fix includes for a number of users of fd.h 11424 - MINOR: ssl: disable TCP quick-ack by default on SSL listeners 11425 - MEDIUM: config: add a "ciphers" keyword to set SSL cipher suites 11426 - MEDIUM: config: add "nosslv3" and "notlsv1" on bind and server lines 11427 - BUG: ssl: mark the connection as waiting for an SSL connection during the handshake 11428 - BUILD: http: rename error_message http_error_message to fix conflicts on RHEL 11429 - BUILD: ssl: fix shctx build on RHEL with futex 11430 - BUILD: include sys/socket.h to fix build failure on FreeBSD 11431 - BUILD: fix build error without SSL (ssl_cert) 11432 - BUILD: ssl: use MAP_ANON instead of MAP_ANONYMOUS 11433 - BUG/MEDIUM: workaround an eglibc bug which truncates the pidfiles when nbproc > 1 11434 - MEDIUM: config: support per-listener backlog and maxconn 11435 - MINOR: session: do not send an HTTP/500 error on SSL sockets 11436 - MEDIUM: config: implement maxsslconn in the global section 11437 - BUG: tcp: close socket fd upon connect error 11438 - MEDIUM: connection: improve error handling around the data layer 11439 - MINOR: config: make the tasks "nice" value configurable on "bind" lines. 11440 - BUILD: shut a gcc warning introduced by commit 269ab31 11441 - MEDIUM: config: centralize handling of SSL config per bind line 11442 - BUILD: makefile: report USE_OPENSSL status in build options 11443 - BUILD: report openssl build settings in haproxy -vv 11444 - MEDIUM: ssl: add sample fetches for is_ssl, ssl_has_sni, ssl_sni_* 11445 - DOC: add a special acknowledgement for the stud project 11446 - DOC: add missing SSL options for servers and listeners 11447 - BUILD: automatically add -lcrypto for SSL 11448 - DOC: add some info about openssl build in the README 11449 114502012/06/04 : 1.5-dev11 11451 - BUG/MEDIUM: option forwardfor if-none doesn't work with some configurations 11452 - BUG/MAJOR: trash must always be the size of a buffer 11453 - DOC: fix minor regex example issue and improve doc on stats 11454 - MINOR: stream_interface: add a pointer to the listener for TARG_TYPE_CLIENT 11455 - MEDIUM: protocol: add a pointer to struct sock_ops to the listener struct 11456 - MINOR: checks: add on-marked-up option 11457 - MINOR: balance uri: added 'whole' parameter to include query string in hash calculation 11458 - MEDIUM: stream_interface: remove the si->init 11459 - MINOR: buffers: add a rewind function 11460 - BUG/MAJOR: fix regression on content-based hashing and http-send-name-header 11461 - MAJOR: http: stop using msg->sol outside the parsers 11462 - CLEANUP: http: make it more obvious that msg->som is always null outside of chunks 11463 - MEDIUM: http: get rid of msg->som which is not used anymore 11464 - MEDIUM: http: msg->sov and msg->sol will never wrap 11465 - BUG/MAJOR: checks: don't call set_server_status_* when no LB algo is set 11466 - BUG/MINOR: stop connect timeout when connect succeeds 11467 - REORG: move the send-proxy code to tcp_connect_write() 11468 - REORG/MINOR: session: detect the TCP monitor checks at the protocol accept 11469 - MINOR: stream_interface: introduce a new "struct connection" type 11470 - REORG/MINOR: stream_interface: move si->fd to struct connection 11471 - REORG/MEDIUM: stream_interface: move applet->state and private to connection 11472 - MINOR: stream_interface: add a data channel close function 11473 - MEDIUM: stream_interface: call si_data_close() before releasing the si 11474 - MINOR: peers: use the socket layer operations from the peer instead of sock_raw 11475 - BUG/MINOR: checks: expire on timeout.check if smaller than timeout.connect 11476 - MINOR: add a new function call tracer for debugging purposes 11477 - BUG/MINOR: perform_http_redirect also needs to rewind the buffer 11478 - BUG/MAJOR: b_rew() must pass a signed offset to b_ptr() 11479 - BUG/MEDIUM: register peer sync handler in the proper order 11480 - BUG/MEDIUM: buffers: fix bi_putchr() to correctly advance the pointer 11481 - BUG/MINOR: fix option httplog validation with TCP frontends 11482 - BUG/MINOR: log: don't report logformat errors in backends 11483 - REORG/MINOR: use dedicated proxy flags for the cookie handling 11484 - BUG/MINOR: config: do not report twice the incompatibility between cookie and non-http 11485 - MINOR: http: add support for "httponly" and "secure" cookie attributes 11486 - BUG/MEDIUM: ensure that unresolved arguments are freed exactly once 11487 - BUG/MINOR: commit 196729ef used wrong condition resulting in freeing constants 11488 - MEDIUM: stats: add support for soft stop/soft start in the admin interface 11489 - MEDIUM: stats: add the ability to kill sessions from the admin interface 11490 - BUILD: add support for linux kernels >= 2.6.28 11491 114922012/05/14 : 1.5-dev10 11493 - BUG/MINOR: stats admin: "Unexpected result" was displayed unconditionally 11494 - BUG/MAJOR: acl: http_auth_group() must not accept any user from the userlist 11495 - CLEANUP: auth: make the code build again with DEBUG_AUTH 11496 - BUG/MEDIUM: config: don't crash at config load time on invalid userlist names 11497 - REORG: use the name sock_raw instead of stream_sock 11498 - MINOR: stream_interface: add a client target : TARG_TYPE_CLIENT 11499 - BUG/MEDIUM: stream_interface: restore get_src/get_dst 11500 - CLEANUP: sock_raw: remove last references to stream_sock 11501 - CLEANUP: stream_interface: stop exporting socket layer functions 11502 - MINOR: stream_interface: add an init callback to sock_ops 11503 - MEDIUM: stream_interface: derive the socket operations from the target 11504 - MAJOR: fd: remove the need for the socket layer to recheck the connection 11505 - MINOR: session: call the socket layer init function when a session establishes 11506 - MEDIUM: session: add support for tunnel timeouts 11507 - MINOR: standard: add a new debug macro : fddebug() 11508 - CLEANUP: fd: remove unused cb->b pointers in the struct fdtab 11509 - OPTIM: proto_http: don't enable quick-ack on empty buffers 11510 - OPTIM/MAJOR: ev_sepoll: process spec events after polled events 11511 - OPTIM/MEDIUM: stream_interface: add a new SI_FL_NOHALF flag 11512 115132012/05/08 : 1.5-dev9 11514 - MINOR: Add release callback to si_applet 11515 - CLEANUP: Fix some minor typos 11516 - MINOR: Add TO/FROM_SET flags to struct stream_interface 11517 - CLEANUP: Fix some minor whitespace issues 11518 - MINOR: stats admin: allow unordered parameters in POST requests 11519 - CLEANUP: fix typo in findserver() log message 11520 - MINOR: stats admin: use the backend id instead of its name in the form 11521 - MINOR: stats admin: reduce memcmp()/strcmp() calls on status codes 11522 - DOC: cleanup indentation, alignment, columns and chapters 11523 - DOC: fix some keywords arguments documentation 11524 - MINOR: cli: display the 4 IP addresses and ports on "show sess XXX" 11525 - BUG/MAJOR: log: possible segfault with logformat 11526 - MEDIUM: log: split of log_format generation 11527 - MEDIUM: log: New format-log flags: %Fi %Fp %Si %Sp %Ts %rt %H %pid 11528 - MEDIUM: log: Unique ID 11529 - MINOR: log: log-format: usable without httplog and tcplog 11530 - BUG/MEDIUM: balance source did not properly hash IPv6 addresses 11531 - MINOR: contrib/iprange: add a network IP range to mask converter 11532 - MEDIUM: session: implement the "use-server" directive 11533 - MEDIUM: log: add a new cookie flag 'U' to report situations where cookie is not used 11534 - MEDIUM: http: make extract_cookie_value() iterate over cookie values 11535 - MEDIUM: http: add cookie and scookie ACLs 11536 - CLEANUP: lb_first: add reference to a paper describing the original idea 11537 - MEDIUM: stream_sock: add a get_src and get_dst callback and remove SN_FRT_ADDR_SET 11538 - BUG/MINOR: acl: req_ssl_sni would randomly fail if a session ID is present 11539 - BUILD: http: make extract_cookie_value() return an int not size_t 11540 - BUILD: http: stop gcc-4.1.2 from complaining about possibly uninitialized values 11541 - CLEANUP: http: message parser must ignore HTTP_MSG_ERROR 11542 - MINOR: standard: add a memprintf() function to build formatted error messages 11543 - CLEANUP: remove a few warning about unchecked return values in debug code 11544 - MEDIUM: move message-related flags from transaction to message 11545 - DOC: add a diagram to explain how circular buffers work 11546 - MAJOR: buffer rework: replace ->send_max with ->o 11547 - MAJOR: buffer: replace buf->l with buf->{o+i} 11548 - MINOR: buffers: provide simple pointer normalization functions 11549 - MINOR: buffers: remove unused function buffer_contig_data() 11550 - MAJOR: buffers: replace buf->w with buf->p - buf->o 11551 - MAJOR: buffers: replace buf->r with buf->p + buf->i 11552 - MAJOR: http: move buffer->lr to http_msg->next 11553 - MAJOR: http: change msg->{som,col,sov,eoh} to be relative to buffer origin 11554 - CLEANUP: http: remove unused http_msg->col 11555 - MAJOR: http: turn http_msg->eol to a buffer-relative offset 11556 - MEDIUM: http: add a pointer to the buffer in http_msg 11557 - MAJOR: http: make http_msg->sol relative to buffer's origin 11558 - MEDIUM: http: http_send_name_header: remove references to msg and buffer 11559 - MEDIUM: http: remove buffer arg in a few header manipulation functions 11560 - MEDIUM: http: remove buffer arg in http_capture_bad_message 11561 - MEDIUM: http: remove buffer arg in http_msg_analyzer 11562 - MEDIUM: http: remove buffer arg in http_upgrade_v09_to_v10 11563 - MEDIUM: http: remove buffer arg in http_buffer_heavy_realign 11564 - MEDIUM: http: remove buffer arg in chunk parsing functions 11565 - MINOR: http: remove useless wrapping checks in http_msg_analyzer 11566 - MEDIUM: buffers: fix unsafe use of buffer_ignore at some places 11567 - MEDIUM: buffers: add new pointer wrappers and get rid of almost all buffer_wrap_add calls 11568 - MEDIUM: buffers: implement b_adv() to advance a buffer's pointer 11569 - MEDIUM: buffers: rename a number of buffer management functions 11570 - MEDIUM: http: add a prefetch function for ACL pattern fetch 11571 - MEDIUM: http: make all ACL fetch function use acl_prefetch_http() 11572 - BUG/MINOR: http_auth: ACLs are volatile, not permanent 11573 - MEDIUM: http/acl: merge all request and response ACL fetches of headers and cookies 11574 - MEDIUM: http/acl: make acl_fetch_hdr_{ip,val} rely on acl_fetch_hdr() 11575 - MEDIUM: add a new typed argument list parsing framework 11576 - MAJOR: acl: make use of the new argument parsing framework 11577 - MAJOR: acl: store the ACL argument types in the ACL keyword declaration 11578 - MEDIUM: acl: acl_find_target() now resolves arguments based on their types 11579 - MAJOR: acl: make acl_find_targets also resolve proxy names at config time 11580 - MAJOR: acl: ensure that implicit table and proxies are valid 11581 - MEDIUM: acl: remove unused tests for missing args when args are mandatory 11582 - MEDIUM: pattern: replace type pattern_arg with type arg 11583 - MEDIUM: pattern: get rid of arg_i in all functions making use of arguments 11584 - MEDIUM: pattern: use the standard arg parser 11585 - MEDIUM: pattern: add an argument validation callback to pattern descriptors 11586 - MEDIUM: pattern: report the precise argument parsing error when known. 11587 - MEDIUM: acl: remove the ACL_TEST_F_NULL_MATCH flag 11588 - MINOR: pattern: add a new 'sample' type to store fetched data 11589 - MEDIUM: pattern: add new sample types to replace pattern types 11590 - MAJOR: acl: make use of the new sample struct and get rid of acl_test 11591 - MEDIUM: pattern/acl: get rid of temp_pattern in ACLs 11592 - MEDIUM: acl: get rid of the SET_RES flags 11593 - MEDIUM: get rid of SMP_F_READ_ONLY and SMP_F_MUST_FREE 11594 - MINOR: pattern: replace struct pattern with struct sample 11595 - MEDIUM: pattern: integrate pattern_data into sample and use sample everywhere 11596 - MEDIUM: pattern: retrieve the sample type in the sample, not in the keyword description 11597 - MEDIUM: acl/pattern: switch rdp_cookie functions stack up-down 11598 - MEDIUM: acl: replace acl_expr with args in acl fetch_* functions 11599 - MINOR: tcp: replace acl_fetch_rdp_cookie with smp_fetch_rdp_cookie 11600 - MEDIUM: acl/pattern: use the same direction scheme 11601 - MEDIUM: acl/pattern: start merging common sample fetch functions 11602 - MEDIUM: pattern: ensure that sample types always cast into other types. 11603 - MEDIUM: acl/pattern: factor out the src/dst address fetches 11604 - MEDIUM: acl: implement payload and payload_lv 11605 - CLEANUP: pattern: ensure that payload and payload_lv always stay in the buffer 11606 - MINOR: stick_table: centralize the handling of empty keys 11607 - MINOR: pattern: centralize handling of unstable data in pattern_process() 11608 - MEDIUM: pattern: use smp_fetch_rdp_cookie instead of the pattern specific version 11609 - MINOR: acl: set SMP_OPT_ITERATE on fetch functions 11610 - MINOR: acl: add a val_args field to keywords 11611 - MINOR: proto_tcp: validate arguments of payload and payload_lv ACLs 11612 - MEDIUM: http: merge acl and pattern header fetch functions 11613 - MEDIUM: http: merge ACL and pattern cookie fetches into a single one 11614 - MEDIUM: acl: report parsing errors to the caller 11615 - MINOR: arg: improve error reporting on invalid arguments 11616 - MINOR: acl: report errors encountered when loading patterns from files 11617 - MEDIUM: acl: extend the pattern parsers to report meaningful errors 11618 - REORG: use the name "sample" instead of "pattern" to designate extracted data 11619 - REORG: rename "pattern" files 11620 - MINOR: acl: add types to ACL patterns 11621 - MINOR: standard: add an IPv6 parsing function (str62net) 11622 - MEDIUM: acl: support IPv6 address matching 11623 - REORG: stream_interface: create a struct sock_ops to hold socket operations 11624 - REORG/MEDIUM: move protocol->{read,write} to sock_ops 11625 - REORG/MEDIUM: stream_interface: initialize socket ops from descriptors 11626 - REORG/MEDIUM: replace stream interface protocol functions by a proto pointer 11627 - REORG/MEDIUM: move the default accept function from sockstream to protocols.c 11628 - MEDIUM: proto_tcp: remove src6 and dst6 pattern fetch methods 11629 - BUG/MINOR: http: error snapshots are wrong if buffer wraps 11630 - BUG/MINOR: http: ensure that msg->err_pos is always relative to buf->p 11631 - MEDIUM: http: improve error capture reports 11632 - MINOR: acl: add the cook_val() match to match a cookie against an integer 11633 - BUG/MEDIUM: send_proxy: fix initialisation of send_proxy_ofs 11634 - MEDIUM: memory: add the ability to poison memory at run time 11635 - BUG/MEDIUM: log: ensure that unique_id is properly initialized 11636 - MINOR: cfgparse: use a common errmsg pointer for all parsers 11637 - MEDIUM: cfgparse: make backend_parse_balance() use memprintf to report errors 11638 - MEDIUM: cfgparse: use the new error reporting framework for remaining cfg_keywords 11639 - MINOR: http: replace http_message_realign() with buffer_slow_realign() 11640 116412012/03/26 : 1.5-dev8 11642 - MINOR: patch for minor typo (ressources/resources) 11643 - MEDIUM: http: add support for sending the server's name in the outgoing request 11644 - DOC: mention that default checks are TCP connections 11645 - BUG/MINOR: fix options forwardfor if-none when an alternative header name is specified 11646 - CLEANUP: Make check_statuses, analyze_statuses and process_chk static 11647 - CLEANUP: Fix HCHK spelling errors 11648 - BUG/MINOR: fix typo in processing of http-send-name-header 11649 - MEDIUM: log: Use linked lists for loggers 11650 - BUILD: fix declaration inside a scope block 11651 - REORG: log: split send_log function 11652 - MINOR: config: Parse the string of the log-format config keyword 11653 - MINOR: add ultoa, ulltoa, ltoa, lltoa implementations 11654 - MINOR: Date and time fonctions that don't use snprintf 11655 - MEDIUM: log: make http_sess_log use log_format 11656 - DOC: log-format documentation 11657 - MEDIUM: log: use log_format for mode tcplog 11658 - MEDIUM: log-format: backend source address %Bi %Bp 11659 - BUG/MINOR: log-format: fix %o flag 11660 - BUG/MEDIUM: bad length in log_format and __send_log 11661 - MINOR: logformat %st is signed 11662 - BUILD/MINOR: fix the source URL in the spec file 11663 - DOC: acl is http_first_req, not http_req_first 11664 - BUG/MEDIUM: don't trim last spaces from headers consisting only of spaces 11665 - MINOR: acl: add new matches for header/path/url length 11666 - BUILD: halog: make halog build on solaris 11667 - BUG/MINOR: don't use a wrong port when connecting to a server with mapped ports 11668 - MINOR: remove the client/server side distinction in SI addresses 11669 - MINOR: halog: add support for matching queued requests 11670 - DOC: indicate that cookie "prefix" and "indirect" should not be mixed 11671 - OPTIM/MINOR: move struct sockaddr_storage to the tail of structs 11672 - OPTIM/MINOR: make it possible to change pipe size (tune.pipesize) 11673 - BUILD/MINOR: silent a build warning in src/pipe.c (fcntl) 11674 - OPTIM/MINOR: move the hdr_idx pools out of the proxy struct 11675 - MEDIUM: tune.http.maxhdr makes it possible to configure the maximum number of HTTP headers 11676 - BUG/MINOR: fix a segfault when parsing a config with undeclared peers 11677 - CLEANUP: rename possibly confusing struct field "tracked" 11678 - BUG/MEDIUM: checks: fix slowstart behaviour when server tracking is in use 11679 - MINOR: config: tolerate server "cookie" setting in non-HTTP mode 11680 - MEDIUM: buffers: add some new primitives and rework existing ones 11681 - BUG: buffers: don't return a negative value on buffer_total_space_res() 11682 - MINOR: buffers: make buffer_pointer() support negative pointers too 11683 - CLEANUP: kill buffer_replace() and use an inline instead 11684 - BUG: tcp: option nolinger does not work on backends 11685 - CLEANUP: ebtree: remove a few annoying signedness warnings 11686 - CLEANUP: ebtree: clarify licence and update to 6.0.6 11687 - CLEANUP: ebtree: remove 4-year old harmless typo in duplicates insertion code 11688 - CLEANUP: ebtree: remove another typo, a wrong initialization in insertion code 11689 - BUG: ebtree: ebst_lookup() could return the wrong entry 11690 - OPTIM: stream_sock: reduce the amount of in-flight spliced data 11691 - OPTIM: stream_sock: save a failed recv syscall when splice returns EAGAIN 11692 - MINOR: acl: add support for TLS server name matching using SNI 11693 - BUG: http: re-enable TCP quick-ack upon incomplete HTTP requests 11694 - BUG: proto_tcp: don't try to bind to a foreign address if sin_family is unknown 11695 - MINOR: pattern: export the global temporary pattern 11696 - CLEANUP: patterns: get rid of pattern_data_setstring() 11697 - MEDIUM: acl: use temp_pattern to store fetched information in the "method" match 11698 - MINOR: acl: include pattern.h to make pattern migration more transparent 11699 - MEDIUM: pattern: change the pattern data integer from unsigned to signed 11700 - MEDIUM: acl: use temp_pattern to store any integer-type information 11701 - MEDIUM: acl: use temp_pattern to store any address-type information 11702 - CLEANUP: acl: integer part of acl_test is not used anymore 11703 - MEDIUM: acl: use temp_pattern to store any string-type information 11704 - CLEANUP: acl: remove last data fields from the acl_test struct 11705 - MEDIUM: http: replace get_ip_from_hdr2() with http_get_hdr() 11706 - MEDIUM: patterns: the hdr() pattern is now of type string 11707 - DOC: add minimal documentation on how ACLs work internally 11708 - DOC: add a coding-style file 11709 - OPTIM: halog: keep a fast path for the lines-count only 11710 - CLEANUP: silence a warning when building on sparc 11711 - BUG: http: tighten the list of allowed characters in a URI 11712 - MEDIUM: http: block non-ASCII characters in URIs by default 11713 - DOC: add some documentation from RFC3986 about URI format 11714 - BUG/MINOR: cli: correctly remove the whole table on "clear table" 11715 - BUG/MEDIUM: correctly disable servers tracking another disabled servers. 11716 - BUG/MEDIUM: zero-weight servers must not dequeue requests from the backend 11717 - MINOR: halog: add some help on the command line 11718 - BUILD: fix build error on FreeBSD 11719 - BUG: fix double free in peers config error path 11720 - MEDIUM: improve config check return codes 11721 - BUILD: make it possible to look for pcre in the default system paths 11722 - MINOR: config: emit a warning when 'default_backend' masks servers 11723 - MINOR: backend: rework the LC definition to support other connection-based algos 11724 - MEDIUM: backend: add the 'first' balancing algorithm 11725 - BUG: fix httplog trailing LF 11726 - MEDIUM: increase chunk-size limit to 2GB-1 11727 - BUG: queue: fix dequeueing sequence on HTTP keep-alive sessions 11728 - BUG: http: disable TCP delayed ACKs when forwarding content-length data 11729 - BUG: checks: fix server maintenance exit sequence 11730 - BUG/MINOR: stream_sock: don't remove BF_EXPECT_MORE and BF_SEND_DONTWAIT on partial writes 11731 - DOC: enumerate valid status codes for "observe layer7" 11732 - MINOR: buffer: switch a number of buffer args to const 11733 - CLEANUP: silence signedness warning in acl.c 11734 - BUG: stream_sock: si->release was not called upon shutw() 11735 - MINOR: log: use "%ts" to log term status only and "%tsc" to log with cookie 11736 - BUG/CRITICAL: log: fix risk of crash in development snapshot 11737 - BUG/MAJOR: possible crash when using capture headers on TCP frontends 11738 - MINOR: config: disable header captures in TCP mode and complain 11739 117402011/09/10 : 1.5-dev7 11741 - [BUG] fix binary stick-tables 11742 - [MINOR] http: *_dom matching header functions now also split on ":" 11743 - [BUG] checks: fix support of Mysqld >= 5.5 for mysql-check 11744 - [MINOR] acl: add srv_conn acl to count connections on a specific backend server 11745 - [MINOR] check: add redis check support 11746 - [DOC] small fixes to clearly distinguish between keyword and variables 11747 - [MINOR] halog: add support for termination code matching (-tcn/-TCN) 11748 - [DOC] Minor spelling fixes and grammatical enhancements 11749 - [CLEANUP] dumpstats: make symbols static where possible 11750 - [MINOR] Break out dumping table 11751 - [MINOR] Break out processing of clear table 11752 - [MINOR] Allow listing of stick table by key 11753 - [MINOR] Break out all stick table socat command parsing 11754 - [MINOR] More flexible clearing of stick table 11755 - [MINOR] Allow showing and clearing by key of ipv6 stick tables 11756 - [MINOR] Allow showing and clearing by key of integer stick tables 11757 - [MINOR] Allow showing and clearing by key of string stick tables 11758 - [CLEANUP] Remove assigned but unused variables 11759 - [CLEANUP] peers.h: fix declarations 11760 - [CLEANUP] session.c: Make functions static where possible 11761 - [MINOR] Add active connection list to server 11762 - [MINOR] Allow shutdown of sessions when a server becomes unavailable 11763 - [MINOR] Add down termination condition 11764 - [MINOR] Make appsess{,ion}_refresh static 11765 - [MINOR] Add rdp_cookie pattern fetch function 11766 - [CLEANUP] Remove unnecessary casts 11767 - [MINOR] Add non-stick server option 11768 - [MINOR] Consistently use error in tcp_parse_tcp_req() 11769 - [MINOR] Consistently free expr on error in cfg_parse_listen() 11770 - [MINOR] Free rdp_cookie_name on denint() 11771 - [MINOR] Free tcp rules on denint() 11772 - [MINOR] Free stick table pool on denint() 11773 - [MINOR] Free stick rules on denint() 11774 - [MEDIUM] Fix stick-table replication on soft-restart 11775 - [MEDIUM] Correct ipmask() logic 11776 - [MINOR] Correct type in table dump examples 11777 - [MINOR] Fix build error in stream_int_register_handler() 11778 - [MINOR] Use DPRINTF in assign_server() 11779 - [BUG] checks: http-check expect could fail a check on multi-packet responses 11780 - [DOC] fix minor typo in the "dispatch" doc 11781 - [BUG] proto_tcp: fix address binding on remote source 11782 - [MINOR] http: don't report the "haproxy" word on the monitoring response 11783 - [REORG] http: move HTTP error codes back to proto_http.h 11784 - [MINOR] http: make the "HTTP 200" status code configurable. 11785 - [MINOR] http: partially revert the chunking optimization for now 11786 - [MINOR] stream_sock: always clear BF_EXPECT_MORE upon complete transfer 11787 - [CLEANUP] stream_sock: remove unneeded FL_TCP and factor out test 11788 - [MEDIUM] http: add support for "http-no-delay" 11789 - [OPTIM] http: optimize chunking again in non-interactive mode 11790 - [OPTIM] stream_sock: avoid fast-forwarding of partial data 11791 - [OPTIM] stream_sock: don't use splice on too small payloads 11792 - [MINOR] config: make it possible to specify a cookie even without a server 11793 - [BUG] stats: support url-encoded forms 11794 - [MINOR] config: automatically compute a default fullconn value 11795 - [CLEANUP] config: remove some left-over printf debugging code from previous patch 11796 - [DOC] add missing entry or stick store-response 11797 - [MEDIUM] http: add support for 'cookie' and 'set-cookie' patterns 11798 - [BUG] halog: correctly handle truncated last line 11799 - [MINOR] halog: make SKIP_CHAR stop on field delimiters 11800 - [MINOR] halog: add support for HTTP log matching (-H) 11801 - [MINOR] halog: gain back performance before SKIP_CHAR fix 11802 - [OPTIM] halog: cache some common fields positions 11803 - [OPTIM] halog: check once for correct line format and reuse the pointer 11804 - [OPTIM] halog: remove many 'if' by using a function pointer for the filters 11805 - [OPTIM] halog: remove support for tab delimiters in input data 11806 - [BUG] session: risk of crash on out of memory (1.5-dev regression) 11807 - [MINOR] session: try to emit a 500 response on memory allocation errors 11808 - [OPTIM] stream_sock: reduce the default number of accepted connections at once 11809 - [BUG] stream_sock: disable listener when system resources are exhausted 11810 - [MEDIUM] proxy: add a PAUSED state to listeners and move socket tricks out of proxy.c 11811 - [BUG] stream_sock: ensure orphan listeners don't accept too many connections 11812 - [MINOR] listeners: add listen_full() to mark a listener full 11813 - [MINOR] listeners: add support for queueing resource limited listeners 11814 - [MEDIUM] listeners: put listeners in queue upon resource shortage 11815 - [MEDIUM] listeners: queue proxy-bound listeners at the proxy's 11816 - [MEDIUM] listeners: don't stop proxies when global maxconn is reached 11817 - [MEDIUM] listeners: don't change listeners states anymore in maintain_proxies 11818 - [CLEANUP] proxy: rename a few proxy states (PR_STIDLE and PR_STRUN) 11819 - [MINOR] stats: report a "WAITING" state for sockets waiting for resource 11820 - [MINOR] proxy: make session rate-limit more accurate 11821 - [MINOR] sessions: only wake waiting listeners up if rate limit is OK 11822 - [BUG] proxy: peers must only be stopped once, not upon every call to maintain_proxies 11823 - [CLEANUP] proxy: merge maintain_proxies() operation inside a single loop 11824 - [MINOR] task: new function task_schedule() to schedule a wake up 11825 - [MAJOR] proxy: finally get rid of maintain_proxies() 11826 - [BUG] proxy: stats frontend and peers were missing many initializers 11827 - [MEDIUM] listeners: add a global listener management task 11828 - [MINOR] proxy: make findproxy() return proxies from numeric IDs too 11829 - [DOC] fix typos, "#" is a sharp, not a dash 11830 - [MEDIUM] stats: add support for changing frontend's maxconn at runtime 11831 - [MEDIUM] checks: group health checks methods by values and save option bits 11832 - [MINOR] session-counters: add the ability to clear the counters 11833 - [BUG] check: http-check expect + regex would crash in defaults section 11834 - [MEDIUM] http: make x-forwarded-for addition conditional 11835 - [REORG] build: move syscall redefinition to specific places 11836 - [CLEANUP] update the year in the copyright banner 11837 - [BUG] possible crash in 'show table' on stats socket 11838 - [BUG] checks: use the correct destination port for sending checks 11839 - [BUG] backend: risk of picking a wrong port when mapping is used with crossed families 11840 - [MINOR] make use of set_host_port() and get_host_port() to get rid of family mismatches 11841 - [DOC] fixed a few "sensible" -> "sensitive" errors 11842 - [MINOR] make use of addr_to_str() and get_host_port() to replace many inet_ntop() 11843 - [BUG] http: trailing white spaces must also be trimmed after headers 11844 - [MINOR] stats: display "<NONE>" instead of the frontend name when unknown 11845 - [MINOR] http: take a capture of too large requests and responses 11846 - [MINOR] http: take a capture of truncated responses 11847 - [MINOR] http: take a capture of bad content-lengths. 11848 - [DOC] add a few old and uncommitted docs 11849 - [CLEANUP] cfgparse: fix reported options for the "bind" keyword 11850 - [MINOR] halog: add -hs/-HS to filter by HTTP status code range 11851 - [MINOR] halog: support backslash-escaped quotes 11852 - [CLEANUP] remove dirty left-over of a debugging message 11853 - [MEDIUM] stats: disable complex socket reservation for stats socket 11854 - [CLEANUP] remove a useless test in manage_global_listener_queue() 11855 - [MEDIUM] stats: add the "set maxconn" setting to the command line interface 11856 - [MEDIUM] add support for global.maxconnrate to limit the per-process conn rate. 11857 - [MINOR] stats: report the current and max global connection rates 11858 - [MEDIUM] stats: add the ability to adjust the global maxconnrate 11859 - [BUG] peers: don't pre-allocate 65000 connections to each peer 11860 - [MEDIUM] don't limit peers nor stats socket to maxconn nor maxconnrate 11861 - [BUG] peers: the peer frontend must not emit any log 11862 - [CLEANUP] proxy: make pause_proxy() perform the required controls and emit the logs 11863 - [BUG] peers: don't keep a peers section which has a NULL frontend 11864 - [BUG] peers: ensure the peers are resumed if they were paused 11865 - [MEDIUM] stats: add the ability to enable/disable/shutdown a frontend at runtime 11866 - [MEDIUM] session: make session_shutdown() an independant function 11867 - [MEDIUM] stats: offer the possibility to kill a session from the CLI 11868 - [CLEANUP] stats: centralize tests for backend/server inputs on the CLI 11869 - [MEDIUM] stats: offer the possibility to kill sessions by server 11870 - [MINOR] halog: do not consider byte 0x8A as end of line 11871 - [MINOR] frontend: ensure debug message length is always initialized 11872 - [OPTIM] halog: make fgets parse more bytes by blocks 11873 - [OPTIM] halog: add assembly version of the field lookup code 11874 - [MEDIUM] poll: add a measurement of idle vs work time 11875 - [CLEANUP] startup: report only the basename in the usage message 11876 - [MINOR] startup: add an option to change to a new directory 11877 - [OPTIM] task: don't scan the run queue if we know it's empty 11878 - [BUILD] stats: stdint is not present on solaris 11879 - [DOC] update the README file to reflect new naming rules for patches 11880 - [MINOR] stats: report the number of requests intercepted by the frontend 11881 - [DOC] update ROADMAP file 11882 118832011/04/08 : 1.5-dev6 11884 - [BUG] stream_sock: use get_addr_len() instead of sizeof() on sockaddr_storage 11885 - [BUG] TCP source tracking was broken with IPv6 changes 11886 - [BUG] stick-tables did not work when converting IPv6 to IPv4 11887 - [CRITICAL] fix risk of crash when dealing with space in response cookies 11888 118892011/03/29 : 1.5-dev5 11890 - [BUG] standard: is_addr return value for IPv4 was inverted 11891 - [MINOR] update comment about IPv6 support for server 11892 - [MEDIUM] use getaddrinfo to resolve names if gethostbyname fail 11893 - [DOC] update IPv6 support for bind 11894 - [DOC] document IPv6 support for server 11895 - [DOC] fix a minor typo 11896 - [MEDIUM] IPv6 support for syslog 11897 - [DOC] document IPv6 support for syslog 11898 - [MEDIUM] IPv6 support for stick-tables 11899 - [DOC] document IPv6 support for stick-tables 11900 - [DOC] update ROADMAP file 11901 - [BUG] session: src_conn_cur was returning src_conn_cnt instead 11902 - [MINOR] frontend: add a make_proxy_line function 11903 - [MEDIUM] stream_sock: add support for sending the proxy protocol header line 11904 - [MEDIUM] server: add support for the "send-proxy" option 11905 - [DOC] update the spec on the proxy protocol 11906 - [BUILD] proto_tcp: fix build issue with CTTPROXY 11907 - [DOC] update ROADMAP file 11908 - [MEDIUM] config: rework the IPv4/IPv6 address parser to support host-only addresses 11909 - [MINOR] cfgparse: better report wrong listening addresses and make use of str2sa_range 11910 - [BUILD] add the USE_GETADDRINFO build option 11911 - [TESTS] provide a test case for various address formats 11912 - [BUG] session: conn_retries was not always initialized 11913 - [BUG] log: retrieve the target from the session, not the SI 11914 - [BUG] http: fix possible incorrect forwarded wrapping chunk size (take 2) 11915 - [MINOR] tools: add two macros MID_RANGE and MAX_RANGE 11916 - [BUG] http: fix content-length handling on 32-bit platforms 11917 - [OPTIM] buffers: uninline buffer_forward() 11918 - [BUG] stream_sock: fix handling for server side PROXY protocol 11919 - [MINOR] acl: add support for table_cnt and table_avl matches 11920 - [DOC] update ROADMAP file 11921 119222011/03/13 : 1.5-dev4 11923 - [MINOR] cfgparse: Check whether the path given for the stats socket actually fits into the sockaddr_un structure to avoid truncation. 11924 - [MINOR] unix sockets : inherits the backlog size from the listener 11925 - [CLEANUP] unix sockets : move create_uxst_socket() in uxst_bind_listener() 11926 - [DOC] fix a minor typo 11927 - [DOC] fix ignore-persist documentation 11928 - [MINOR] add warnings on features not compatible with multi-process mode 11929 - [BUG] http: fix http-pretend-keepalive and httpclose/tunnel mode 11930 - [MINOR] stats: add support for several packets in stats admin 11931 - [BUG] stats: admin commands must check the proxy state 11932 - [BUG] stats: admin web interface must check the proxy state 11933 - [MINOR] http: add pattern extraction method to stick on query string parameter 11934 - [MEDIUM] add internal support for IPv6 server addresses 11935 - [MINOR] acl: add be_id/srv_id to match backend's and server's id 11936 - [MINOR] log: add support for passing the forwarded hostname 11937 - [MINOR] log: ability to override the syslog tag 11938 - [MINOR] checks: add PostgreSQL health check 11939 - [DOC] update ROADMAP file 11940 - [BUILD] pattern: use 'int' instead of 'int32_t' 11941 - [OPTIM] linux: add support for bypassing libc to force using vsyscalls 11942 - [BUG] debug: report the correct poller list in verbose mode 11943 - [BUG] capture: do not capture a cookie if there is no memory left 11944 - [BUG] appsession: fix possible double free in case of out of memory 11945 - [CRITICAL] cookies: mixing cookies in indirect mode and appsession can crash the process 11946 - [BUG] http: correctly update the header list when removing two consecutive headers 11947 - [BUILD] add the CPU=native and ARCH=32/64 build options 11948 - [BUILD] add -fno-strict-aliasing to fix warnings with gcc >= 4.4 11949 - [CLEANUP] hash: move the avalanche hash code globally available 11950 - [MEDIUM] hash: add support for an 'avalanche' hash-type 11951 - [DOC] update roadmap file 11952 - [BUG] http: do not re-enable the PROXY analyser on keep-alive 11953 - [OPTIM] http: don't send each chunk in a separate packet 11954 - [DOC] fix minor typos reported recently in the peers section 11955 - [DOC] fix another typo in the doc 11956 - [MINOR] stats: report HTTP message state and buffer flags in error dumps 11957 - [BUG] http chunking: don't report a parsing error on connection errors 11958 - [BUG] stream_interface: truncate buffers when sending error messages 11959 - [MINOR] http: support wrapping messages in error captures 11960 - [MINOR] http: capture incorrectly chunked message bodies 11961 - [MINOR] stats: add global event ID and count 11962 - [BUG] http: analyser optimizations broke pipelining 11963 - [CLEANUP] frontend: only apply TCP-specific settings to TCP/TCP6 sockets 11964 - [BUG] http: fix incorrect error reporting during data transfers 11965 - [CRITICAL] session: correctly leave turn-around and queue states on abort 11966 - [BUG] session: release slot before processing pending connections 11967 - [MINOR] tcp: add support for dynamic MSS setting 11968 - [BUG] stick-table: correctly terminate string keys during lookups 11969 - [BUG] acl: fix handling of empty lines in pattern files 11970 - [BUG] stick-table: use the private buffer when padding strings 11971 - [BUG] ebtree: fix ebmb_lookup() with len smaller than the tree's keys 11972 - [OPTIM] ebtree: ebmb_lookup: reduce stack usage by moving the return code out of the loop 11973 - [OPTIM] ebtree: inline ebst_lookup_len and ebis_lookup_len 11974 - [REVERT] undo the stick-table string key lookup fixes 11975 - [MINOR] http: improve url_param pattern extraction to ignore empty values 11976 - [BUILD] frontend: shut a warning with TCP_MAXSEG 11977 - [BUG] http: update the header list's tail when removing the last header 11978 - [DOC] fix minor typo in the proxy protocol doc 11979 - [DOC] fix typos (http-request instead of http-check) 11980 - [BUG] http: use correct ACL pointer when evaluating authentication 11981 - [BUG] cfgparse: correctly count one socket per port in ranges 11982 - [BUG] startup: set the rlimits before binding ports, not after. 11983 - [BUG] acl: srv_id must return no match when the server is NULL 11984 - [MINOR] acl: add ability to check for internal response-only parameters 11985 - [MINOR] acl: srv_id is only valid in responses 11986 - [MINOR] config: warn if response-only conditions are used in "redirect" rules 11987 - [BUG] acl: fd leak when reading patterns from file 11988 - [DOC] fix minor typo in "usesrc" 11989 - [BUG] http: fix possible incorrect forwarded wrapping chunk size 11990 - [BUG] http: fix computation of message body length after forwarding has started 11991 - [BUG] http: balance url_param did not work with first parameters on POST 11992 - [TESTS] update the url_param regression test to test check_post too 11993 - [DOC] update ROADMAP 11994 - [DOC] internal: reflect the fact that SI_ST_ASS is transient 11995 - [BUG] config: don't crash on empty pattern files. 11996 - [MINOR] stream_interface: make use of an applet descriptor for IO handlers 11997 - [REORG] stream_interface: move the st0, st1 and private members to the applet 11998 - [REORG] stream_interface: split the struct members in 3 parts 11999 - [REORG] session: move client and server address to the stream interface 12000 - [REORG] tcp: make tcpv4_connect_server() take the target address from the SI 12001 - [MEDIUM] stream_interface: store the target pointer and type 12002 - [CLEANUP] stream_interface: remove the applet.handler pointer 12003 - [MEDIUM] log: take the logged server name from the stream interface 12004 - [CLEANUP] session: remove data_source from struct session 12005 - [CLEANUP] stats: make all dump functions only rely on the stream interface 12006 - [REORG] session: move the data_ctx struct to the stream interface's applet 12007 - [MINOR] proxy: add PR_O2_DISPATCH to detect dispatch mode 12008 - [MINOR] cfgparse: only keep one of dispatch, transparent, http_proxy 12009 - [MINOR] session: add a pointer to the new target into the session 12010 - [MEDIUM] session: remove s->prev_srv which is not needed anymore 12011 - [CLEANUP] stream_interface: use inline functions to manipulate targets 12012 - [MAJOR] session: remove the ->srv pointer from struct session 12013 - [MEDIUM] stats: split frontend and backend stats 12014 - [MEDIUM] http: always evaluate http-request rules before stats http-request 12015 - [REORG] http: move the http-request rules to proto_http 12016 - [BUG] http: stats were not incremented on http-request deny 12017 - [MINOR] checks: report it if checks fail due to socket creation error 12018 120192010/11/11 : 1.5-dev3 12020 - [DOC] fix http-request documentation 12021 - [MEDIUM] enable/disable servers from the stats web interface 12022 - [MEDIUM] stats: add an admin level 12023 - [DOC] stats: document the "stats admin" statement 12024 - [MINOR] startup: print the proxy socket which caused an error 12025 - [CLEANUP] Remove unneeded chars allocation 12026 - [MINOR] config: detect options not supported due to compilation options 12027 - [MINOR] Add pattern's fetchs payload and payload_lv 12028 - [MINOR] frontend: improve accept-proxy header parsing 12029 - [MINOR] frontend: add tcpv6 support on accept-proxy bind 12030 - [MEDIUM] Enhance message errors management on binds 12031 - [MINOR] Manage unix socket source field on logs 12032 - [MINOR] Manage unix socket source field on session dump on sock stats 12033 - [MINOR] Support of unix listener sockets for debug and log event messages on frontend.c 12034 - [MINOR] Add some tests on sockets family for port remapping and mode transparent. 12035 - [MINOR] Manage socket type unix for some logs 12036 - [MINOR] Enhance controls of socket's family on acls and pattern fetch 12037 - [MINOR] Support listener's sockets unix on http logs. 12038 - [MEDIUM] Add supports of bind on unix sockets. 12039 - [BUG] stick table purge failure if size less than 255 12040 - [BUG] stick table entries expire on counters updates/read or show table, even if there is no "expire" parameter 12041 - [MEDIUM] Implement tcp inspect response rules 12042 - [DOC] tcp-response content and inspect 12043 - [MINOR] new acls fetch req_ssl_hello_type and rep_ssl_hello_type 12044 - [DOC] acls rep_ssl_hello and req_ssl_hello 12045 - [MEDIUM] Create new protected pattern types CONSTSTRING and CONSTDATA to force memcpy if data from protected areas need to be manipulated. 12046 - [DOC] new type binary in stick-table 12047 - [DOC] stick store-response and new patterns payload and payload_lv 12048 - [MINOR] Manage all types (ip, integer, string, binary) on cli "show table" command 12049 - [MEDIUM] Create updates tree on stick table to manage sync. 12050 - [MAJOR] Add new files src/peer.c, include/proto/peers.h and include/types/peers.h for sync stick table management 12051 - [MEDIUM] Manage peers section parsing and stick table registration on peers. 12052 - [MEDIUM] Manage soft stop on peers proxy 12053 - [DOC] add documentation for peers section 12054 - [MINOR] checks: add support for LDAPv3 health checks 12055 - [MINOR] add better support to "mysql-check" 12056 - [BUG] Restore info about available active/backup servers 12057 - [CONTRIB] Update haproxy.pl 12058 - [CONTRIB] Update Cacti Tempates 12059 - [CONTRIB] add templates for Cacti. 12060 - [BUG] http: don't consider commas as a header delimitor within quotes 12061 - [MINOR] support a global jobs counter 12062 - [DOC] add a summary about cookie incompatibilities between specs and browsers 12063 - [DOC] fix description of cookie "insert" and "indirect" modes 12064 - [MEDIUM] http: fix space handling in the request cookie parser 12065 - [MEDIUM] http: fix space handling in the response cookie parser 12066 - [DOC] fix typo in the queue() definition (backend, not frontend) 12067 - [BUG] deinit: unbind listeners before freeing them 12068 - [BUG] stream_interface: only call si->release when both dirs are closed 12069 - [MEDIUM] buffers: rework the functions to exchange between SI and buffers 12070 - [DOC] fix typo in the avg_queue() and be_conn() definition (backend, not frontend) 12071 - [MINOR] halog: add '-tc' to sort by termination codes 12072 - [MINOR] halog: skip non-traffic logs for -st and -tc 12073 - [BUG] stream_sock: cleanly disable the listener in case of resource shortage 12074 - [BUILD] stream_sock: previous fix lacked the #include, causing a warning. 12075 - [DOC] bind option is "defer-accept", not "defer_accept" 12076 - [DOC] missing index entry for http-check send-state 12077 - [DOC] tcp-request inspect-delay is for backends too 12078 - [BUG] ebtree: string_equal_bits() could return garbage on identical strings 12079 - [BUG] stream_sock: try to flush any extra pending request data after a POST 12080 - [BUILD] proto_http: eliminate some build warnings with gcc-2.95 12081 - [MEDIUM] make it possible to combine http-pretend-keepalived with httpclose 12082 - [MEDIUM] tcp-request : don't wait for inspect-delay to expire when the buffer is full 12083 - [MEDIUM] checks: add support for HTTP contents lookup 12084 - [TESTS] add test-check-expect to test various http-check methods 12085 - [MINOR] global: add "tune.chksize" to change the default check buffer size 12086 - [MINOR] cookie: add options "maxidle" and "maxlife" 12087 - [MEDIUM] cookie: support client cookies with some contents appended to their value 12088 - [MINOR] http: make some room in the transaction flags to extend cookies 12089 - [MINOR] cookie: add the expired (E) and old (O) flags for request cookies 12090 - [MEDIUM] cookie: reassign set-cookie status flags to store more states 12091 - [MINOR] add encode/decode function for 30-bit integers from/to base64 12092 - [MEDIUM] cookie: check for maxidle and maxlife for incoming dated cookies 12093 - [MEDIUM] cookie: set the date in the cookie if needed 12094 - [DOC] document the cookie maxidle and maxlife parameters 12095 - [BUG] checks: don't log backend down for all zero-weight servers 12096 - [MEDIUM] checks: set server state to one state from failure when leaving maintenance 12097 - [BUG] config: report correct keywords for "observe" 12098 - [MINOR] checks: ensure that we can inherit binary checks from the defaults section 12099 - [MINOR] acl: add the http_req_first match 12100 - [DOC] fix typos about bind-process syntax 12101 - [BUG] cookie: correctly unset default cookie parameters 12102 - [MINOR] cookie: add support for the "preserve" option 12103 - [BUG] ebtree: fix duplicate strings insertion 12104 - [CONTRIB] halog: report per-url counts, errors and times 12105 - [CONTRIB] halog: minor speed improvement in timer parser 12106 - [MINOR] buffers: add a new request analyser flag for PROXY mode 12107 - [MINOR] listener: add the "accept-proxy" option to the "bind" keyword 12108 - [MINOR] standard: add read_uint() to parse a delimited unsigned integer 12109 - [MINOR] standard: change arg type from const char* to char* 12110 - [MINOR] frontend: add a new analyser to parse a proxied connection 12111 - [MEDIUM] session: call the frontend_decode_proxy analyser on proxied connections 12112 - [DOC] add the proxy protocol's specifications 12113 - [DOC] document the 'accept-proxy' bind option 12114 - [MINOR] cfgparse: report support of <path> for the 'bind' statements 12115 - [DOC] add references to unix socket handling 12116 - [MINOR] move MAXPATHLEN definition to compat.h 12117 - [MEDIUM] unix sockets: cleanup the error reporting path 12118 - [BUG] session: don't stop forwarding of data upon last packet 12119 - [CLEANUP] accept: replace some inappropriate Alert() calls with send_log() 12120 - [BUILD] peers: shut a printf format warning (key_size is a size_t) 12121 - [BUG] accept: don't close twice upon error 12122 - [OPTIM] session: don't recheck analysers when buffer flags have not changed 12123 - [OPTIM] stream_sock: don't clear FDs that are already cleared 12124 - [BUG] proto_tcp: potential bug on pattern fetch dst and dport 12125 121262010/08/28 : 1.5-dev2 12127 - [MINOR] startup: release unused structs after forking 12128 - [MINOR] startup: don't wait for nothing when no old pid remains 12129 - [CLEANUP] reference product branch 1.5 12130 - [MEDIUM] signals: add support for registering functions and tasks 12131 - [MEDIUM] signals: support redistribution of signal zero when stopping 12132 - [BUG] http: don't set auto_close if more data are expected 12133 121342010/08/25 : 1.5-dev1 12135 - [BUG] stats: session rate limit gets garbaged in the stats 12136 - [DOC] mention 'option http-server-close' effect in Tq section 12137 - [DOC] summarize and highlight persistent connections behaviour 12138 - [DOC] add configuration samples 12139 - [BUG] http: dispatch and http_proxy modes were broken for a long time 12140 - [BUG] http: the transaction must be initialized even in TCP mode 12141 - [BUG] tcp: dropped connections must be counted as "denied" not "failed" 12142 - [BUG] consistent hash: balance on all servers, not only 2 ! 12143 - [CONTRIB] halog: report per-server status codes, errors and response times 12144 - [BUG] http: the transaction must be initialized even in TCP mode (part 2) 12145 - [BUG] client: always ensure to zero rep->analysers 12146 - [BUG] session: clear BF_READ_ATTACHED before next I/O 12147 - [BUG] http: automatically close response if req is aborted 12148 - [BUG] proxy: connection rate limiting was eating lots of CPU 12149 - [BUG] http: report correct flags in case of client aborts during body 12150 - [TESTS] refine non-regression tests and add 4 new tests 12151 - [BUG] debug: wrong pointer was used to report a status line 12152 - [BUG] debug: correctly report truncated messages 12153 - [DOC] document the "dispatch" keyword 12154 - [BUG] stick_table: fix possible memory leak in case of connection error 12155 - [CLEANUP] acl: use 'L6' instead of 'L4' in ACL flags relying on contents 12156 - [MINOR] accept: count the incoming connection earlier 12157 - [CLEANUP] tcp: move some non tcp-specific layer6 processing out of proto_tcp 12158 - [CLEANUP] client: move some ACLs away to their respective locations 12159 - [CLEANUP] rename client -> frontend 12160 - [MEDIUM] separate protocol-level accept() from the frontend's 12161 - [MINOR] proxy: add a list to hold future layer 4 rules 12162 - [MEDIUM] config: parse tcp layer4 rules (tcp-request accept/reject) 12163 - [MEDIUM] tcp: check for pure layer4 rules immediately after accept() 12164 - [OPTIM] frontend: tell the compiler that errors are unlikely to occur 12165 - [MEDIUM] frontend: check for LI_O_TCP_RULES in the listener 12166 - [MINOR] frontend: only check for monitor-net rules if LI_O_CHK_MONNET is set 12167 - [CLEANUP] buffer->cto is not used anymore 12168 - [MEDIUM] session: finish session establishment sequence in with I/O handlers 12169 - [MEDIUM] session: initialize server-side timeouts after connect() 12170 - [MEDIUM] backend: initialize the server stream_interface upon connect() 12171 - [MAJOR] frontend: don't initialize the server-side stream_int anymore 12172 - [MEDIUM] session: move the conn_retries attribute to the stream interface 12173 - [MEDIUM] session: don't assign conn_retries upon accept() anymore 12174 - [MINOR] frontend: rely on the frontend and not the backend for INDEPSTR 12175 - [MAJOR] frontend: reorder the session initialization upon accept 12176 - [MINOR] proxy: add an accept() callback for the application layer 12177 - [MAJOR] frontend: split accept() into frontend_accept() and session_accept() 12178 - [MEDIUM] stats: rely on the standard session_accept() function 12179 - [MINOR] buffer: refine the flags that may wake an analyser up. 12180 - [MINOR] stream_sock: don't dereference a non-existing frontend 12181 - [MINOR] session: differenciate between accepted connections and received connections 12182 - [MEDIUM] frontend: count the incoming connection earlier 12183 - [MINOR] frontend: count denied TCP requests separately 12184 - [CLEANUP] stick_table: add/clarify some comments 12185 - [BUILD] memory: add a few missing parenthesis to the pool management macros 12186 - [MINOR] stick_table: add support for variable-sized data 12187 - [CLEANUP] stick_table: rename some stksess struct members to avoid confusion 12188 - [CLEANUP] stick_table: move pattern to key functions to stick_table.c 12189 - [MEDIUM] stick_table: add room for extra data types 12190 - [MINOR] stick_table: add support for "conn_cum" data type. 12191 - [MEDIUM] stick_table: don't overwrite data when storing an entry 12192 - [MINOR] config: initialize stick tables after all the parsing 12193 - [MINOR] stick_table: provide functions to return stksess data from a type 12194 - [MEDIUM] stick_table: move the server ID to a generic data type 12195 - [MINOR] stick_table: enable it for frontends too 12196 - [MINOR] stick_table: export the stick_table_key 12197 - [MINOR] tcp: add per-source connection rate limiting 12198 - [MEDIUM] stick_table: separate storage and update of session entries 12199 - [MEDIUM] stick-tables: add a reference counter to each entry 12200 - [MINOR] session: add a pointer to the tracked counters for the source 12201 - [CLEANUP] proto_tcp: make the config parser a little bit more flexible 12202 - [BUG] config: report the correct proxy type in tcp-request errors 12203 - [MINOR] config: provide a function to quote args in a more friendly way 12204 - [BUG] stick_table: the fix for the memory leak caused a regression 12205 - [MEDIUM] backend: support servers on 0.0.0.0 12206 - [BUG] stick-table: correctly refresh expiration timers 12207 - [MEDIUM] stream-interface: add a ->release callback 12208 - [MINOR] proxy: add a "parent" member to the structure 12209 - [MEDIUM] session: make it possible to call an I/O handler on both SI 12210 - [MINOR] tools: add a fast div64_32 function 12211 - [MINOR] freq_ctr: add new types and functions for periods different from 1s 12212 - [MINOR] errors: provide new status codes for config parsing functions 12213 - [BUG] http: denied requests must not be counted as denied resps in listeners 12214 - [MINOR] tools: add a get_std_op() function to parse operators 12215 - [MEDIUM] acl: make use of get_std_op() to parse intger ranges 12216 - [MAJOR] stream_sock: better wakeup conditions on read() 12217 - [BUG] session: analysers must be checked when SI state changes 12218 - [MINOR] http: reset analysers to listener's, not frontend's 12219 - [MEDIUM] session: support "tcp-request content" rules in backends 12220 - [BUILD] always match official tags when doing git-tar 12221 - [MAJOR] stream_interface: fix the wakeup conditions for embedded iohandlers 12222 - [MEDIUM] buffer: make buffer_feed* support writing non-contiguous chunks 12223 - [MINOR] tcp: src_count acl does not have a permanent result 12224 - [MAJOR] session: add track-counters to track counters related to the session 12225 - [MINOR] stick-table: provide a table lookup function 12226 - [MINOR] stick-table: use suffix "_cnt" for cumulated counts 12227 - [MEDIUM] session: move counter ACL fetches from proto_tcp 12228 - [MEDIUM] session: add concurrent connections counter 12229 - [MEDIUM] session: add data in and out volume counters 12230 - [MINOR] session: add the trk_conn_cnt ACL keyword to track connection counts 12231 - [MEDIUM] session-counters: automatically update tracked connection count 12232 - [MINOR] session: add the trk_conn_cur ACL keyword to track concurrent connection 12233 - [MINOR] session: add trk_kbytes_* ACL keywords to track data size 12234 - [MEDIUM] session: add a counter on the cumulated number of sessions 12235 - [MINOR] config: support a comma-separated list of store data types in stick-table 12236 - [MEDIUM] stick-tables: add support for arguments to data_types 12237 - [MEDIUM] stick-tables: add stored data argument type checking 12238 - [MEDIUM] session counters: add conn_rate and sess_rate counters 12239 - [MEDIUM] session counters: add bytes_in_rate and bytes_out_rate counters 12240 - [MINOR] stktable: add a stktable_update_key() function 12241 - [MINOR] session-counters: add a general purpose counter (gpc0) 12242 - [MEDIUM] session-counters: add HTTP req/err tracking 12243 - [MEDIUM] stats: add "show table [<name>]" to dump a stick-table 12244 - [MEDIUM] stats: add "clear table <name> key <value>" to clear table entries 12245 - [CLEANUP] stick-table: declare stktable_data_types as extern 12246 - [MEDIUM] stick-table: make use of generic types for stored data 12247 - [MINOR] stats: correctly report errors on "show table" and "clear table" 12248 - [MEDIUM] stats: add the ability to dump table entries matching criteria 12249 - [DOC] configuration: document all the new tracked counters 12250 - [DOC] stats: document "show table" and "clear table" 12251 - [MAJOR] session-counters: split FE and BE track counters 12252 - [MEDIUM] tcp: accept the "track-counters" in "tcp-request content" rules 12253 - [MEDIUM] session counters: automatically remove expired entries. 12254 - [MEDIUM] config: replace 'tcp-request <action>' with "tcp-request connection" 12255 - [MEDIUM] session-counters: make it possible to count connections from frontend 12256 - [MINOR] session-counters: use "track-sc{1,2}" instead of "track-{fe,be}-counters" 12257 - [MEDIUM] session-counters: correctly unbind the counters tracked by the backend 12258 - [CLEANUP] stats: use stksess_kill() to remove table entries 12259 - [DOC] update the references to session counters and to tcp-request connection 12260 - [DOC] cleanup: split a few long lines 12261 - [MEDIUM] http: forward client's close when abortonclose is set 12262 - [BUG] queue: don't dequeue proxy-global requests on disabled servers 12263 - [BUG] stats: global stats timeout may be specified before stats socket. 12264 - [BUG] conf: add tcp-request content rules to the correct list 12265 122662010/05/23 : 1.5-dev0 12267 - exact copy of 1.4.6 12268 122692010/05/16 : 1.4.6 12270 - [BUILD] ebtree: update to v6.0.1 to remove references to dprintf() 12271 - [CLEANUP] acl: make use of eb_is_empty() instead of open coding the tree's emptiness test 12272 - [MINOR] acl: add srv_is_up() to check that a specific server is up or not 12273 - [DOC] add a few precisions about the use of RDP cookies 12274 122752010/05/13 : 1.4.5 12276 - [DOC] report minimum kernel version for tproxy in the Makefile 12277 - [MINOR] add the "ignore-persist" option to conditionally ignore persistence 12278 - [DOC] add the "ignore-persist" option to conditionally ignore persistence 12279 - [DOC] fix ignore-persist/force-persist documentation 12280 - [BUG] cttproxy: socket fd leakage in check_cttproxy_version 12281 - [DOC] doc/configuration.txt: fix typos 12282 - [MINOR] option http-pretend-keepalive is both for FEs and BEs 12283 - [MINOR] fix possible crash in debug mode with invalid responses 12284 - [MINOR] halog: add support for statisticts on status codes 12285 - [OPTIM] halog: use a faster zero test in fgets() 12286 - [OPTIM] halog: minor speedup by using unlikely() 12287 - [OPTIM] halog: speed up fgets2-64 by about 10% 12288 - [DOC] refresh the README file and merge the CONTRIB file into it 12289 - [MINOR] acl: support loading values from files 12290 - [MEDIUM] ebtree: upgrade to version 6.0 12291 - [MINOR] acl trees: add flags and union members to store values in trees 12292 - [MEDIUM] acl: add ability to insert patterns in trees 12293 - [MEDIUM] acl: add tree-based lookups of exact strings 12294 - [MEDIUM] acl: add tree-based lookups of networks 12295 - [MINOR] acl: ignore empty lines and comments in pattern files 12296 - [MINOR] stick-tables: add support for "stick on hdr" 12297 122982010/04/07 : 1.4.4 12299 - [BUG] appsession should match the whole cookie name 12300 - [CLEANUP] proxy: move PR_O_SSL3_CHK to options2 to release one flag 12301 - [MEDIUM] backend: move the transparent proxy address selection to backend 12302 - [MINOR] add very fast IP parsing functions 12303 - [MINOR] add new tproxy flags for dynamic source address binding 12304 - [MEDIUM] add ability to connect to a server from an IP found in a header 12305 - [BUILD] config: last patch breaks build without CONFIG_HAP_LINUX_TPROXY 12306 - [MINOR] http: make it possible to pretend keep-alive when doing close 12307 - [MINOR] config: report "default-server" instead of "(null)" in error messages 12308 123092010/03/30 : 1.4.3 12310 - [CLEANUP] stats: remove printf format warning in stats_dump_full_sess_to_buffer() 12311 - [MEDIUM] session: better fix for connection to servers with closed input 12312 - [DOC] indicate in the doc how to bind to port ranges 12313 - [BUG] backend: L7 hashing must not be performed on incomplete requests 12314 - [TESTS] add a simple program to test connection resets 12315 - [MINOR] cli: "show errors" should display "backend <NONE>" when backend was not used 12316 - [MINOR] config: emit warnings when HTTP-only options are used in TCP mode 12317 - [MINOR] config: allow "slowstart 0s" 12318 - [BUILD] 'make tags' did not consider files ending in '.c' 12319 - [MINOR] checks: add the ability to disable a server in the config 12320 123212010/03/17 : 1.4.2 12322 - [CLEANUP] product branch update 12323 - [DOC] Some more documentation cleanups 12324 - [BUG] clf logs segfault when capturing a non existant header 12325 - [OPTIM] config: only allocate check buffer when checks are enabled 12326 - [MEDIUM] checks: support multi-packet health check responses 12327 - [CLEANUP] session: remove duplicate test 12328 - [BUG] http: don't wait for response data to leave buffer is client has left 12329 - [MINOR] proto_uxst: set accept_date upon accept() to the wall clock time 12330 - [MINOR] stats: don't send empty lines in "show errors" 12331 - [MINOR] stats: make the data dump function reusable for other purposes 12332 - [MINOR] stats socket: add show sess <id> to dump details about a session 12333 - [BUG] stats: connection reset counters must be plain ascii, not HTML 12334 - [BUG] url_param hash may return a down server 12335 - [MINOR] force null-termination of hostname 12336 - [MEDIUM] connect to servers even when the input has already been closed 12337 - [BUG] don't merge anonymous ACLs ! 12338 - [BUG] config: fix endless loop when parsing "on-error" 12339 - [MINOR] http: don't mark a server as failed when it returns 501/505 12340 - [OPTIM] checks: try to detect the end of response without polling again 12341 - [BUG] checks: don't report an error when recv() returns an error after data 12342 - [BUG] checks: don't abort when second poll returns an error 12343 - [MINOR] checks: make shutdown() silently fail 12344 - [BUG] http: fix truncated responses on chunk encoding when size divides buffer size 12345 - [BUG] init: unconditionally catch SIGPIPE 12346 - [BUG] checks: don't wait for a close to start parsing the response 12347 123482010/03/04 : 1.4.1 12349 - [BUG] Clear-cookie path issue 12350 - [DOC] fix typo on stickiness rules 12351 - [BUILD] fix BSD and OSX makefiles for missing files 12352 - [BUILD] includes order breaks OpenBSD build 12353 - [BUILD] fix some build warnings on Solaris with is* macros 12354 - [BUG] logs: don't report "last data" when we have just closed after an error 12355 - [BUG] logs: don't report "proxy request" when server closes early 12356 - [BUILD] fix platform-dependant build issues related to crypt() 12357 - [STATS] count transfer aborts caused by client and by server 12358 - [STATS] frontend requests were not accounted for failed requests 12359 - [MINOR] report total number of processed connections when stopping a proxy 12360 - [DOC] be more clear about the limitation to one single monitor-net entry 12361 123622010/02/26 : 1.4.0 12363 - [MINOR] stats: report maint state for tracking servers too 12364 - [DOC] fix summary to add pattern extraction 12365 - [DOC] Documentation cleanups 12366 - [BUG] cfgparse memory leak and missing free calls in deinit() 12367 - [BUG] pxid/puid/luid: don't shift IDs when some of them are forced 12368 - [EXAMPLES] add auth.cfg 12369 - [BUG] uri_auth: ST_SHLGNDS should be 0x00000008 not 0x0000008 12370 - [BUG] uri_auth: do not attemp to convert uri_auth -> http-request more than once 12371 - [BUILD] auth: don't use unnamed unions 12372 - [BUG] config: report unresolvable host names as errors 12373 - [BUILD] fix build breakage with DEBUG_FULL 12374 - [DOC] fix a typo about timeout check and clarify the explanation. 12375 - [MEDIUM] http: don't use trash to realign large buffers 12376 - [STATS] report HTTP requests (total and rate) in frontends 12377 - [STATS] separate frontend and backend HTTP stats 12378 - [MEDIUM] http: revert to use a swap buffer for realignment 12379 - [MINOR] stats: report the request rate in frontends as cell titles 12380 - [MINOR] stats: mark areas with an underline when tooltips are available 12381 - [DOC] reorder some entries to maintain the alphabetical order 12382 - [DOC] cleanup of the keyword matrix 12383 123842010/02/02 : 1.4-rc1 12385 - [MEDIUM] add a maintenance mode to servers 12386 - [MINOR] http-auth: last fix was wrong 12387 - [CONTRIB] add base64rev-gen.c that was used to generate the base64rev table. 12388 - [MINOR] Base64 decode 12389 - [MINOR] generic auth support with groups and encrypted passwords 12390 - [MINOR] add ACL_TEST_F_NULL_MATCH 12391 - [MINOR] http-request: allow/deny/auth support for frontend/backend/listen 12392 - [MINOR] acl: add http_auth and http_auth_group 12393 - [MAJOR] use the new auth framework for http stats 12394 - [DOC] add info about userlists, http-request and http_auth/http_auth_group acls 12395 - [STATS] make it possible to change a CLI connection timeout 12396 - [BUG] patterns: copy-paste typo in type conversion arguments 12397 - [MINOR] pattern: make the converter more flexible by supporting void* and int args 12398 - [MINOR] standard: str2mask: string to netmask converter 12399 - [MINOR] pattern: add support for argument parsers for converters 12400 - [MINOR] pattern: add the "ipmask()" converting function 12401 - [MINOR] config: off-by-one in "stick-table" after list of converters 12402 - [CLEANUP] acl, patterns: make use of my_strndup() instead of malloc+memcpy 12403 - [BUG] restore accidentely removed line in last patch ! 12404 - [MINOR] checks: make the HTTP check code add the CRLF itself 12405 - [MINOR] checks: add the server's status in the checks 12406 - [BUILD] halog: make without arch-specific optimizations 12407 - [BUG] halog: fix segfault in case of empty log in PCT mode (cherry picked from commit fe362fe4762151d209b9656639ee1651bc2b329d) 12408 - [MINOR] http: disable keep-alive when process is going down 12409 - [MINOR] acl: add build_acl_cond() to make it easier to add ACLs in config 12410 - [CLEANUP] config: use build_acl_cond() instead of parse_acl_cond() 12411 - [CLEANUP] config: use warnif_cond_requires_resp() to check for bad ACLs 12412 - [MINOR] prepare req_*/rsp_* to receive a condition 12413 - [CLEANUP] config: specify correct const char types to warnif_* functions 12414 - [MEDIUM] config: factor out the parsing of 20 req*/rsp* keywords 12415 - [MEDIUM] http: make the request filter loop check for optional conditions 12416 - [MEDIUM] http: add support for conditional request filter execution 12417 - [DOC] add some build info about the AIX platform (cherry picked from commit e41914c77edbc40aebf827b37542d37d758e371e) 12418 - [MEDIUM] http: add support for conditional request header addition 12419 - [MEDIUM] http: add support for conditional response header rewriting 12420 - [DOC] add some missing ACLs about response header matching 12421 - [MEDIUM] http: add support for proxy authentication 12422 - [MINOR] http-auth: make the 'unless' keyword work as expected 12423 - [CLEANUP] config: use build_acl_cond() to simplify http-request ACL parsing 12424 - [MEDIUM] add support for anonymous ACLs 12425 - [MEDIUM] http: switch to tunnel mode after status 101 responses 12426 - [MEDIUM] http: stricter processing of the CONNECT method 12427 - [BUG] config: reset check request to avoid double free when switching to ssl/sql 12428 - [MINOR] config: fix too large ssl-hello-check message. 12429 - [BUG] fix error response in case of server error 12430 124312010/01/25 : 1.4-dev8 12432 - [CLEANUP] Keep in sync "defaults" support between documentation and code 12433 - [MEDIUM] http: add support for Proxy-Connection header 12434 - [CRITICAL] buffers: buffer_insert_line2 must not change the ->w entry 12435 - [MINOR] http: remove a copy-paste typo in transaction cleaning 12436 - [BUG] http: trim any excess buffer data when recycling a connection 12437 124382010/01/25 : 1.4-dev7 12439 - [BUG] appsession: possible memory leak in case of out of memory condition 12440 - [MINOR] config: don't accept 'appsession' in defaults section 12441 - [MINOR] Add function to parse a size in configuration 12442 - [MEDIUM] Add stick table (persistence) management functions and types 12443 - [MEDIUM] Add pattern fetch management types and functions 12444 - [MEDIUM] Add src dst and dport pattern fetches. 12445 - [MEDIUM] Add stick table configuration and init. 12446 - [MEDIUM] Add stick and store rules analysers. 12447 - [MINOR] add option "mysql-check" to use MySQL health checks 12448 - [BUG] health checks: fix requeued message 12449 - [OPTIM] remove SSP_O_VIA and SSP_O_STATUS 12450 - [BUG] checks: fix newline termination 12451 - [MINOR] acl: add fe_id/so_id to match frontend's and socket's id 12452 - [BUG] appsession's sessid must be reset at end of transaction 12453 - [BUILD] appsession did not build anymore under gcc-2.95 12454 - [BUG] server redirection used an uninitialized string. 12455 - [MEDIUM] http: fix handling of message pointers 12456 - [MINOR] http: fix double slash prefix with server redirect 12457 - [MINOR] http redirect: add the ability to append a '/' to the URL 12458 - [BUG] stream_interface: fix retnclose and remove cond_close 12459 - [MINOR] http redirect: don't explicitly state keep-alive on 1.1 12460 - [MINOR] http: move appsession 'sessid' from session to http_txn 12461 - [OPTIM] reorder http_txn to optimize cache lines placement 12462 - [MINOR] http: differentiate waiting for new request and waiting for a complete requst 12463 - [MINOR] http: add a separate "http-keep-alive" timeout 12464 - [MINOR] config: remove undocumented and buggy 'timeout appsession' 12465 - [DOC] fix various too large lines 12466 - [DOC] remove several trailing spaces 12467 - [DOC] add the doc about stickiness 12468 - [BUILD] remove a warning in standard.h on AIX 12469 - [BUG] checks: chars are unsigned on AIX, check was always true 12470 - [CLEANUP] stream_sock: MSG_NOSIGNAL is only for send(), not recv() 12471 - [BUG] check: we must not check for error before reading a response 12472 - [BUG] buffers: remove remains of wrong obsolete length check 12473 - [OPTIM] stream_sock: don't shutdown(write) when the socket is in error 12474 - [BUG] http: don't count req errors on client resets or t/o during keep-alive 12475 - [MEDIUM] http: don't switch to tunnel mode upon close 12476 - [DOC] add documentation about connection header processing 12477 - [MINOR] http: add http_remove_header2() to remove a header value. 12478 - [MINOR] tools: add a "word_match()" function to match words and ignore spaces 12479 - [MAJOR] http: rework request Connection header handling 12480 - [MAJOR] http: rework response Connection header handling 12481 - [MINOR] add the ability to force kernel socket buffer size. 12482 - [BUG] http_server_error() must not purge a previous pending response 12483 - [OPTIM] http: don't delay response if next request is incomplete 12484 - [MINOR] add the "force-persist" statement to force persistence on down servers 12485 - [MINOR] http: logs must report persistent connections to down servers 12486 - [BUG] buffer_replace2 must never change the ->w entry 12487 124882010/01/08 : 1.4-dev6 12489 - [BUILD] warning in stream_interface.h 12490 - [BUILD] warning ultoa_r returns char * 12491 - [MINOR] hana: only report stats if it is enabled 12492 - [MINOR] stats: add "a link" & "a href" for sockets 12493 - [MINOR]: stats: add show-legends to report additional informations 12494 - [MEDIUM] default-server support 12495 - [BUG]: add 'observer', 'on-error', 'error-limit' to supported options list 12496 - [MINOR] stats: add href to tracked server 12497 - [BUG] stats: show UP/DOWN status also in tracking servers 12498 - [DOC] Restore ability to search a keyword at the beginning of a line 12499 - [BUG] stats: cookie should be reported under backend not under proxy 12500 - [BUG] cfgparser/stats: fix error message 12501 - [BUG] http: disable auto-closing during chunk analysis 12502 - [BUG] http: fix hopefully last closing issue on data forwarding 12503 - [DEBUG] add an http_silent_debug function to debug HTTP states 12504 - [MAJOR] http: fix again the forward analysers 12505 - [BUG] http_process_res_common() must not skip the forward analyser 12506 - [BUG] http: some possible missed close remain in the forward chain 12507 - [BUG] http: redirect needed to be updated after recent changes 12508 - [BUG] http: don't set no-linger on response in case of forced close 12509 - [MEDIUM] http: restore the original behaviour of option httpclose 12510 - [TESTS] add a file to test various connection modes 12511 - [BUG] http: check options before the connection header 12512 - [MAJOR] session: fix the order by which the analysers are run 12513 - [MEDIUM] session: also consider request analysers added during response 12514 - [MEDIUM] http: make safer use of the DONT_READ and AUTO_CLOSE flags 12515 - [BUG] http: memory leak with captures when using keep-alive 12516 - [BUG] http: fix for capture memory leak was incorrect 12517 - [MINOR] http redirect: use proper call to return last response 12518 - [MEDIUM] http: wait for some flush of the response buffer before a new request 12519 - [MEDIUM] session: limit the number of analyser loops 12520 125212010/01/03 : 1.4-dev5 12522 - [MINOR] server tracking: don't care about the tracked server's mode 12523 - [MEDIUM] appsession: add "len", "prefix" and "mode" options 12524 - [MEDIUM] appsession: add the "request-learn" option 12525 - [BUG] Configuration parser bug when escaping characters 12526 - [MINOR] CSS & HTML fun 12527 - [MINOR] Collect & provide http response codes received from servers 12528 - [BUG] Fix silly typo: hspr_other -> hrsp_other 12529 - [MINOR] Add "a name" to stats page 12530 - [MINOR] add additional "a href"s to stats page 12531 - [MINOR] Collect & provide http response codes for frontends, fix backends 12532 - [DOC] some small spell fixes and unifications 12533 - [MEDIUM] Decrease server health based on http responses / events, version 3 12534 - [BUG] format '%d' expects type 'int', but argument 5 has type 'long int' 12535 - [BUG] config: fix erroneous check on cookie domain names, again 12536 - [BUG] Healthchecks: get a proper error code if connection cannot be completed immediately 12537 - [DOC] trivial fix for man page 12538 - [MINOR] config: report all supported options for the "bind" keyword 12539 - [MINOR] tcp: add support for the defer_accept bind option 12540 - [MINOR] unix socket: report the socket path in case of bind error 12541 - [CONTRIB] halog: support searching by response time 12542 - [DOC] add a reminder about obsolete documents 12543 - [DOC] point to 1.4 doc, not 1.3 12544 - [DOC] option tcp-smart-connect was missing from index 12545 - [MINOR] http: detect connection: close earlier 12546 - [CLEANUP] sepoll: clean up the fd_clr/fd_set functions 12547 - [OPTIM] move some rarely used fields out of fdtab 12548 - [MEDIUM] fd: merge fd_list into fdtab 12549 - [MAJOR] buffer: flag BF_DONT_READ to disable reads when not required 12550 - [MINOR] http: add new transaction flags for keep-alive and content-length 12551 - [MEDIUM] http request: parse connection, content-length and transfer-encoding 12552 - [MINOR] http request: update the TX_SRV_CONN_KA flag on rewrite 12553 - [MINOR] http request: simplify the test of no-data 12554 - [MEDIUM] http request: simplify POST length detection 12555 - [MEDIUM] http request: make use of pre-parsed transfer-encoding header 12556 - [MAJOR] http: create the analyser which waits for a response 12557 - [MINOR] http: pre-set the persistent flags in the transaction 12558 - [MEDIUM] http response: check body length and set transaction flags 12559 - [MINOR] http response: update the TX_CLI_CONN_KA flag on rewrite 12560 - [MINOR] http: remove the last call to stream_int_return 12561 - [IMPORT] import ebtree v5.0 into directory ebtree/ 12562 - [MEDIUM] build: switch ebtree users to use new ebtree version 12563 - [CLEANUP] ebtree: remove old unused files 12564 - [BUG] definitely fix regparm issues between haproxy core and ebtree 12565 - [CLEANUP] ebtree: cast to char * to get rid of gcc warning 12566 - [BUILD] missing #ifndef in ebmbtree.h 12567 - [BUILD] missing #ifndef in ebsttree.h 12568 - [MINOR] tools: add hex2i() function to convert hex char to int 12569 - [MINOR] http: create new MSG_BODY sub-states 12570 - [BUG] stream_sock: BUF_INFINITE_FORWARD broke splice on 64-bit platforms 12571 - [DOC] option is "defer-accept", not "defer_accept" 12572 - [MINOR] http: keep pointer to beginning of data 12573 - [BUG] x-original-to: name was not set in default instance 12574 - [MINOR] http: detect tunnel mode and set it in the session 12575 - [BUG] config: fix error message when config file is not found 12576 - [BUG] config: fix wrong handling of too large argument count 12577 - [BUG] config: disable 'option httplog' on TCP proxies 12578 - [BUG] config: fix erroneous check on cookie domain names 12579 - [BUG] config: cookie domain was ignored in defaults sections 12580 - [MINOR] config: support passing multiple "domain" statements to cookies 12581 - [MINOR] ebtree: add functions to lookup non-null terminated strings 12582 - [MINOR] config: don't report error on all subsequent files on failure 12583 - [BUG] second fix for the printf format warning 12584 - [BUG] check_post: limit analysis to the buffer length 12585 - [MEDIUM] http: process request body in a specific analyser 12586 - [MEDIUM] backend: remove HTTP POST parsing from get_server_ph_post() 12587 - [MAJOR] http: completely process the "connection" header 12588 - [MINOR] http: only consider chunk encoding with HTTP/1.1 12589 - [MAJOR] buffers: automatically compute the maximum buffer length 12590 - [MINOR] http: move the http transaction init/cleanup code to proto_http 12591 - [MINOR] http: move 1xx handling earlier to eliminate a lot of ifs 12592 - [MINOR] http: introduce a new synchronisation state : HTTP_MSG_DONE 12593 - [MEDIUM] http: rework chunk-size parser 12594 - [MEDIUM] http: add a new transaction flags indicating if we know the transfer length 12595 - [MINOR] buffers: add buffer_ignore() to skip some bytes 12596 - [BUG] http: offsets are relative to the buffer, not to ->som 12597 - [MEDIUM] http: automatically re-aling request buffer 12598 - [BUG] http: body parsing must consider the start of message 12599 - [MINOR] new function stream_int_cond_close() 12600 - [MAJOR] http: implement body parser 12601 - [BUG] http: typos on several unlikely() around header insertion 12602 - [BUG] stream_sock: wrong max computation on recv 12603 - [MEDIUM] http: rework the buffer alignment logic 12604 - [BUG] buffers: wrong size calculation for displaced data 12605 - [MINOR] stream_sock: prepare for closing when all pending data are sent 12606 - [MEDIUM] http: add two more states for the closing period 12607 - [MEDIUM] http: properly handle "option forceclose" 12608 - [MINOR] stream_sock: add SI_FL_NOLINGER for faster close 12609 - [MEDIUM] http: make forceclose use SI_FL_NOLINGER 12610 - [MEDIUM] session: set SI_FL_NOLINGER when aborting on write timeouts 12611 - [MEDIUM] http: add some SI_FL_NOLINGER around server errors 12612 - [MINOR] config: option forceclose is valid in frontends too 12613 - [BUILD] halog: insufficient include path in makefile 12614 - [MEDIUM] http: make the analyser not rely on msg being initialized anymore 12615 - [MEDIUM] http: make the parsers able to wait for a buffer flush 12616 - [MAJOR] http: add support for option http-server-close 12617 - [BUG] http: ensure we abort data transfer on write error 12618 - [BUG] last fix was overzealous and disabled server-close 12619 - [BUG] http: fix erroneous trailers size computation 12620 - [MINOR] stream_sock: enable MSG_MORE when forwarding finite amount of data 12621 - [OPTIM] http: set MSG_MORE on response when a pipelined request is pending 12622 - [BUG] http: redirects were broken by chunk changes 12623 - [BUG] http: the request URI pointer is relative to the buffer 12624 - [OPTIM] http: don't immediately enable reading on request 12625 - [MINOR] http: move redirect messages to HTTP/1.1 with a content-length 12626 - [BUG] http: take care of errors, timeouts and aborts during the data phase 12627 - [MINOR] http: don't wait for sending requests to the server 12628 - [MINOR] http: make the conditional redirect support keep-alive 12629 - [BUG] http: fix cookie parser to support spaces and commas in values 12630 - [MINOR] config: some options were missing for "redirect" 12631 - [MINOR] redirect: add support for unconditional rules 12632 - [MINOR] config: centralize proxy struct initialization 12633 - [MEDIUM] config: remove the limitation of 10 reqadd/rspadd statements 12634 - [MEDIUM] config: remove the limitation of 10 config files 12635 - [CLEANUP] http: remove a remaining impossible condition 12636 - [OPTIM] http: optimize a bit the construct of the forward loops 12637 126382009/10/12 : 1.4-dev4 12639 - [DOC] add missing rate_lim and rate_max 12640 - [MAJOR] struct chunk rework 12641 - [MEDIUM] Health check reporting code rework + health logging, v3 12642 - [BUG] check if rise/fall has an argument and it is > 0 12643 - [MINOR] health checks logging unification 12644 - [MINOR] add "description", "node" and show-node"/"show-desc", remove "node-name", v2 12645 - [MINOR] Allow dots in show-node & add "white-space: nowrap" in th.pxname. 12646 - [DOC] Add information about http://haproxy.1wt.eu/contrib.html 12647 - [MINOR] Introduce include/types/counters.h 12648 - [CLEANUP] Move counters to dedicated structures 12649 - [MINOR] Add "clear counters" to clear statistics counters 12650 - [MEDIUM] Collect & provide separate statistics for sockets, v2 12651 - [BUG] Fix NULL pointer dereference in stats_check_uri_auth(), v2 12652 - [MINOR] acl: don't report valid acls as potential mistakes 12653 - [MINOR] Add cut_crlf(), ltrim(), rtrim() and alltrim() 12654 - [MINOR] Add chunk_htmlencode and chunk_asciiencode 12655 - [MINOR] Capture & display more data from health checks, v2 12656 - [BUG] task.c: don't assing last_timer to node-less entries 12657 - [BUG] http stats: large outputs sometimes got some parts chopped off 12658 - [MINOR] backend: export some functions to recount servers 12659 - [MINOR] backend: uninline some LB functions 12660 - [MINOR] include time.h from freq_ctr.h as is uses "now". 12661 - [CLEANUP] backend: move LB algos to individual files 12662 - [MINOR] lb_map: reorder code in order to ease integration of new hash functions 12663 - [CLEANUP] proxy: move last lb-specific bits to their respective files 12664 - [MINOR] backend: separate declarations of LB algos from their lookup method 12665 - [MINOR] backend: reorganize the LB algorithm selection 12666 - [MEDIUM] backend: introduce the "static-rr" LB algorithm 12667 - [MINOR] report list of supported pollers with -vv 12668 - [DOC] log-health-checks is an option, not a directive 12669 - [MEDIUM] new option "independant-streams" to stop updating read timeout on writes 12670 - [BUG] stats: don't call buffer_shutw(), but ->shutw() instead 12671 - [MINOR] stats: strip CR and LF from the input command line 12672 - [BUG] don't refresh timeouts late after detected activity 12673 - [MINOR] stats_dump_errors_to_buffer: use buffer_feed_chunk() 12674 - [MINOR] stats_dump_sess_to_buffer: use buffer_feed_chunk() 12675 - [MINOR] stats: make stats_dump_raw_to_buffer() use buffer_feed_chunk 12676 - [MEDIUM] stats: don't use s->ana_state anymore 12677 - [MINOR] remove now obsolete ana_state from the session struct 12678 - [MEDIUM] stats: make HTTP stats use an I/O handler 12679 - [MEDIUM] stream_int: adjust WAIT_ROOM handling 12680 - [BUG] config: look for ID conflicts in all sockets, not only last ones. 12681 - [MINOR] config: reference file and line with any listener/proxy/server declaration 12682 - [MINOR] config: report places of duplicate names or IDs 12683 - [MINOR] config: add pointer to file name in block/redirect/use_backend/monitor rules 12684 - [MINOR] tools: add a new get_next_id() function 12685 - [MEDIUM] config: automatically find unused IDs for proxies, servers and listeners 12686 - [OPTIM] counters: move some max numbers to the counters struct 12687 - [BUG] counters: fix segfault on missing counters for a listener 12688 - [MEDIUM] backend: implement consistent hashing variation 12689 - [MINOR] acl: add fe_conn, be_conn, queue, avg_queue 12690 - [MINOR] stats: use 'clear counters all' to clear all values 12691 - [MEDIUM] add access restrictions to the stats socket 12692 - [MINOR] buffers: add buffer_feed2() and make buffer_feed() measure string length 12693 - [MINOR] proxy: provide function to retrieve backend/server pointers 12694 - [MINOR] add the "initial weight" to the server struct. 12695 - [MEDIUM] stats: add the "get weight" command to report a server's weight 12696 - [MEDIUM] stats: add the "set weight" command 12697 - [BUILD] add a 'make tags' target 12698 - [MINOR] stats: add support for numeric IDs in set weight/get weight 12699 - [MINOR] stats: use a dedicated state to output static data 12700 - [OPTIM] stats: check free space before trying to print 12701 127022009/09/24 : 1.4-dev3 12703 - [BUILD] compilation of haproxy-1.4-dev2 on FreeBSD 12704 - [MEDIUM] Collect & show information about last health check, v3 12705 - [MINOR] export the hostname variable so that all the code can access it 12706 - [MINOR] stats: add a new node-name setting 12707 - [MEDIUM] remove old experimental tcpsplice option 12708 - [BUILD] fix build for systems without SOL_TCP 12709 - [MEDIUM] move connection establishment from backend to the SI. 12710 - [MEDIUM] make the global stats socket part of a frontend 12711 - [MEDIUM] session: account per-listener connections 12712 - [MINOR] session: switch to established state if no connect function 12713 - [MEDIUM] make the unix stats sockets use the generic session handler 12714 - [CLEANUP] unix: remove uxst_process_session() 12715 - [CLEANUP] move remaining stats sockets code to dumpstats 12716 - [MINOR] move the initial task's nice value to the listener 12717 - [MINOR] cleanup set_session_backend by using pre-computed analysers 12718 - [MINOR] set s->srv_error according to the analysers 12719 - [MEDIUM] set rep->analysers from fe and be analysers 12720 - [MEDIUM] replace BUFSIZE with buf->size in computations 12721 - [MEDIUM] make it possible to change the buffer size in the configuration 12722 - [MEDIUM] report error on buffer writes larger than buffer size 12723 - [MEDIUM] stream_interface: add and use ->update function to resync 12724 - [CLEANUP] remove ifdef MSG_NOSIGNAL and define it instead 12725 - [MEDIUM] remove TCP_CORK and make use of MSG_MORE instead 12726 - [BUG] tarpit did not work anymore 12727 - [MINOR] acl: add support for hdr_ip to match IP addresses in headers 12728 - [MAJOR] buffers: fix misuse of the BF_SHUTW_NOW flag 12729 - [MINOR] buffers: provide more functions to handle buffer data 12730 - [MEDIUM] buffers: provide new buffer_feed*() function 12731 - [MINOR] buffers: add peekchar and peekline functions for stream interfaces 12732 - [MINOR] buffers: provide buffer_si_putchar() to send a char from a stream interface 12733 - [BUG] buffer_forward() would not correctly consider data already scheduled 12734 - [MINOR] buffers: add buffer_cut_tail() to cut only unsent data 12735 - [MEDIUM] stream_interface: make use of buffer_cut_tail() to report errors 12736 - [MAJOR] http: add support for HTTP 1xx informational responses 12737 - [MINOR] buffers: inline buffer_si_putchar() 12738 - [MAJOR] buffers: split BF_WRITE_ENA into BF_AUTO_CONNECT and BF_AUTO_CLOSE 12739 - [MAJOR] buffers: fix the BF_EMPTY flag's meaning 12740 - [BUG] stream_interface: SI_ST_CLO must have buffers SHUT 12741 - [MINOR] stream_sock: don't set SI_FL_WAIT_DATA if BF_SHUTW_NOW is set 12742 - [MEDIUM] add support for infinite forwarding 12743 - [BUILD] stream_interface: fix conflicting declaration 12744 - [BUG] buffers: buffer_forward() must not always clear BF_OUT_EMPTY 12745 - [BUG] variable buffer size ignored at initialization time 12746 - [MINOR] ensure that buffer_feed() and buffer_skip() set BF_*_PARTIAL 12747 - [BUG] fix buffer_skip() and buffer_si_getline() to correctly handle wrap-arounds 12748 - [MINOR] stream_interface: add SI_FL_DONT_WAKE flag 12749 - [MINOR] stream_interface: add iohandler callback 12750 - [MINOR] stream_interface: add functions to support running as internal/external tasks 12751 - [MEDIUM] session: call iohandler for embedded tasks (applets) 12752 - [MINOR] add a ->private member to the stream_interface 12753 - [MEDIUM] stats: prepare the connection for closing before dumping 12754 - [MEDIUM] stats: replace the stats socket analyser with an SI applet 12755 127562009/08/09 : 1.4-dev2 12757 - [BUG] task: fix possible crash when some timeouts are not configured 12758 - [BUG] log: option tcplog would log to global if no logger was defined 12759 127602009/07/29 : 1.4-dev1 12761 - [MINOR] acl: add support for matching of RDP cookies 12762 - [MEDIUM] add support for RDP cookie load-balancing 12763 - [MEDIUM] add support for RDP cookie persistence 12764 - [MINOR] add a new CLF log format 12765 - [MINOR] startup: don't imply -q with -D 12766 - [BUG] ensure that we correctly re-start old process in case of error 12767 - [MEDIUM] add support for binding to source port ranges during connect 12768 - [MINOR] config: track "no option"/"option" changes 12769 - [MINOR] config: support resetting options do default values 12770 - [MEDIUM] implement option tcp-smart-accept at the frontend 12771 - [MEDIUM] stream_sock: implement tcp-cork for use during shutdowns on Linux 12772 - [MEDIUM] implement tcp-smart-connect option at the backend 12773 - [MEDIUM] add support for TCP MSS adjustment for listeners 12774 - [MEDIUM] support setting a server weight to zero 12775 - [MINOR] make DEFAULT_MAXCONN user-configurable at build time 12776 - [MAJOR] session: don't clear buffer status flags anymore 12777 - [MAJOR] session: only check for timeouts when they have just occurred. 12778 - [MAJOR] session: simplify buffer error handling 12779 - [MEDIUM] config: split parser and checker in two functions 12780 - [MEDIUM] config: support loading multiple configuration files 12781 - [MEDIUM] stream_sock: don't close prematurely when nolinger is set 12782 - [MEDIUM] session: rework buffer analysis to permit permanent analysers 12783 - [MEDIUM] splice: set the capability on each stream_interface 12784 - [BUG] http: redirect rules were processed too early 12785 - [CLEANUP] remove unused DEBUG_PARSE_NO_SPEEDUP define 12786 - [MEDIUM] http: split request waiter from request processor 12787 - [MEDIUM] session: tell analysers what bit they were called for 12788 - [MAJOR] http: complete splitting of the remaining stages 12789 - [MINOR] report in the proxies the requirements for ACLs 12790 - [MINOR] http: rely on proxy->acl_requires to allocate hdr_idx 12791 - [MINOR] acl: add HTTP protocol detection (req_proto_http) 12792 - [MINOR] prepare callers of session_set_backend to handle errors 12793 - [BUG] default ACLs did not properly set the ->requires flag 12794 - [MEDIUM] allow a TCP frontend to switch to an HTTP backend 12795 - [MINOR] ensure we can jump from swiching rules to http without data 12796 - [MINOR] http: take http request timeout from the backend 12797 - [MINOR] allow TCP inspection rules to make use of HTTP ACLs 12798 - [BUILD] report commit date and not author's date as build date 12799 - [MINOR] acl: don't complain anymore when using L7 acls in TCP 12800 - [BUG] stream_sock: always shutdown(SHUT_WR) before closing 12801 - [BUG] stream_sock: don't stop reading when the poller reports an error 12802 - [BUG] config: tcp-request content only accepts "if" or "unless" 12803 - [BUG] task: fix possible timer drift after update 12804 - [MINOR] apply tcp-smart-connect option for the checks too 12805 - [MINOR] stats: better displaying in MSIE 12806 - [MINOR] config: improve error reporting in global section 12807 - [MINOR] config: improve error reporting in listen sections 12808 - [MINOR] config: the "capture" keyword is not allowed in backends 12809 - [MINOR] config: improve error reporting when checking configuration 12810 - [BUILD] fix a minor build warning on AIX 12811 - [BUILD] use "git cmd" instead of "git-cmd" 12812 - [CLEANUP] report 2009 not 2008 in the copyright banner. 12813 - [MINOR] print usage on the stats sockets upon invalid commands 12814 - [MINOR] acl: detect and report potential mistakes in ACLs 12815 - [BUILD] fix incorrect printf arg count with tcp_splice 12816 - [BUG] fix random pauses on last segment of a series 12817 - [BUILD] add support for build under Cygwin 12818 128192009/06/09 : 1.4-dev0 12820 - exact copy of 1.3.18 12821 128222009/05/10 : 1.3.18 12823 - [MEDIUM] add support for "balance hdr(name)" 12824 - [CLEANUP] give a little bit more information in error message 12825 - [MINOR] add X-Original-To: header 12826 - [BUG] x-original-to: fix missing initialization to default value 12827 - [BUILD] spec file: fix broken pipe during rpmbuild and add man file 12828 - [MINOR] improve reporting of misplaced acl/reqxxx rules 12829 - [MEDIUM] http: add options to ignore invalid header names 12830 - [MEDIUM] http: capture invalid requests/responses even if accepted 12831 - [BUILD] add format(printf) to printf-like functions 12832 - [MINOR] fix several printf formats and missing arguments 12833 - [BUG] stats: total and lbtot are unsigned 12834 - [MINOR] fix a few remaining printf-like formats on 64-bit platforms 12835 - [CLEANUP] remove unused make option from haproxy.spec 12836 - [BUILD] make it possible to pass alternative arch at build time 12837 - [MINOR] switch all stat counters to 64-bit 12838 - [MEDIUM] ensure we don't recursively call pool_gc2() 12839 - [CRITICAL] uninitialized response field can sometimes cause crashes 12840 - [BUG] fix wrong pointer arithmetics in HTTP message captures 12841 - [MINOR] rhel init script : support the reload operation 12842 - [MINOR] add basic signal handling functions 12843 - [BUILD] add signal.o to all makefiles 12844 - [MEDIUM] call signal_process_queue from run_poll_loop 12845 - [MEDIUM] pollers: don't wait if a signal is pending 12846 - [MEDIUM] convert all signals to asynchronous signals 12847 - [BUG] O(1) pollers should check their FD before closing it 12848 - [MINOR] don't close stdio fds twice 12849 - [MINOR] add options dontlog-normal and log-separate-errors 12850 - [DOC] minor fixes and rearrangements 12851 - [BUG] fix parser crash on unconditional tcp content rules 12852 - [DOC] rearrange the configuration manual and add a summary 12853 - [MINOR] standard: provide a new 'my_strndup' function 12854 - [MINOR] implement per-logger log level limitation 12855 - [MINOR] compute the max of sessions/s on fe/be/srv 12856 - [MINOR] stats: report max sessions/s and limit in CSV export 12857 - [MINOR] stats: report max sessions/s and limit in HTML stats 12858 - [MINOR] stats/html: use the arial font before helvetica 12859 128602009/03/29 : 1.3.17 12861 - Update specfile to build for v2.6 kernel. 12862 - [BUG] reset the stream_interface connect timeout upon connect or error 12863 - [BUG] reject unix accepts when connection limit is reached 12864 - [MINOR] show sess: report number of calls to each task 12865 - [BUG] don't call epoll_ctl() on closed sockets 12866 - [BUG] stream_sock: disable I/O on fds reporting an error 12867 - [MINOR] sepoll: don't count two events on the same FD. 12868 - [MINOR] show sess: report a lot more information about sessions 12869 - [BUG] stream_sock: check for shut{r,w} before refreshing some timeouts 12870 - [BUG] don't set an expiration date directly from now_ms 12871 - [MINOR] implement ulltoh() to write HTML-formatted numbers 12872 - [MINOR] stats/html: group digits by 3 to clarify numbers 12873 - [BUILD] remove haproxy-small.spec 12874 - [BUILD] makefile: remove unused references to linux24eold and EPOLL_CTL_WORKAROUND 12875 128762009/03/22 : 1.3.16 12877 - [BUILD] Fixed Makefile for linking pcre 12878 - [CONTRIB] selinux policy for haproxy 12879 - [MINOR] show errors: encode backslash as well as non-ascii characters 12880 - [MINOR] cfgparse: some cleanups in the consistency checks 12881 - [MINOR] cfgparse: set backends to "balance roundrobin" by default 12882 - [MINOR] tcp-inspect: permit the use of no-delay inspection 12883 - [MEDIUM] reverse internal proxy declaration order to match configuration 12884 - [CLEANUP] config: catch and report some possibly wrong rule ordering 12885 - [BUG] connect timeout is in the stream interface, not the buffer 12886 - [BUG] session: errors were not reported in termination flags in TCP mode 12887 - [MINOR] tcp_request: let the caller take care of errors and timeouts 12888 - [CLEANUP] http: remove some commented out obsolete code in process_response 12889 - [MINOR] update ebtree to version 4.1 12890 - [MEDIUM] scheduler: get rid of the 4 trees thanks and use ebtree v4.1 12891 - [BUG] sched: don't leave 3 lasts tasks unprocessed when niced tasks are present 12892 - [BUG] scheduler: fix improper handling of duplicates __task_queue() 12893 - [MINOR] sched: permit a task to stay up between calls 12894 - [MINOR] task: keep a task count and clean up task creators 12895 - [MINOR] stats: report number of tasks (active and running) 12896 - [BUG] server check intervals must not be null 12897 - [OPTIM] stream_sock: don't retry to read after a large read 12898 - [OPTIM] buffer: new BF_READ_DONTWAIT flag reduces EAGAIN rates 12899 - [MEDIUM] session: don't resync FSMs on non-interesting changes 12900 - [BUG] check for global.maxconn before doing accept() 12901 - [OPTIM] sepoll: do not re-check whole list upon accepts 12902 129032009/03/09 : 1.3.16-rc2 12904 - [BUG] stream_sock: write timeout must be updated when forwarding ! 12905 129062009/03/09 : 1.3.16-rc1 12907 - appsessions: cleanup DEBUG_HASH and initialize request_counter 12908 - [MINOR] acl: add new keyword "connslots" 12909 - [MINOR] cfgparse: fix off-by 2 in error message size 12910 - [BUILD] fix build with gcc 4.3 12911 - [BUILD] fix MANDIR default location to match documentation 12912 - [TESTS] add a debug patch to help trigger the stats bug 12913 - [BUG] Flush buffers also where there are exactly 0 bytes left 12914 - [MINOR] Allow to specify a domain for a cookie 12915 - [BUG/CLEANUP] cookiedomain -> cookie_domain rename + free(p->cookie_domain) 12916 - [MEDIUM] Fix memory freeing at exit 12917 - [MEDIUM] Fix memory freeing at exit, part 2 12918 - [BUG] Fix listen & more of 2 couples <ip>:<port> 12919 - [DOC] remove buggy comment for use_backend 12920 - [CRITICAL] fix server state tracking: it was O(n!) instead of O(n) 12921 - [MEDIUM] add support for URI hash depth and length limits 12922 - [MINOR] permit renaming of x-forwarded-for header 12923 - [BUILD] fix Makefile.bsd and Makefile.osx for stream_interface 12924 - [BUILD] Haproxy won't compile if DEBUG_FULL is defined 12925 - [MEDIUM] upgrade to ebtree v4.0 12926 - [DOC] update the README file with new build options 12927 - [MEDIUM] reduce risk of event starvation in ev_sepoll 12928 - [MEDIUM] detect streaming buffers and tag them as such 12929 - [MEDIUM] add support for conditional HTTP redirection 12930 - [BUILD] make install should depend on haproxy not "all" 12931 - [DEBUG] add a TRACE macro to facilitate runtime data extraction 12932 - [BUG] event pollers must not wait if a task exists in the run queue 12933 - [BUG] queue management: wake oldest request in queues 12934 - [BUG] log: reported queue position was offed-by-one 12935 - [BUG] fix the dequeuing logic to ensure that all requests get served 12936 - [DOC] documentation for the "retries" parameter was missing. 12937 - [MEDIUM] implement a monotonic internal clock 12938 - [MEDIUM] further improve monotonic clock by check forward jumps 12939 - [OPTIM] add branch prediction hints in list manipulations 12940 - [MAJOR] replace ultree with ebtree in wait-queues 12941 - [BUG] we could segfault during exit while freeing uri_auths 12942 - [BUG] wqueue: perform proper timeout comparisons with wrapping values 12943 - [MINOR] introduce now_ms, the current date in milliseconds 12944 - [BUG] disable buffer read timeout when reading stats 12945 - [MEDIUM] rework the wait queue mechanism 12946 - [BUILD] change declaration of base64tab to fix build with Intel C++ 12947 - [OPTIM] shrink wake_expired_tasks() by using task_wakeup() 12948 - [MAJOR] use an ebtree instead of a list for the run queue 12949 - [MEDIUM] introduce task->nice and boot access to statistics 12950 - [OPTIM] task_queue: assume most consecutive timers are equal 12951 - [BUILD] silent a warning in unlikely() with gcc 4.x 12952 - [MAJOR] convert all expiration timers from timeval to ticks 12953 - [BUG] use_backend would not correctly consider "unless" 12954 - [TESTS] added test-acl.cfg to test some ACL combinations 12955 - [MEDIUM] add support for configuration keyword registration 12956 - [MEDIUM] modularize the global "stats" keyword configuration parser 12957 - [MINOR] cfgparse: add support for warnings in external functions 12958 - [MEDIUM] modularize the "timeout" keyword configuration parser 12959 - [MAJOR] implement tcp request content inspection 12960 - [MINOR] acl: add a new parsing function: parse_dotted_ver 12961 - [MINOR] acl: add req_ssl_ver in TCP, to match an SSL version 12962 - [CLEANUP] remove unused include/types/client.h 12963 - [CLEANUP] remove many #include <types/xxx> from C files 12964 - [CLEANUP] remove dependency on obsolete INTBITS macro 12965 - [DOC] document the new "tcp-request" keyword and associated ACLs 12966 - [MINOR] acl: add REQ_CONTENT to the list of default acls 12967 - [MEDIUM] acl: permit fetch() functions to set the result themselves 12968 - [MEDIUM] acl: get rid of dummy values in always_true/always_false 12969 - [MINOR] acl: add the "wait_end" acl verb 12970 - [MEDIUM] acl: enforce ACL type checking 12971 - [MEDIUM] acl: set types on all currently known ACL verbs 12972 - [MEDIUM] acl: when possible, report the name and requirements of ACLs in warnings 12973 - [CLEANUP] remove 65 useless NULL checks before free 12974 - [MEDIUM] memory: update pool_free2() to support NULL pointers 12975 - [MEDIUM] buffers: ensure buffer_shut* are properly called upon shutdowns 12976 - [MEDIUM] process_srv: rely on buffer flags for client shutdown 12977 - [MEDIUM] process_srv: don't rely at all on client state 12978 - [MEDIUM] process_cli: don't rely at all on server state 12979 - [BUG] fix segfault with url_param + check_post 12980 - [BUG] server timeout was not considered in some circumstances 12981 - [BUG] client timeout incorrectly rearmed while waiting for server 12982 - [MAJOR] kill CL_STINSPECT and CL_STHEADERS (step 1) 12983 - [MAJOR] get rid of SV_STANALYZE (step 2) 12984 - [MEDIUM] simplify and centralize request timeout cancellation and request forwarding 12985 - [MAJOR] completely separate HTTP and TCP states on the request path 12986 - [BUG] fix recently introduced loop when client closes early 12987 - [MAJOR] get rid of the SV_STHEADERS state 12988 - [MAJOR] better separation of response processing and server state 12989 - [MAJOR] clearly separate HTTP response processing from TCP server state 12990 - [MEDIUM] remove unused references to {CL|SV}_STSHUT* 12991 - [MINOR] term_trace: add better instrumentations to trace the code 12992 - [BUG] ev_sepoll: closed file descriptors could persist in the spec list 12993 - [BUG] process_response must not enable the read FD 12994 - [BUG] buffers: remove BF_MAY_CONNECT and fix forwarding issue 12995 - [BUG] process_response: do not touch srv_state 12996 - [BUG] maintain_proxies must not disable backends 12997 - [CLEANUP] get rid of BF_SHUT*_PENDING 12998 - [MEDIUM] buffers: add BF_EMPTY and BF_FULL to remove dependency on req/rep->l 12999 - [MAJOR] process_session: rely only on buffer flags 13000 - [MEDIUM] use buffer->wex instead of buffer->cex for connect timeout 13001 - [MEDIUM] centralize buffer timeout checks at the top of process_session 13002 - [MINOR] ensure the termination flags are set by process_xxx 13003 - [MEDIUM] session: move the analysis bit field to the buffer 13004 - [OPTIM] process_cli/process_srv: reduce the number of tests 13005 - [BUG] regparm is broken on gcc < 3 13006 - [BUILD] fix warning in proto_tcp.c with gcc >= 4 13007 - [MEDIUM] merge inspect_exp and txn->exp into request buffer 13008 - [BUG] process_cli/process_srv: don't call shutdown when already done 13009 - [BUG] process_request: HTTP body analysis must return zero if missing data 13010 - [TESTS] test-fsm: 22 regression tests for state machines 13011 - [BUG] Fix empty X-Forwarded-For header name when set in defaults section 13012 - [BUG] fix harmless but wrong fd insertion sequence 13013 - [MEDIUM] make it possible for analysers to follow the whole session 13014 - [MAJOR] rework of the server FSM 13015 - [OPTIM] remove useless fd_set(read) upon shutdown(write) 13016 - [MEDIUM] massive cleanup of process_srv() 13017 - [MEDIUM] second level of code cleanup for process_srv_data 13018 - [MEDIUM] third cleanup and optimization of process_srv_data() 13019 - [MEDIUM] process_srv_data: ensure that we always correctly re-arm timeouts 13020 - [MEDIUM] stream_sock_process_data moved to stream_sock.c 13021 - [MAJOR] make the client side use stream_sock_process_data() 13022 - [MEDIUM] split stream_sock_process_data 13023 - [OPTIM] stream_sock_read must check for null-reads more often 13024 - [MINOR] only call flow analysers when their read side is connected. 13025 - [MEDIUM] reintroduce BF_HIJACK with produce_content 13026 - [MINOR] re-arrange buffer flags and rename some of them 13027 - [MINOR] do not check for BF_SHUTR when computing write timeout 13028 - [OPTIM] ev_sepoll: detect newly created FDs and check them once 13029 - [OPTIM] reduce the number of calls to task_wakeup() 13030 - [OPTIM] force inlining of large functions with gcc >= 3 13031 - [MEDIUM] indicate a reason for a task wakeup 13032 - [MINOR] change type of fdtab[]->owner to void* 13033 - [MAJOR] make stream sockets aware of the stream interface 13034 - [MEDIUM] stream interface: add the ->shutw method as well as in and out buffers 13035 - [MEDIUM] buffers: add BF_READ_ATTACHED and BF_ANA_TIMEOUT 13036 - [MEDIUM] process_session: make use of the new buffer flags 13037 - [CLEANUP] process_session: move debug outputs out of the critical loop 13038 - [MEDIUM] move QUEUE and TAR timers to stream interfaces 13039 - [OPTIM] add compiler hints in tick_is_expired() 13040 - [MINOR] add buffer_check_timeouts() to check what timeouts have fired. 13041 - [MEDIUM] use buffer_check_timeouts instead of stream_sock_check_timeouts() 13042 - [MINOR] add an expiration flag to the stream_sock_interface 13043 - [MAJOR] migrate the connection logic to stream interface 13044 - [MAJOR] add a connection error state to the stream_interface 13045 - [MEDIUM] add the SN_CURR_SESS flag to the session to track open sessions 13046 - [MEDIUM] continue layering cleanups. 13047 - [MEDIUM] stream_interface: added a DISconnected state between CON/EST and CLO 13048 - [MEDIUM] remove stream_sock_update_data() 13049 - [MINOR] maintain a global session list in order to ease debugging 13050 - [BUG] shutw must imply close during a connect 13051 - [MEDIUM] process shutw during connection attempt 13052 - [MEDIUM] make the stream interface control the SHUT{R,W} bits 13053 - [MAJOR] complete layer4/7 separation 13054 - [CLEANUP] move the session-related functions to session.c 13055 - [MINOR] call session->do_log() for logging 13056 - [MINOR] replace the ambiguous client_return function by stream_int_return 13057 - [MINOR] replace client_retnclose() with stream_int_retnclose() 13058 - [MINOR] replace srv_close_with_err() with http_server_error() 13059 - [MEDIUM] make the http server error function a pointer in the session 13060 - [CLEANUP] session.c: removed some migration left-overs in sess_establish() 13061 - [MINOR] stream_sock_data_finish() should not expose fd 13062 - [MEDIUM] extract TCP request processing from HTTP 13063 - [MEDIUM] extract the HTTP tarpit code from process_request(). 13064 - [MEDIUM] move the HTTP request body analyser out of process_request(). 13065 - [MEDIUM] rename process_request to http_process_request 13066 - [BUG] fix forgotten server session counter 13067 - [MINOR] declare process_session in session.h, not proto_http.h 13068 - [MEDIUM] first pass of lifting to proto_uxst.c:uxst_event_accept() 13069 - [MINOR] add an analyser code for UNIX stats request 13070 - [MINOR] pre-set analyser flags on the listener at registration time 13071 - [BUG] do not forward close from cons to prod with analysers 13072 - [MEDIUM] ensure that sock->shutw() also closes read for init states 13073 - [MINOR] add an analyser state in struct session 13074 - [MAJOR] make unix sockets work again with stats 13075 - [MEDIUM] remove cli_fd, srv_fd, cli_state and srv_state from the session 13076 - [MINOR] move the listener reference from fd to session 13077 - [MEDIUM] reference the current hijack function in the buffer itself 13078 - [MINOR] slightly rebalance stats_dump_{raw,http} 13079 - [MINOR] add a new back-reference type : struct bref 13080 - [MINOR] add back-references to sessions for later use by a dumper. 13081 - [MEDIUM] add support for "show sess" in unix stats socket 13082 - [BUG] do not release the connection slot during a retry 13083 - [BUG] dynamic connection throttling could return a max of zero conns 13084 - [BUG] do not try to pause backends during reload 13085 - [BUG] ensure that listeners from disabled proxies are correctly unbound. 13086 - [BUG] acl-related keywords are not allowed in defaults sections 13087 - [BUG] cookie capture is declared in the frontend but checked on the backend 13088 - [BUG] critical errors should be reported even in daemon mode 13089 - [MINOR] redirect: add support for the "drop-query" option 13090 - [MINOR] redirect: add support for "set-cookie" and "clear-cookie" 13091 - [MINOR] redirect: in prefix mode a "/" means not to change the URI 13092 - [BUG] do not dequeue requests on a dead server 13093 - [BUG] do not dequeue the backend's pending connections on a dead server 13094 - [MINOR] stats: indicate if a task is running in "show sess" 13095 - [BUG] check timeout must not be changed if timeout.check is not set 13096 - [BUG] "option transparent" is for backend, not frontend ! 13097 - [MINOR] transfer errors were not reported anymore in data phase 13098 - [MEDIUM] add a send limit to a buffer 13099 - [MEDIUM] don't report buffer timeout when there is I/O activity 13100 - [MEDIUM] indicate when we don't care about read timeout 13101 - [MINOR] add flags to indicate when a stream interface is waiting for space/data 13102 - [MEDIUM] enable inter-stream_interface wakeup calls 13103 - [MAJOR] implement autonomous inter-socket forwarding 13104 - [MINOR] add the splice_len member to the buffer struct in preparation of splice support 13105 - [MEDIUM] stream_sock: factor out the return path in case of no-writes 13106 - [MEDIUM] i/o: rework ->to_forward and ->send_max 13107 - [OPTIM] stream_sock: do not ask for polling on EAGAIN if we have read 13108 - [OPTIM] buffer: replace rlim by max_len 13109 - [OPTIM] stream_sock: factor out the buffer full handling out of the loop 13110 - [CLEANUP] replace a few occurrences of (flags & X) && !(flags & Y) 13111 - [CLEANUP] stream_sock: move the write-nothing condition out of the loop 13112 - [MEDIUM] split stream_sock_write() into callback and core functions 13113 - [MEDIUM] stream_sock_read: call ->chk_snd whenever there are data pending 13114 - [MINOR] stream_sock: fix a few wrong empty calculations 13115 - [MEDIUM] stream_sock: try to send pending data on chk_snd() 13116 - [MINOR] global.maxpipes: add the ability to reserve file descriptors for pipes 13117 - [MEDIUM] splice: add configuration options and set global.maxpipes 13118 - [MINOR] introduce structures required to support Linux kernel splicing 13119 - [MEDIUM] add definitions for Linux kernel splicing 13120 - [MAJOR] complete support for linux 2.6 kernel splicing 13121 - [BUG] reserve some pipes for backends with splice enabled 13122 - [MEDIUM] splice: add hints to support older buggy kernels 13123 - [MEDIUM] introduce pipe pools 13124 - [MEDIUM] splice: make use of pipe pools 13125 - [STATS] report pipe usage in the statistics 13126 - [OPTIM] make global.maxpipes default to global.maxconn/4 when not specified 13127 - [BUILD] fix snapshot date extraction with negative timezones 13128 - [MEDIUM] move global tuning options to the global structure 13129 - [MEDIUM] splice: add the global "nosplice" option 13130 - [BUILD] add USE_LINUX_SPLICE to enable LINUX_SPLICE on linux 2.6 13131 - [BUG] we must not exit if protocol binding only returns a warning 13132 - [MINOR] add support for bind interface name 13133 - [BUG] inform the user when root is expected but not set 13134 - [MEDIUM] add support for source interface binding 13135 - [MEDIUM] add support for source interface binding at the server level 13136 - [MEDIUM] implement bind-process to limit service presence by process 13137 - [DOC] document maxpipes, nosplice, option splice-{auto,request,response} 13138 - [DOC] filled the logging section of the configuration manual 13139 - [DOC] document HTTP status codes 13140 - [DOC] document a few missing info about errorfile 13141 - [BUG] fix random memory corruption using "show sess" 13142 - [BUG] fix unix socket processing of interrupted output 13143 - [DOC] add diagrams of queuing and future ACL design 13144 - [BUILD] proto_http did not build on gcc-2.95 13145 - [BUG] the "source" keyword must first clear optional settings 13146 - [BUG] global.tune.maxaccept must be limited even in mono-process mode 13147 - [MINOR] ensure that http_msg_analyzer updates pointer to invalid char 13148 - [MEDIUM] store a complete dump of request and response errors in proxies 13149 - [MEDIUM] implement error dump on unix socket with "show errors" 13150 - [DOC] document "show errors" 13151 - [MINOR] errors dump must use user-visible date, not internal date. 13152 - [MINOR] time: add __usec_to_1024th to convert usecs to 1024th of second 13153 - [MINOR] add curr_sec_ms and curr_sec_ms_scaled for current second. 13154 - [MEDIUM] measure and report session rate on frontend, backends and servers 13155 - [BUG] the "connslots" keyword was matched as "connlots" 13156 - [MINOR] acl: add 2 new verbs: fe_sess_rate and be_sess_rate 13157 - [MEDIUM] implement "rate-limit sessions" for the frontend 13158 - [BUG] interface binding: length must include the trailing zero 13159 - [BUG] typo in timeout error reporting : report *res and not *err 13160 - [OPTIM] maintain_proxies: only wake up when the frontend will be ready 13161 - [OPTIM] rate-limit: cleaner behaviour on low rates and reduce consumption 13162 - [BUG] switch server-side stream interface to close in case of abort 13163 - [CLEANUP] remove last references to term_trace 13164 - [OPTIM] freq_ctr: do not rotate the counters when reading 13165 - [BUG] disable any analysers for monitoring requests 13166 - [BUG] rate-limit in defaults section was ignored 13167 - [BUG] task: fix handling of duplicate keys 13168 - [OPTIM] task: don't unlink a task from a wait queue when waking it up 13169 - [OPTIM] displace tasks in the wait queue only if absolutely needed 13170 - [MEDIUM] minor update to the task api: let the scheduler queue itself 13171 - [BUG] event_accept() must always wake the task up, even in health mode 13172 - [CLEANUP] task: distinguish between clock ticks and timers 13173 - [OPTIM] task: reduce the number of calls to task_queue() 13174 - [OPTIM] do not re-check req buffer when only response has changed 13175 - [CLEANUP] don't enable kernel splicing when socket is closed 13176 - [CLEANUP] buffer_flush() was misleading, rename it as buffer_erase 13177 - [MINOR] buffers: implement buffer_flush() 13178 - [MEDIUM] rearrange forwarding condition to enable splice during analysis 13179 - [BUILD] build fixes for Solaris 13180 - [BUILD] proto_http did not build on gcc-2.95 (again) 13181 - [CONTRIB] halog: fast log parser for haproxy 13182 - [CONTRIB] halog: faster fgets() and add support for percentile reporting 13183 131842008/04/19 : 1.3.15 13185 - [BUILD] Added support for 'make install' 13186 - [BUILD] Added 'install-man' make target for installing the man page 13187 - [BUILD] Added 'install-bin' make target 13188 - [BUILD] Added 'install-doc' make target 13189 - [BUILD] Removed "/" after '$(DESTDIR)' in install targets 13190 - [BUILD] Changed 'install' target to install the binaries first 13191 - [BUILD] Replace hardcoded 'LD = gcc' with 'LD = $(CC)' 13192 - [MEDIUM]: Inversion for options 13193 - [MEDIUM]: Count retries and redispatches also for servers, fix redistribute_pending, extend logs, %d->%u cleanup 13194 - [BUG]: Restore clearing t->logs.bytes 13195 - [MEDIUM]: rework checks handling 13196 - [DOC] Update a "contrib" file with a hint about a scheme used for formathing subjects 13197 - [MEDIUM] Implement "track [<backend>/]<server>" 13198 - [MINOR] Implement persistent id for proxies and servers 13199 - [BUG] Don't increment server connections too much + fix retries 13200 - [MEDIUM]: Prevent redispatcher from selecting the same server, version #3 13201 - [MAJOR] proto_uxst rework -> SNMP support 13202 - [BUG] appsession lookup in URL does not work 13203 - [BUG] transparent proxy address was ignored in backend 13204 - [BUG] hot reconfiguration failed because of a wrong error check 13205 - [DOC] big update to the configuration manual 13206 - [DOC] large update to the configuration manual 13207 - [DOC] document more options 13208 - [BUILD] major rework of the GNU Makefile 13209 - [STATS] add support for "show info" on the unix socket 13210 - [DOC] document options forwardfor to logasap 13211 - [MINOR] add support for the "backlog" parameter 13212 - [OPTIM] introduce global parameter "tune.maxaccept" 13213 - [MEDIUM] introduce "timeout http-request" in frontends 13214 - [MINOR] tarpit timeout is also allowed in backends 13215 - [BUG] increment server connections for each connect() 13216 - [MEDIUM] add a turn-around state of one second after a connection failure 13217 - [BUG] fix typo in redispatched connection 13218 - [DOC] document options nolinger to ssl-hello-chk 13219 - [DOC] added documentation for "option tcplog" to "use_backend" 13220 - [BUG] connect_server: server might not exist when sending error report 13221 - [MEDIUM] support fully transparent proxy on Linux (USE_LINUX_TPROXY) 13222 - [MEDIUM] add non-local bind to connect() on Linux 13223 - [MINOR] add transparent proxy support for balabit's Tproxy v4 13224 - [BUG] use backend's source and not server's source with tproxy 13225 - [BUG] fix overlapping server flags 13226 - [MEDIUM] fix server health checks source address selection 13227 - [BUG] build failed on CONFIG_HAP_LINUX_TPROXY without CONFIG_HAP_CTTPROXY 13228 - [DOC] added "server", "source" and "stats" keywords 13229 - [DOC] all server parameters have been documented 13230 - [DOC] document all req* and rsp* keywords. 13231 - [DOC] added documentation about HTTP header manipulations 13232 - [BUG] log response byte count, not request 13233 - [BUILD] code did not build in full debug mode 13234 - [BUG] fix truncated responses with sepoll 13235 - [MINOR] use s->frt_addr as the server's address in transparent proxy 13236 - [MINOR] fix configuration hint about timeouts 13237 - [DOC] minor cleanup of the doc and notice to contributors 13238 - [MINOR] report correct section type for unknown keywords. 13239 - [BUILD] update MacOS Makefile to build on newer versions 13240 - [DOC] fix erroneous "useallbackups" option in the doc 13241 - [DOC] applied small fixes from early readers 13242 - [MINOR] add configuration support for "redir" server keyword 13243 - [MEDIUM] completely implement the server redirection method 13244 - [TESTS] add a test case for the server redirection mechanism 13245 - [DOC] add a configuration entry for "server ... redir <prefix>" 13246 - [BUILD] backend.c and checks.c did not build without tproxy ! 13247 - Revert "[BUILD] backend.c and checks.c did not build without tproxy !" 13248 - [BUILD] backend.c and checks.c did not build without tproxy ! 13249 - [OPTIM] used unsigned ints for HTTP state and message offsets 13250 - [OPTIM] GCC4's builtin_expect() is suboptimal 13251 - [BUG] failed conns were sometimes incremented in the frontend! 13252 - [BUG] timeout.check was not pre-set to eternity 13253 - [TESTS] add test-pollers.cfg to easily report pollers in use 13254 - [BUG] do not apply timeout.connect in checks if unset 13255 - [BUILD] ensure that makefile understands USE_DLMALLOC=1 13256 - [MINOR] silent gcc for a wrong warning 13257 - [CLEANUP] update .gitignore to ignore more temporary files 13258 - [CLEANUP] report dlmalloc's source path only if explictly specified 13259 - [BUG] str2sun could leak a small buffer in case of error during parsing 13260 - [BUG] option allbackups was not working anymore in roundrobin mode 13261 - [MAJOR] implementation of the "leastconn" load balancing algorithm 13262 - [BUILD] ensure that users don't build without setting the target anymore. 13263 - [DOC] document the leastconn LB algo 13264 - [MEDIUM] fix stats socket limitation to 16 kB 13265 - [DOC] fix unescaped space in httpchk example. 13266 - [BUG] fix double-decrement of server connections 13267 - [TESTS] add a test case for port mapping 13268 - [TESTS] add a benchmark for integer hashing 13269 - [TESTS] add new methods in ip-hash test file 13270 - [MAJOR] implement parameter hashing for POST requests 13271 132722007/12/06 : 1.3.14 13273 - New option http_proxy (Alexandre Cassen) 13274 - add support for "maxqueue" to limit server queue overload (Elijah Epifanov) 13275 - Check for duplicated conflicting proxies (Krzysztof Oledzki) 13276 - stats: report server and backend cumulated downtime (Krzysztof Oledzki) 13277 - use backends only with use_backend directive (Krzysztof Oledzki) 13278 - Handle long lines properly (Krzysztof Oledzki) 13279 - Implement and use generic findproxy and relax duplicated proxy check (Krzysztof Oledzki) 13280 - continous statistics (Krzysztof Oledzki) 13281 - add support for logging via a UNIX socket (Robert Tsai) 13282 - fix error checking in strl2ic/strl2uic() 13283 - fix calls to localtime() 13284 - provide easier-to-use ultoa_* functions 13285 - provide easy-to-use limit_r and LIM2A* macros 13286 - add a simple test for the status page 13287 - move error codes to common/errors.h 13288 - silent warning about LIST_* being redefined on OpenBSD 13289 - add socket address length to the protocols 13290 - group PR_O_BALANCE_* bits into a checkable value 13291 - externalize the "balance" option parser to backend.c 13292 - introduce the "url_param" balance method 13293 - make default_backend work in TCP mode too 13294 - disable warning about localtime_r on Solaris 13295 - adjust error messages about conflicting proxies 13296 - avoid calling some layer7 functions if not needed 13297 - simplify error path in event_accept() 13298 - add an options field to the listeners 13299 - added a new state to listeners 13300 - unbind_listener() must use fd_delete() and not close() 13301 - add a generic unbind_listener() primitive 13302 - add a generic delete_listener() primitive 13303 - add a generic unbind_all_listeners() primitive 13304 - create proto_tcp and move initialization of proxy listeners 13305 - stats: report numerical process ID, proxy ID and server ID 13306 - relative_pid was not initialized 13307 - missing header names in raw stats output 13308 - fix missing parenthesis in check_response_for_cacheability 13309 - small optimization on session_process_counters() 13310 - merge ebtree version 3.0 13311 - make ebtree headers multiple-include compatible 13312 - ebtree: include config.h for REGPRM* 13313 - differentiate between generic LB params and map-specific ones 13314 - add a weight divisor to the struct proxy 13315 - implement the Fast Weighted Round Robin (FWRR) algo 13316 - include filltab25.c to experiment on FWRR for dynamic weights 13317 - merge test-fwrr.cfg to validate dynamic weights 13318 - move the load balancing algorithm to be->lbprm.algo 13319 - change server check result to a bit field 13320 - implement "http-check disable-on-404" for graceful shutdown 13321 - secure the calling conditions of ->set_server_status_{up,down} 13322 - report disabled servers as "NOLB" when they are still UP 13323 - document the "http-check disable-on-404" option 13324 - http-check disable-on-404 is not limited to HTTP mode 13325 - add a test file for disable-on-404 13326 - use distinct bits per load-balancing algorithm type 13327 - implement the slowstart parameter for servers 13328 - document the server's slowstart parameter 13329 - stats: report the server warm up status in a "throttle" column 13330 - fix 2 minor issues on AIX 13331 - add the "nbsrv" ACL verb 13332 - add the "fail" condition to monitor requests 13333 - remove a warning from gcc due to htons() in standard.c 13334 - fwrr: ensure that we never overflow in placements 13335 - store the build options to report with -vv 13336 - fix the status return of the init script (R.I. Pienaar) 13337 - stats: real time monitoring script for unix socket (Prizee) 13338 - document "nbsrv" and "monitor fail" 13339 - restrict the set of allowed characters for identifiers 13340 - implement a time parsing function 13341 - add support for time units in the configuration 13342 - add a bit of documentation about timers 13343 - introduce separation between contimeout, and tarpit + queue 13344 - introduce the "timeout" keyword 13345 - grouped all timeouts in one structure 13346 - slowstart is in ms, not seconds 13347 - slowstart: ensure we don't start with a null weight 13348 - report the number of times each server was selected 13349 - fix build on AIX due to recent log changes 13350 - fix build on Solaris due to recent log changes 13351 133522007/10/18 : 1.3.13 13353 - replace the code under O'Reilly license (Arnaud Cornet) 13354 - add a small man page (Arnaud Cornet) 13355 - stats: report haproxy's version by default (Krzysztof Oledzki) 13356 - stats: count server retries and redispatches (Krzysztof Oledzki) 13357 - core: added easy support for Doug Lea's malloc (dlmalloc) 13358 - core: fade out memory usage when stopping proxies 13359 - core: moved the sockaddr pointer to the fdtab structure 13360 - core: add generic protocol support 13361 - core: implement client-side support for PF_UNIX sockets 13362 - stats: implement the CSV output 13363 - stats: add a link to the CSV export HTML page 13364 - stats: implement the statistics output on a unix socket 13365 - config: introduce the "stats" keyword in global section 13366 - build: centralize version and date into one file for each 13367 - tests: added a new hash algorithm 13368 133692007/10/18 : 1.3.12.3 13370 - add the "nolinger" option to disable data lingering (Alexandre Cassen) 13371 - fix double-free during clean exit (Krzysztof Oledzki) 13372 - prevent the system from sending an RST when closing health-checks 13373 (Krzysztof Oledzki) 13374 - do not add a cache-control header when on non-cacheable responses 13375 (Krzysztof Oledzki) 13376 - spread health checks even more (Krzysztof Oledzki) 13377 - stats: scope "." must match the backend and not the frontend 13378 - fixed call to chroot() during startup 13379 - fix wrong timeout computation in event_accept() 13380 - remove condition for exit() under fork() failure 13381 133822007/09/20 : 1.3.12.2 13383 - fix configuration sanity checks for TCP listeners 13384 - set the log socket receive window to zero bytes 13385 - pre-initialize timeouts to infinity, not zero 13386 - fix the SIGHUP message not to alert on server-less proxies 13387 - timeouts and retries could be ignored when switching backend 13388 - added a file to check that "retries" works. 13389 - O'Reilly has clarified its license 13390 133912007/09/05 : 1.3.12.1 13392 - spec I/O: fix allocations of spec entries for an FD 13393 - ensure we never overflow in chunk_printf() 13394 - improve behaviour with large number of servers per proxy 13395 - add support for "stats refresh <interval>" 13396 - stats page: added links for 'refresh' and 'hide down' 13397 - fix backend's weight in the stats page. 13398 - the "stats" keyword is not allowed in a pure frontend. 13399 - provide a test configuration file for stats and checks 13400 134012007/06/17 : 1.3.12 13402 - fix segfault at exit when using captures 13403 - bug: negation in ACL conds was not cleared between terms 13404 - errorfile: use a local file to feed error messages 13405 - acl: support '-i' to ignore case when matching 13406 - acl: smarter integer comparison with operators eq,lt,gt,le,ge 13407 - acl: support maching on 'path' component 13408 - acl: implement matching on header values 13409 - acl: distinguish between request and response headers 13410 - acl: permit to return any header when no name specified 13411 - acl: provide default ACLs 13412 - added the 'use_backend' keyword for full content-switching 13413 - acl: specify the direction during fetches 13414 - acl: provide the argument length for fetch functions 13415 - acl: provide a reference to the expr to fetch() 13416 - improve memory freeing upon exit 13417 - str2net() must not change the const char * 13418 - shut warnings 'is*' macros from ctype.h on solaris 13419 134202007/06/03 : 1.3.11.4 13421 - do not re-arm read timeout in SHUTR state ! 13422 - optimize I/O by detecting system starvation 13423 - the epoll FD must not be shared between processes 13424 - limit the number of events returned by *poll* 13425 134262007/05/14 : 1.3.11.3 13427 - pre-initialize timeouts with tv_eternity during parsing 13428 134292007/05/14 : 1.3.11.2 13430 - fixed broken health-checks since switch to timeval 13431 134322007/05/14 : 1.3.11.1 13433 - fixed ev_kqueue which was forgotten during the switch to timeval 13434 - allowed null timeouts for past events in select 13435 134362007/05/14 : 1.3.11 13437 - fixed ev_sepoll again by rewriting the state machine 13438 - switched all timeouts to timevals instead of milliseconds 13439 - improved memory management using mempools v2. 13440 - several minor optimizations 13441 134422007/05/09 : 1.3.10.2 13443 - fixed build on OpenBSD (missing types.h) 13444 134452007/05/09 : 1.3.10.1 13446 - fixed sepoll transition matrix (two states were missing) 13447 134482007/05/08 : 1.3.10 13449 - several fixes in ev_sepoll 13450 - fixed some expiration dates on some tasks 13451 - fixed a bug in connection establishment detection due to speculative I/O 13452 - fixed rare bug occuring on TCP with early close (reported by Andy Smith) 13453 - implemented URI hashing algorithm (Guillaume Dallaire) 13454 - implemented SMTP health checks (Peter van Dijk) 13455 - replaced the rbtree with ul2tree from old scheduler project 13456 - new framework for generic ACL support 13457 - added the 'acl' and 'block' keywords to the config language 13458 - added several ACL criteria and matches (IP, port, URI, ...) 13459 - cleaned up and better modularization for some time functions 13460 - fixed list macros 13461 - fixed useless memory allocation in str2net() 13462 - store the original destination address in the session 13463 134642007/04/15 : 1.3.9 13465 - modularized the polling mechanisms and use function pointers instead 13466 of macros at many places 13467 - implemented support for FreeBSD's kqueue() polling mechanism 13468 - fixed a warning on OpenBSD : MIN/MAX redefined 13469 - change socket registration order at startup to accomodate kqueue. 13470 - several makefile cleanups to support old shells 13471 - fix build with limits.h once for all 13472 - ev_epoll: do not rely on fd_sets anymore, use changes stacks instead. 13473 - fdtab now holds the results of polling 13474 - implemented support for speculative I/O processing with epoll() 13475 - remove useless calls to shutdown(SHUT_RD), resulting in small speed boost 13476 - auto-registering of pollers at load time 13477 134782007/04/03 : 1.3.8.2 13479 - rewriting either the status line or request line could crash the 13480 process due to a pointer which ought to be reset before parsing. 13481 - rewriting the status line in the response did not work, it caused 13482 a 502 Bad Gateway due to an erroneous state during parsing 13483 134842007/04/01 : 1.3.8.1 13485 - fix reqadd when no option httpclose is used. 13486 - removed now unused fiprm and beprm from proxies 13487 - split logs into two versions : TCP and HTTP 13488 - added some docs about http headers storage and acls 13489 - added a VIM script for syntax color highlighting (Bruno Michel) 13490 134912007/03/25 : 1.3.8 13492 - fixed several bugs which might have caused a crash with bad configs 13493 - several optimizations in header processing 13494 - many progresses towards transaction-based processing 13495 - option forwardfor may be used in frontends 13496 - completed HTTP response processing 13497 - some code refactoring between request and response processing 13498 - new HTTP header manipulation functions 13499 - optimizations on the recv() patch to reduce CPU usage under very 13500 high data rates. 13501 - more user-friendly help about the 'usesrc' keyword (CTTPROXY) 13502 - username/groupname support from Marcus Rueckert 13503 - added the "except" keyword to the "forwardfor" option (Bryan German) 13504 - support for health-checks on other addresses (Fabrice Dulaunoy) 13505 - makefile for MacOS 10.4 / Darwin (Dan Zinngrabe) 13506 - do not insert "Connection: close" in HTTP/1.0 messages 13507 135082007/01/26 : 1.3.7 13509 - fix critical bug introduced with 1.3.6 : an empty request header 13510 may lead to a crash due to missing pointer assignment 13511 - hdr_idx might be left uninitialized in debug mode 13512 - fixed build on FreeBSD due to missing fd_set declaration 13513 135142007/01/22 : 1.3.6.1 13515 - change in the header chaining broke cookies and authentication 13516 135172007/01/22 : 1.3.6 13518 - stats now support the HEAD method too 13519 - extracted http request from the session 13520 - huge rework of the HTTP parser which is now a 28-state FSM. 13521 - linux-style likely/unlikely macros for optimization hints 13522 - do not create a server socket when there's no server 13523 - imported lots of docs 13524 135252007/01/07 : 1.3.5 13526 - stats: swap color sets for active and backup servers 13527 - try to guess server check port when unset 13528 - added complete support and doc for TCP Splicing 13529 - replace the wait-queue linked list with an rbtree. 13530 - a few bugfixes and cleanups 13531 135322007/01/02 : 1.3.4 13533 - support for cttproxy on the server side to present the client 13534 address to the server. 13535 - added support for SO_REUSEPORT on Linux (needs kernel patch) 13536 - new RFC2616-compliant HTTP request parser with header indexing 13537 - split proxies in frontends, rulesets and backends 13538 - implemented the 'req[i]setbe' to select a backend depending 13539 on the contents 13540 - added the 'default_backend' keyword to select a default BE. 13541 - new stats page featuring FEs and BEs + bytes in both dirs 13542 - improved log format to indicate the backend and the time in ms. 13543 - lots of cleanups 13544 135452006/10/15 : 1.3.3 13546 - fix broken redispatch option in case the connection has already 13547 been marked "in progress" (ie: nearly always). 13548 - support regparm on x86 to speed up some often called functions 13549 - removed a few useless calls to gettimeofday() in log functions. 13550 - lots of 'const char*' cleanups 13551 - turn every FD_* into functions which are faster on recent CPUs 13552 135532006/09/03 : 1.3.2 13554 - started the changes towards I/O completion callbacks. stream_sock* have 13555 replaced event_*. 13556 - added the new "reqtarpit" and "reqitarpit" protection features 13557 135582006/07/09 : 1.3.1 (1.2.15) 13559 - now, haproxy warns about missing timeout during startup to try to 13560 eliminate all those buggy configurations. 13561 - added "Content-Type: text/html" in responses wherever appropriate, as 13562 suggested by Cameron Simpson. 13563 - implemented "option ssl-hello-chk" to use SSLv3 CLIENT HELLO messages to 13564 test server's health 13565 - implemented "monitor-uri" so that haproxy can reply to a specific URI with 13566 an "HTTP/1.0 200 OK" response. This is useful to validate multiple proxies 13567 at once. 13568 135692006/06/29 : 1.3.0 13570 - exploded the whole file into multiple .c and .h. No functionnal 13571 difference is expected at all. 13572 - fixed a bug by which neither stats nor error messages could be returned if 13573 'clitimeout' was missing. 13574 135752006/05/21 : 1.2.14 13576 - new HTML status report with the 'stats' keyword. 13577 - added the 'abortonclose' option to better resist traffic surges 13578 - implemented dynamic traffic regulation with the 'minconn' option 13579 - show request time on denied requests 13580 - definitely fixed hot reconf on OpenBSD by the use of SO_REUSEPORT 13581 - now a proxy instance is allowed to run without servers, which is 13582 useful to dedicate one instance to stats 13583 - added lots of error counters 13584 - a missing parenthesis preventd matching of cacheable cookies 13585 - a missing parenthesis in poll_loop() might have caused missed events. 13586 135872006/05/14 : 1.2.13.1 13588 - an uninitialized field in the struct session could cause a crash when 13589 the session was freed. This has been encountered on Solaris only. 13590 - Solaris and OpenBSD no not support shutdown() on listening socket. Let's 13591 be nice to them by performing a soft stop if pause fails. 13592 135932006/05/13 : 1.2.13 13594 - 'maxconn' server parameter to do per-server session limitation 13595 - queueing to support non-blocking session limitation 13596 - fixed removal of cookies for cookie-less servers such as backup servers 13597 - two separate wait queues for expirable and non-expirable tasks provide 13598 better performance with lots of sessions. 13599 - some code cleanups and performance improvements 13600 - made state dumps a bit more verbose 13601 - fixed missing checks for NULL srv in dispatch mode 13602 - load balancing on backup servers was not possible in source hash mode. 13603 - two session flags shared the same bit, but fortunately they were not 13604 compatible. 13605 136062006/04/15 : 1.2.12 13607 Very few changes preparing for more important changes to support per-server 13608 session limitations and queueing : 13609 - ignore leading empty lines in HTTP requests as suggested by RFC2616. 13610 - added the 'weight' parameter to the servers, limited to 1..256. It applies 13611 to roundrobin and source hash. 13612 - the optional '-s' option could clobber '-st' and '-sf' if compiled in. 13613 136142006/03/30 : 1.2.11.1 13615 - under some conditions, it might have been possible that when the 13616 last dead server became available, it would not have been used 13617 till another one would have changed state. Could not be reproduced 13618 at all, however seems possible from the code. 13619 136202006/03/25 : 1.2.11 13621 - added the '-db' command-line option to disable backgrounding. 13622 - added the -sf/-st command-line arguments which are used to specify 13623 a list of pids to send a FINISH or TERMINATE signal upon startup. 13624 They will also be asked to release their port if a bind fails. 13625 - reworked the startup mechanism to allow the sending of a signal to a list 13626 of old pids if a socket cannot be bound, with a retry for a limited amount 13627 of time (1 second by default). 13628 - added the ability to enforce limits on memory usage. 13629 - added the 'source' load-balancing algorithm which uses the source IP(v4|v6) 13630 - re-architectured the server round-robin mechanism to ease integration of 13631 other algorithms. It now relies on the number of active and backup servers. 13632 - added a counter for the number of active and backup servers, and report 13633 these numbers upon SIGHUP or state change. 13634 136352006/03/23 : 1.2.10.1 13636 - while fixing the backup server round-robin "feature", a new bug was 13637 introduced which could miss some backup servers. 13638 - the displayed proxy name was wrong when dumping upon SIGHUP. 13639 136402006/03/19 : 1.2.10 13641 - assert.h is needed when DEBUG is defined. 13642 - ENORMOUS long standing bug affecting the epoll polling system : 13643 event_data is a union, not a structure ! 13644 - Make fd management more robust and easier to debug. Also some 13645 micro-optimisations. 13646 - Limit the number of consecutive accept() in multi-process mode. 13647 This produces a more evenly distributed load across the processes and 13648 slightly improves performance by reducing bottlenecks. 13649 - Make health-checks be more regular, and faster to retry after a timeout. 13650 - Fixed some messages to ease parsing of alerts. 13651 - provided a patch to enable epoll on RHEL3 kernels. 13652 - Separated OpenBSD build from the main Makefile into a new one. 13653 136542006/03/15 : 1.2.9 13655 - haproxy could not be stopped after being paused, it had to be woken up 13656 first. This has been fixed. 13657 - the 'ulimit-n' parameter is now optional and by default computed from 13658 maxconn + the number of listeners + the number of health-checks. 13659 - it is now possible to specify a maximum number of connections at build 13660 time with the SYSTEM_MAXCONN define. The value set in the configuration 13661 file will then be limited to this value, and only the command-line '-n' 13662 option will be able to bypass it. It will prevent against accidental 13663 high memory usage on small systems. 13664 - RFC2616 expects that any HTTP agent accepts multi-line headers. Earlier 13665 versions did not detect a line beginning with a space as the continuation 13666 of previous header. It is now correct. 13667 - health checks sent to servers configured with identical intervals were 13668 sent in perfect synchronisation because the initial time was the same 13669 for all. This could induce high load peaks when fragile servers were 13670 hosting tens of instances for the same application. Now the load is 13671 spread evenly across the smallest interval amongst a listener. 13672 - a new 'forceclose' option was added to make the proxy close the outgoing 13673 channel to the server once it has sent all its headers and the server 13674 starts responding. This helps some servers which don't close upon the 13675 'Connection: close' header. It implies 'option httpclose'. 13676 - there was a bug in the way the backup servers were handled. They were 13677 erroneously load-balanced while the doc said the opposite. Since 13678 load-balanced backup servers is one of the features some people have 13679 been asking for, the problem was fixed to reflect the documented 13680 behaviour and a new option 'allbackups' was introduced to provide the 13681 feature to those who need it. 13682 - a never ending connect() could lead to a fast select() loop if its 13683 timeout times the number of retransmits exceeded the server read or write 13684 timeout, because the later was used to compute select()'s timeout while 13685 the connection timeout was not reached. 13686 - now we initialize the libc's localtime structures very early so that even 13687 under OOM conditions, we can still send dated error messages without 13688 segfaulting. 13689 - the 'daemon' mode implies 'quiet' and disables 'verbose' because file 13690 descriptors are closed. 13691 136922006/01/29 : 1.2.8 13693 - fixed a nasty bug affecting poll/epoll which could return unmodified data 13694 from the server to the client, and sometimes lead to memory corruption 13695 crashing the process. 13696 - added the new pause/play mechanism with SIGTTOU/SIGTTIN for hot-reconf. 13697 136982005/12/18 : 1.2.7.1 13699 - the "retries" option was ignored because connect() could not return an 13700 error if the connection failed before the timeout. 13701 - TCP health-checks could not detect a connection refused in poll/epoll 13702 mode. 13703 137042005/11/13 : 1.2.7 13705 - building with -DUSE_PCRE should include PCRE headers and not regex.h. At 13706 least on Solaris, this caused the libc's regex primitives to be used instead 13707 of PCRE, which caused trouble on group references. This is now fixed. 13708 - delayed the quiet mode during startup so that most of the startup alerts can 13709 be displayed even in quiet mode. 13710 - display an alert when a listener has no address, invalid or no port, or when 13711 there are no enabled listeners upon startup. 13712 - added "static-pcre" to the list of supported regex options in the Makefile. 13713 137142005/10/09 : 1.2.7rc (1.1.33rc) 13715 - second batch of socklen_t changes. 13716 - clean-ups from Cameron Simpson. 13717 - because tv_remain() does not know about eternity, using no timeout can 13718 make select() spin around a null time-out. Bug reported by Cameron Simpson. 13719 - client read timeout was not properly set to eternity initialized after an 13720 accept() if it was not set in the config. It remained undetected so long 13721 because eternity is 0 and newly allocated pages are zeroed by the system. 13722 - do not call get_original_dst() when not in transparent mode. 13723 - implemented a workaround for a bug in certain epoll() implementations on 13724 linux-2.4 kernels (epoll-lt <= 0.21). 13725 - implemented TCP keepalive with new options : tcpka, clitcpka, srvtcpka. 13726 137272005/08/07 : 1.2.6 13728 - clean-up patch from Alexander Lazic fixes build on Debian 3.1 (socklen_t). 13729 137302005/07/06 : 1.2.6-pre5 (1.1.32) 13731 - added the number of active sessions (proxy/process) in the logs 13732 137332005/07/06 : 1.2.6-pre4 (1.1.32-pre4) 13734 - the time-out fix introduced in 1.1.25 caused a corner case where it was 13735 possible for a client to keep a connection maintained regardless of the 13736 timeout if the server closed the connection during the HEADER phase, 13737 while the client ignored the close request while doing nothing in the 13738 other direction. This has been fixed now by ensuring that read timeouts 13739 are re-armed when switching to any SHUTW state. 13740 137412005/07/05 : 1.2.6-pre3 (1.1.32-pre3) 13742 - enhanced error reporting in the logs. Now the proxy will precisely detect 13743 various error conditions related to the system and/or process limits, and 13744 generate LOG_EMERG logs indicating that a resource has been exhausted. 13745 - logs will contain two new characters for the error cause : 'R' indicates 13746 a resource exhausted, and 'I' indicates an internal error, though this 13747 one should never happen. 13748 - server connection timeouts can now be reported in the logs (sC), as well 13749 as connections refused because of maxconn limitations (PC). 13750 137512005/07/05 : 1.2.6-pre2 (1.1.32-pre2) 13752 - new global configuration keyword "ulimit-n" may be used to raise the FD 13753 limit to usable values. 13754 - a warning is now displayed on startup if the FD limit is lower than the 13755 configured maximum number of sockets. 13756 137572005/07/05 : 1.2.6-pre1 (1.1.32-pre1) 13758 - new configuration keyword "monitor-net" makes it possible to be monitored 13759 by external devices which connect to the proxy without being logged nor 13760 forwarded to any server. Particularly useful on generic TCPv4 relays. 13761 137622005/06/21 : 1.2.5.2 13763 - fixed build on PPC where chars are unsigned by default 13764 137652005/05/02 : 1.2.5.1 13766 - dirty hack to fix a bug introduced with epoll : if we close an FD and 13767 immediately reassign it to another session through a connect(), the 13768 Prev{Read,Write}Events are not updated, which causes trouble detecting 13769 changes, thus leading to many timeouts at high loads. 13770 137712005/04/30 : 1.2.5 (1.1.31) 13772 - changed the runtime argument to disable epoll() to '-de' 13773 - changed the runtime argument to disable poll() to '-dp' 13774 - added global options 'nopoll' and 'noepoll' to do the same at the 13775 configuration level. 13776 - added a 'linux24e' target to the Makefile for Linux 2.4 systems patched to 13777 support epoll(). 13778 - changed default FD_SETSIZE to 65536 on Solaris (default=1024) 13779 - conditionned signals redirection to #ifdef DEBUG_MEMORY 13780 137812005/04/26 : 1.2.5-pre4 13782 - made epoll() support a compile-time option : ENABLE_EPOLL 13783 - provided a very little libc replacement for a possibly missing epoll() 13784 implementation which can be enabled by -DUSE_MY_EPOLL 13785 - implemented the poll() poller, which can be enabled with -DENABLE_POLL. 13786 The equivalent runtime argument becomes '-P'. A few tests show that it 13787 performs like select() with many fds, but slightly slower (certainly 13788 because of the higher amount of memory involved). 13789 - separated the 3 polling methods and the tasks scheduler into 4 distinct 13790 functions which makes the code a lot more modular. 13791 - moved some event tables to private static declarations inside the poller 13792 functions. 13793 - the poller functions can now initialize themselves, run, and cleanup. 13794 - changed the runtime argument to enable epoll() to '-E'. 13795 - removed buggy epoll_ctl() code in the client_retnclose() function. This 13796 function was never meant to remove anything. 13797 - fixed a typo which caused glibc to yell about a double free on exit. 13798 - removed error checking after epoll_ctl(DEL) because we can never know if 13799 the fd is still active or already closed. 13800 - added a few entries in the makefile 13801 138022005/04/25 : 1.2.5-pre3 13803 - experimental epoll() support (use temporary '-e' argument) 13804 138052005/04/24 : 1.2.5-pre2 13806 - implemented the HTTP 303 code for error redirection. This forces the 13807 browser to fetch the given URI with a GET request. The new keyword for 13808 this is 'errorloc303', and a new 'errorloc302' keyword has been created 13809 to make them easily distinguishable. 13810 - added more controls in the parser for valid use of '\x' sequence. 13811 - few fixes from Alex & Klaus 13812 138132005/02/17 : 1.2.5-pre1 13814 - fixed a few errors in the documentation 13815 138162005/02/13 13817 - do not pre-initialize unused file-descriptors before select() anymore. 13818 138192005/01/22 : 1.2.4 13820 - merged Alexander Lazic's and Klaus Wagner's work on application 13821 cookie-based persistence. Since this is the first merge, this version is 13822 not intended for general use and reports are more than welcome. Some 13823 documentation is really needed though. 13824 138252005/01/22 : 1.2.3 (1.1.30) 13826 - add an architecture guide to the documentation 13827 - released without any changes 13828 138292004/12/26 : 1.2.3-pre1 (1.1.30-pre1) 13830 - increased default BUFSIZE to 16 kB to accept max headers of 8 kB which is 13831 compatible with Apache. This limit can be configured in the makefile now. 13832 Thanks to Eric Fehr for the checks. 13833 - added a per-server "source" option which now makes it possible to bind to 13834 a different source for each (potentially identical) server. 13835 - changed cookie-based server selection slightly to allow several servers to 13836 share a same cookie, thus making it possible to associate backup servers to 13837 live servers and ease soft-stop for maintenance periods. (Alexander Lazic) 13838 - added the cookie 'prefix' mode which makes it possible to use persistence 13839 with thin clients which support only one cookie. The server name is prefixed 13840 before the application cookie, and restore back. 13841 - fixed the order of servers within an instance to match documentation. Now 13842 the servers are *really* used in the order of their declaration. This is 13843 particularly important when multiple backup servers are in use. 13844 138452004/10/18 : 1.2.2 (1.1.29) 13846 - fixed a bug where a TCP connection would be logged twice if the 'logasap' 13847 option was enabled without the 'tcplog' option. 13848 - encode_string() would use hdr_encode_map instead of the map argument. 13849 138502004/08/10 : (1.1.29-pre2) 13851 - the logged request is now encoded with '#XX' for unprintable characters 13852 - new keywords 'capture request header' and 'capture response header' enable 13853 logging of arbitrary HTTP headers in requests and responses 13854 - removed "-DSOLARIS" after replacing the last inet_aton() with inet_pton() 13855 138562004/06/06 : 1.2.1 (1.1.28) 13857 - added the '-V' command line option to verbosely report errors even though 13858 the -q or 'quiet' options are specified. This is useful with '-c'. 13859 - added a Red Hat init script and a .spec from Simon Matter <simon.matter@invoca.ch> 13860 138612004/06/05 : 13862 - added the "logasap" option which produces a log without waiting for the data 13863 to be transferred from the server to the client. 13864 - added the "httpclose" option which removes any "connection:" header and adds 13865 "Connection: close" in both direction. 13866 - added the 'checkcache' option which blocks cacheable responses containing 13867 dangerous headers, such as 'set-cookie'. 13868 - added 'rspdeny' and 'rspideny' to block certain responses to avoid sensible 13869 information leak from servers. 13870 138712004/04/18 : 13872 - send an EMERG log when no server is available for a given proxy 13873 - added the '-c' command line option to syntactically check the 13874 configuration file without starting the service. 13875 138762003/11/09 : 1.2.0 13877 - the same as 1.1.27 + IPv6 support on the client side 13878 138792003/10/27 : 1.1.27 13880 - the configurable HTTP health check introduced in 1.1.23 revealed a shameful 13881 bug : the code still assumed that HTTP requests were the same size as the 13882 original ones (22 bytes), and failed if they were not. 13883 - added support for pidfiles. 13884 138852003/10/22 : 1.1.26 13886 - the fix introduced in 1.1.25 for client timeouts while waiting for servers 13887 broke almost all compatibility with POST requests, because the proxy 13888 stopped to read anything from the client as soon as it got all of its 13889 headers. 13890 138912003/10/15 : 1.1.25 13892 - added the 'tcplog' option, which provides enhanced, HTTP-like logs for 13893 generic TCP proxies, or lighter logs for HTTP proxies. 13894 - fixed a time-out condition wrongly reported as client time-out in data 13895 phase if the client timeout was lower than the connect timeout times the 13896 number of retries. 13897 138982003/09/21 : 1.1.24 13899 - if a client sent a full request then shut its write connection down, then 13900 the request was aborted. This case was detected only when using haproxy 13901 both as health-check client and as a server. 13902 - if 'option httpchk' is used in a 'health' mode server, then responses will 13903 change from 'OK' to 'HTTP/1.0 200 OK'. 13904 - fixed a Linux-only bug in case of HTTP server health-checks, where a single 13905 server response followed by a close could be ignored, and the server seen 13906 as failed. 13907 139082003/09/19 : 1.1.23 13909 - fixed a stupid bug introduced in 1.1.22 which caused second and subsequent 13910 'default' sections to keep previous parameters, and not initialize logs 13911 correctly. 13912 - fixed a second stupid bug introduced in 1.1.22 which caused configurations 13913 relying on 'dispatch' mode to segfault at the first connection. 13914 - 'option httpchk' now supports method, HTTP version and a few headers. 13915 - now, 'option httpchk', 'cookie' and 'capture' can be specified in 13916 'defaults' section 13917 139182003/09/10 : 1.1.22 13919 - 'listen' now supports optionnal address:port-range lists 13920 - 'bind' introduced to add new listen addresses 13921 - fixed a bug which caused a session to be kept established on a server till 13922 it timed out if the client closed during the DATA phase. 13923 - the port part of each server address can now be empty to make the proxy 13924 connect to the server on the same port it was connected to, be an absolute 13925 unsigned number to reflect a single port (as in older versions), or an 13926 explicitly signed number (+N/-N) to indicate that this offset must be 13927 applied to the port the proxy was connected to, when connecting to the 13928 server. 13929 - the 'port' server option allows the user to specify a different 13930 health-check port than the service one. It is mandatory when only relative 13931 ports have been specified and check is required. By default, the checks are 13932 sent to the service port. 13933 - new 'defaults' section which is rather similar to 'listen' except that all 13934 values are only used as default values for future 'listen' sections, until 13935 a new 'defaults' resets them. At the moment, server options, regexes, 13936 cookie names and captures cannot be set in the 'defaults' section. 13937 139382003/05/06 : 1.1.21 13939 - changed the debug output format so that it now includes the session unique 13940 ID followed by the instance name at the beginning of each line. 13941 - in debug mode, accept now shows the client's IP and port. 13942 - added one 3 small debugging scripts to search and pretty print debug output 13943 - changed the default health check request to "OPTIONS /" instead of 13944 "OPTIONS *" since not all servers implement the later one. 13945 - "option httpchk" now accepts an optional parameter allowing the user to 13946 specify and URI other than '/' during health-checks. 13947 139482003/04/21 : 1.1.20 13949 - fixed two problems with time-outs, one where a server would be logged as 13950 timed out during transfer that take longer to complete than the fixed 13951 time-out, and one where clients were logged as timed-out during the data 13952 phase because they didn't have anything to send. This sometimes caused 13953 slow client connections to close too early while in fact there was no 13954 problem. The proper fix would be to have a per-fd time-out with 13955 conditions depending on the state of the HTTP FSM. 13956 139572003/04/16 : 1.1.19 13958 - haproxy was NOT RFC compliant because it was case-sensitive on HTTP 13959 "Cookie:" and "Set-Cookie:" headers. This caused JVM 1.4 to fail on 13960 cookie persistence because it uses "cookie:". Two memcmp() have been 13961 replaced with strncasecmp(). 13962 139632003/04/02 : 1.1.18 13964 - Haproxy can be compiled with PCRE regex instead of libc regex, by setting 13965 REGEX=pcre on the make command line. 13966 - HTTP health-checks now use "OPTIONS *" instead of "OPTIONS /". 13967 - when explicit source address binding is required, it is now also used for 13968 health-checks. 13969 - added 'reqpass' and 'reqipass' to allow certain headers but not the request 13970 itself. 13971 - factored several strings to reduce binary size by about 2 kB. 13972 - replaced setreuid() and setregid() with more standard setuid() and setgid(). 13973 - added 4 status flags to the log line indicating who ended the connection 13974 first, the sessions state, the validity of the cookie, and action taken on 13975 the set-cookie header. 13976 139772002/10/18 : 1.1.17 13978 - add the notion of "backup" servers, which are used only when all other 13979 servers are down. 13980 - make Set-Cookie return "" instead of "(null)" when the server has no 13981 cookie assigned (useful for backup servers). 13982 - "log" now supports an optionnal level name (info, notice, err ...) above 13983 which nothing is sent. 13984 - replaced some strncmp() with memcmp() for better efficiency. 13985 - added "capture cookie" option which logs client and/or server cookies 13986 - cleaned up/down messages and dump servers states upon SIGHUP 13987 - added a redirection feature for errors : "errorloc <errnum> <url>" 13988 - now we won't insist on connecting to a dead server, even with a cookie, 13989 unless option "persist" is specified. 13990 - added HTTP/408 response for client request time-out and HTTP/50[234] for 13991 server reply time-out or errors. 13992 139932002/09/01 : 1.1.16 13994 - implement HTTP health checks when option "httpchk" is specified. 13995 139962002/08/07 : 1.1.15 13997 - replaced setpgid()/setpgrp() with setsid() for better portability, because 13998 setpgrp() doesn't have the same meaning under Solaris, Linux, and OpenBSD. 13999 140002002/07/20 : 1.1.14 14001 - added "postonly" cookie mode 14002 140032002/07/15 : 1.1.13 14004 - tv_diff used inverted parameters which led to negative times ! 14005 140062002/07/13 : 1.1.12 14007 - fixed stats monitoring, and optimized some tv_* for most common cases. 14008 - replaced temporary 'newhdr' with 'trash' to reduce stack size 14009 - made HTTP errors more HTML-fiendly. 14010 - renamed strlcpy() to strlcpy2() because of a slightly difference between 14011 their behaviour (return value), to avoid confusion. 14012 - restricted HTTP messages to HTTP proxies only 14013 - added a 502 message when the connection has been refused by the server, 14014 to prevent clients from believing this is a zero-byte HTTP 0.9 reply. 14015 - changed 'Cache-control:' from 'no-cache="set-cookie"' to 'private' when 14016 inserting a cookie, because some caches (apache) don't understand it. 14017 - fixed processing of server headers when client is in SHUTR state 14018 140192002/07/04 : 14020 - automatically close fd's 0,1 and 2 when going daemon ; setpgrp() after 14021 setpgid() 14022 140232002/06/04 : 1.1.11 14024 - fixed multi-cookie handling in client request to allow clean deletion 14025 in insert+indirect mode. Now, only the server cookie is deleted and not 14026 all the header. Should now be compliant to RFC2965. 14027 - added a "nocache" option to "cookie" to specify that we explicitly want 14028 to add a "cache-control" header when we add a cookie. 14029 It is also possible to add an "Expires: <old-date>" to keep compatibility 14030 with old/broken caches. 14031 140322002/05/10 : 1.1.10 14033 - if a cookie is used in insert+indirect mode, it's desirable that the 14034 the servers don't see it. It was not possible to remove it correctly 14035 with regexps, so now it's removed automatically. 14036 140372002/04/19 : 1.1.9 14038 - don't use snprintf()'s return value as an end of message since it may 14039 be larger. This caused bus errors and segfaults in internal libc's 14040 getenv() during localtime() in send_log(). 14041 - removed dead insecure send_syslog() function and all references to it. 14042 - fixed warnings on Solaris due to buggy implementation of isXXXX(). 14043 140442002/04/18 : 1.1.8 14045 - option "dontlognull" 14046 - fixed "double space" bug in config parser 14047 - fixed an uninitialized server field in case of dispatch 14048 with no existing server which could cause a segfault during 14049 logging. 14050 - the pid logged was always the father's, which was wrong for daemons. 14051 - fixed wrong level "LOG_INFO" for message "proxy started". 14052 140532002/04/13 : 14054 - http logging is now complete : 14055 - ip:port, date, proxy, server 14056 - req_time, conn_time, hdr_time, tot_time 14057 - status, size, request 14058 - source address 14059 140602002/04/12 : 1.1.7 14061 - added option forwardfor 14062 - added reqirep, reqidel, reqiallow, reqideny, rspirep, rspidel 14063 - added "log global" in "listen" section. 14064 140652002/04/09 : 14066 - added a new "global" section : 14067 - logs 14068 - debug, quiet, daemon modes 14069 - uid, gid, chroot, nbproc, maxconn 14070 140712002/04/08 : 1.1.6 14072 - regex are now chained and not limited anymore. 14073 - unavailable server now returns HTTP/502. 14074 - increased per-line args limit to 40 14075 - added reqallow/reqdeny to block some request on matches 14076 - added HTTP 400/403 responses 14077 140782002/04/03 : 1.1.5 14079 - connection logging displayed incorrect source address. 14080 - added proxy start/stop and server up/down log events. 14081 - replaced log message short buffers with larger trash. 14082 - enlarged buffer to 8 kB and replace buffer to 4 kB. 14083 140842002/03/25 : 1.1.4 14085 - made rise/fall/interval time configurable 14086 140872002/03/22 : 1.1.3 14088 - fixed a bug : cr_expire and cw_expire were inverted in CL_STSHUT[WR] 14089 which could lead to loops. 14090 140912002/03/21 : 1.1.2 14092 - fixed a bug in buffer management where we could have a loop 14093 between event_read() and process_{cli|srv} if R==BUFSIZE-MAXREWRITE. 14094 => implemented an adjustable buffer limit. 14095 - fixed a bug : expiration of tasks in wait queue timeout is used again, 14096 and running tasks are skipped. 14097 - added some debug lines for accept events. 14098 - send warnings for servers up/down. 14099 141002002/03/12 : 1.1.1 14101 - fixed a bug in total failure handling 14102 - fixed a bug in timestamp comparison within same second (tv_cmp_ms) 14103 141042002/03/10 : 1.1.0 14105 - fixed a few timeout bugs 14106 - rearranged the task scheduler subsystem to improve performance, 14107 add new tasks, and make it easier to later port to librt ; 14108 - allow multiple accept() for one select() wake up ; 14109 - implemented internal load balancing with basic health-check ; 14110 - cookie insertion and header add/replace/delete, with better strings 14111 support. 14112 141132002/03/08 14114 - reworked buffer handling to fix a few rewrite bugs, and 14115 improve overall performance. 14116 - implement the "purge" option to delete server cookies in direct mode. 14117 141182002/03/07 14119 - fixed some error cases where the maxfd was not decreased. 14120 141212002/02/26 14122 - now supports transparent proxying, at least on linux 2.4. 14123 141242002/02/12 14125 - soft stop works again (fixed select timeout computation). 14126 - it seems that TCP proxies sometimes cannot timeout. 14127 - added a "quiet" mode. 14128 - enforce file descriptor limitation on socket() and accept(). 14129 141302001/12/30 : release of version 1.0.2 : fixed a bug in header processing 141312001/12/19 : release of version 1.0.1 : no MSG_NOSIGNAL on solaris 141322001/12/16 : release of version 1.0.0. 141332001/12/16 : added syslog capability for each accepted connection. 141342001/11/19 : corrected premature end of files and occasional SIGPIPE. 141352001/10/31 : added health-check type servers (mode health) which replies OK then closes. 141362001/10/30 : added the ability to support standard TCP proxies and HTTP proxies 14137 with or without cookies (use keyword http for this). 141382001/09/01 : added client/server header replacing with regexps. 14139 eg: 14140 cliexp ^(Host:\ [^:]*).* Host:\ \1:80 14141 srvexp ^Server:\ .* Server:\ Apache 141422000/11/29 : first fully working release with complete FSMs and timeouts. 141432000/11/28 : major rewrite 141442000/11/26 : first write 14145