* [RELEASE] Released version 2.3.4
* MINOR: contrib/prometheus-exporter: use fill_info for process dump
* MINOR: contrib/prometheus-exporter: avoid connection close header
* BUG/MINOR: init: enforce strict-limits when using master-worker
* BUG/MINOR: check: Don't perform any check on servers defined in a frontend
* BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
* Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
* MINOR: reg-tests: add base prometheus test
* BUG/MINOR: reg-tests: fix service dependency script
* BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
* MINOR: reg-tests: add a way to add service dependency
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=236
* [RELEASE] Released version 2.3.2
* BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check
* DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section
* BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
* MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main
* BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check
* DOC: Clarify %HP description in log-format
* DOC: better document the config file format and escaping/quoting rules
* BUG/MAJOR: peers: fix partial message decoding
* BUG/MEDIUM: http_act: Restore init of log-format list
* BUILD: Show the value of DEBUG= in haproxy -vv
* BUILD: Make DEBUG part of .build_opts
* MINOR: http_act: Add -m flag for del-header name matching method
* REGTESTS: converter: add url_dec test
* REGTESTS: Add sample_fetches/cook.vtc
* DOC: cache: Add new caching limitation information
* MEDIUM: cache: Change caching conditions
* BUG/MAJOR: filters: Always keep all offsets up to date during data filtering
* DOC: better describes how to configure a fallback crt
* BUG/MINOR: http_htx: Fix searching headers by substring
* BUG/MAJOR: connection: reset conn->owner when detaching from session list
* CLEANUP: connection: do not use conn->owner when the session is known
* DOC: clarify how to create a fallback crt
* BUILD: makefile: enable crypt(3) for OpenBSD
* BUG/MEDIUM: ssl/crt-list: fix error when no file found
* BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated
* BUG/MEDIUM: ssl: error when no certificate are found
* BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list
* BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=234
* [RELEASE] Released version 2.3.1
* REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2
* MINOR: peers: Add traces to peer_treat_updatemsg().
* REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken
* REGTEST: ssl: test wildcard and multi-type + exclusions
* MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error.
* MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status
* MINOR: init: Fix the prototype for per-thread free callbacks
* BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after
* MINOR: spoe: Don't close connection in sync mode on processing timeout
* BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet
* BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors
* MINOR: check: report error on incompatible connect proto
* MINOR: check: report error on incompatible proto
* BUG/MEDIUM: check: reuse srv proto only if using same mode
* BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches
* BUG/MINOR: http-fetch: Extract cookie value even when no cookie name
* BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages
* BUG/MINOR: peers: Missing TX cache entries reset.
* BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries.
* BUG/MINOR: stats: free dynamically stats fields/lines on shutdown
* BUG/MINOR: lua: set buffer size during map lookups
* BUG/MINOR: pattern: a sample marked as const could be written
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=233
- use parallel build
- Update to version 2.2.4+git0.de456726d:
* [RELEASE] Released version 2.2.4
* REGTEST: make map_regm_with_backref require 1.7
* REGTEST: make abns_socket.vtc require 1.8
* REGTEST: make agent-check.vtc require 1.8
* REGTEST: fix host part in balance-uri-path-only.vtc
* BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
* DOC: agent-check: fix typo in "fail" word expected reply
* REGTESTS: use "command" instead of "which" for better POSIX compatibility
* BUILD: trace: include tools.h
* BUG/MEDIUM: listeners: do not pause foreign listeners
* REGTESTS: add a few load balancing tests
* MINOR: backend: add a new "path-only" option to "balance uri"
* MINOR: backend: make the "whole" option of balance uri take only one bit
* MINOR: h2/trace: also display the remaining frame length in traces
* BUG/MINOR: Fix memory leaks cfg_parse_peers
* BUG/MEDIUM: h2: report frame bits only for handled types
* BUG/MINOR: config: Fix memory leak on config parse listen
* BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
* BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
* BUG/MINOR: ssl/crt-list: crt-list could end without a \n
* BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
* BUG/MINOR: server: report correct error message for invalid port on "socks4"
* BUG/MINOR: ssl: verifyhost is case sensitive
* BUG/MINOR: Fix type passed of sizeof() for calloc()
* BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
* BUILD: threads: better workaround for late loading of libgcc_s
OBS-URL: https://build.opensuse.org/request/show/839173
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/haproxy?expand=0&rev=92
- Update to version 2.2.2+git0.b8a2763d5:
* [RELEASE] Released version 2.2.2
* BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux
* BUG/MEDIUM: backend: always attach the transport before installing the mux
* SCRIPTS: announce-release: add the link to the wiki in the announce messages
* MINOR: stream-int: Be sure to have a mux to do sends and receives
* MINOR: connection: Preinstall the mux for non-ssl connect
* BUG/MEDIUM: connection: Be sure to always install a mux for sync connect
* BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
* BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort
* BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation
* BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation
* MEDIUM: lua: Add support for the Lua 5.4
* BUG/MAJOR: dns: don't treat Authority records as an error
* BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status
* BUG/MINOR: debug: Don't dump the lua stack if it is not initialized
* BUILD: tools: fix build with static only toolchains
* BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore
OBS-URL: https://build.opensuse.org/request/show/823717
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/haproxy?expand=0&rev=90
* [RELEASE] Released version 2.2.2
* BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux
* BUG/MEDIUM: backend: always attach the transport before installing the mux
* SCRIPTS: announce-release: add the link to the wiki in the announce messages
* MINOR: stream-int: Be sure to have a mux to do sends and receives
* MINOR: connection: Preinstall the mux for non-ssl connect
* BUG/MEDIUM: connection: Be sure to always install a mux for sync connect
* BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
* BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort
* BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation
* BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation
* MEDIUM: lua: Add support for the Lua 5.4
* BUG/MAJOR: dns: don't treat Authority records as an error
* BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status
* BUG/MINOR: debug: Don't dump the lua stack if it is not initialized
* BUILD: tools: fix build with static only toolchains
* BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=223
- Update to version 2.2.1+git0.0ef71a557:
* [RELEASE] Released version 2.2.1
* BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering
* BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected
* BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one
* MEDIUM: htx: Add a flag on a HTX message when no more data are expected
* BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
* BUG/MAJOR: dns: Make the do-resolve action thread-safe
* BUG/MAJOR: tasks: don't requeue global tasks into the local queue
* BUG/MEDIUM: resolve: fix init resolving for ring and peers section.
* BUG/MEDIUM: arg: empty args list must be dropped
* DOC: ssl: req_ssl_sni needs implicit TLS
* BUILD: config: fix again bugs gcc warnings on calloc
* BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed
* BUILD: config: address build warning on raspbian+rpi4
* BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
* BUG/MEDIUM: server: fix possibly uninitialized state file on close
* BUG/MEDIUM: server: resolve state file handle leak on reload
* BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers
* BUG/MEDIUM: log: issue mixing sampled to not sampled log servers.
* BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT
* BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding
* BUG/MINOR: mux-fcgi: Handle empty STDERR record
* BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode
* BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list
* BUG/MEDIUM: mux-h2: Don't add private connections in available connection list
* CONTRIB: da: fix memory leak in dummy function da_atlas_open()
* BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ
* BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD()
* BUG/MINOR: sample: Free str.area in smp_check_const_meth
OBS-URL: https://build.opensuse.org/request/show/822445
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/haproxy?expand=0&rev=89
* [RELEASE] Released version 2.2.1
* BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering
* BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected
* BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one
* MEDIUM: htx: Add a flag on a HTX message when no more data are expected
* BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
* BUG/MAJOR: dns: Make the do-resolve action thread-safe
* BUG/MAJOR: tasks: don't requeue global tasks into the local queue
* BUG/MEDIUM: resolve: fix init resolving for ring and peers section.
* BUG/MEDIUM: arg: empty args list must be dropped
* DOC: ssl: req_ssl_sni needs implicit TLS
* BUILD: config: fix again bugs gcc warnings on calloc
* BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed
* BUILD: config: address build warning on raspbian+rpi4
* BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
* BUG/MEDIUM: server: fix possibly uninitialized state file on close
* BUG/MEDIUM: server: resolve state file handle leak on reload
* BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers
* BUG/MEDIUM: log: issue mixing sampled to not sampled log servers.
* BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT
* BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding
* BUG/MINOR: mux-fcgi: Handle empty STDERR record
* BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode
* BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list
* BUG/MEDIUM: mux-h2: Don't add private connections in available connection list
* CONTRIB: da: fix memory leak in dummy function da_atlas_open()
* BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ
* BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD()
* BUG/MINOR: sample: Free str.area in smp_check_const_meth
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=222
- Update to version 2.2.0+git0.3a00c915f:
https://www.haproxy.com/blog/announcing-haproxy-2-2/
* [RELEASE] Released version 2.2.0
* MINOR: version: mention that it's an LTS release now
* DOC: minor update to coding style file
* DOC: update INSTALL with new compiler versions
* CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog()
* DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x
* BUG/MINOR: connection: See new connection as available only on reuse always
* BUG/MEDIUM: connection: Don't consider new private connections as available
* BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server
* MINOR: mux-h1: Improve traces about the splicing
- refreshed patches to apply cleanly again:
haproxy-1.6.0-makefile_lib.patch
haproxy-1.6.0-sec-options.patch
- track series file in source rpm
OBS-URL: https://build.opensuse.org/request/show/819260
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/haproxy?expand=0&rev=88
https://www.haproxy.com/blog/announcing-haproxy-2-2/
* [RELEASE] Released version 2.2.0
* MINOR: version: mention that it's an LTS release now
* DOC: minor update to coding style file
* DOC: update INSTALL with new compiler versions
* CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog()
* DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x
* BUG/MINOR: connection: See new connection as available only on reuse always
* BUG/MEDIUM: connection: Don't consider new private connections as available
* BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server
* MINOR: mux-h1: Improve traces about the splicing
- refreshed patches to apply cleanly again:
haproxy-1.6.0-makefile_lib.patch
haproxy-1.6.0-sec-options.patch
- track series file in source rpm
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=221
- Update to version 2.1.7+git0.8bebf80fb:
* [RELEASE] Released version 2.1.7
- Update to version 2.1.6+git1.661c88907:
* BUG/MAJOR: http-htx: Don't forget to copy error messages from defaults sections
- Update to version 2.1.6+git0.34db76106:
* [RELEASE] Released version 2.1.6
* BUG/MINOR: mworker: fix a memleak when execvp() failed
* BUG/MINOR: ssl: fix a trash buffer leak in some error cases
* BUG/MEDIUM: mworker: fix the reload with an -- option
* BUG/MINOR: init: -S can have a parameter starting with a dash
* BUG/MINOR: init: -x can have a parameter starting with a dash
* BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
* BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
* BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
* BUG/MEDIUM: http-htx: Duplicate error messages as raw data instead of string
* BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
* BUG/MINOR: peers: fix internal/network key type mapping.
* SCRIPTS: publish-release: pass -n to gzip to remove timestamp
* Revert "BUG/MEDIUM: connections: force connections cleanup on server changes"
OBS-URL: https://build.opensuse.org/request/show/813045
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/haproxy?expand=0&rev=87
* [RELEASE] Released version 2.1.6
* BUG/MINOR: mworker: fix a memleak when execvp() failed
* BUG/MINOR: ssl: fix a trash buffer leak in some error cases
* BUG/MEDIUM: mworker: fix the reload with an -- option
* BUG/MINOR: init: -S can have a parameter starting with a dash
* BUG/MINOR: init: -x can have a parameter starting with a dash
* BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
* BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
* BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
* BUG/MEDIUM: http-htx: Duplicate error messages as raw data instead of string
* BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
* BUG/MINOR: peers: fix internal/network key type mapping.
* SCRIPTS: publish-release: pass -n to gzip to remove timestamp
* Revert "BUG/MEDIUM: connections: force connections cleanup on server changes"
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=218
* [RELEASE] Released version 2.1.2
* BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility
* BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream
* BUG/MINOR: state-file: do not leak memory on parse errors
* BUG/MINOR: state-file: do not store duplicates in the global tree
* BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry
* BUG/MINOR: ssl: openssl-compat: Fix getm_ defines
* BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
* MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute
* BUG/MEDIUM: ssl: Revamp the way early data are handled.
* BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing
* MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task
* MINOR: http: add a new "replace-path" action
* MINOR: debug: support logging to various sinks
* BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
* MINOR: sample: Validate the number of bits for the sha2 converter
* BUG/MINOR: sample: always check converters' arguments
* BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
* DOC: clarify the fact that replace-uri works on a full URI
- drop the udev buildrequires completely
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=211
* [RELEASE] Released version 2.1.1
* BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy()
* BUG/MINOR: listener: fix off-by-one in state name check
* BUG/MINOR: server: make "agent-addr" work on default-server line
* BUG/MINOR: listener: do not immediately resume on transient error
* BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
* BUG/MINOR: log: fix minor resource leaks on logformat error path
* DOC: remove references to the outdated architecture.txt
* DOC: proxies: HAProxy only supports 3 connection modes
* BUG/MINOR: tasks: only requeue a task if it was already in the queue
* DOC: listeners: add a few missing transitions
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=209
* BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
* BUG/MAJOR: dns: add minimalist error processing on the Rx path
* BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
* DOC: document the listener state transitions
* BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
* BUG/MINOR: listener: also clear the error flag on a paused listener
* BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
* BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
* BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted
* BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=208
* BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data
* BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN
* BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending
* BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
* BUG/MEDIUM: listener/thread: fix a race when pausing a listener
* BUG/MINOR: ssl/cli: don't overwrite the filters variable
* BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible
* BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data
* DOC: move the "group" keyword at the right place
* DOC: Fix ordered list in summary
- switch to the 2.1 branch
https://www.haproxy.com/blog/haproxy-2-1/https://www.mail-archive.com/haproxy@formilux.org/msg35491.html
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=206
* BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data
* BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN
* BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending
* BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
* BUG/MEDIUM: listener/thread: fix a race when pausing a listener
* BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible
* BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data
* DOC: move the "group" keyword at the right place
* DOC: clarify matching strings on binary fetches
* DOC: Clarify behavior of server maxconn in HTTP mode
OBS-URL: https://build.opensuse.org/package/show/server:http/haproxy?expand=0&rev=205
