Hi, HAProxy 1.7.13 was released on 2021/03/19. It added 114 new commits after version 1.7.12.
The previous release is quite old now. So this one is emitted to flush the pipe. Honestly it will be too long to remember the context of all fixes, most of them quite old now. Refer to the following changelog to see if you may be hit by a known and fixed bug. However, if you are still running on the 1.7.12, it is probably not the case. The EOL for the 1.7 is planned at the end of this year. It may be a good idea to think to upgrade. If you decide to take the plunge, it could be better to directly move on the 2.0 or the 2.2. Thanks everyone for you help and your contributions ! Please find the usual URLs below : Site index : http://www.haproxy.org/ Discourse : http://discourse.haproxy.org/ Slack channel : https://slack.haproxy.org/ Issue tracker : https://github.com/haproxy/haproxy/issues Wiki : https://github.com/haproxy/wiki/wiki Sources : http://www.haproxy.org/download/1.7/src/ Git repository : http://git.haproxy.org/git/haproxy-1.7.git/ Git Web browsing : http://git.haproxy.org/?p=haproxy-1.7.git Changelog : http://www.haproxy.org/download/1.7/src/CHANGELOG Cyril's HTML doc : http://cbonte.github.io/haproxy-dconv/ --- Complete changelog : Amaury Denoyelle (2): BUG/MINOR: config: Fix memory leak on config parse listen MINOR: counters: fix a typo in comment Baptiste Assmann (1): BUG/MINOR: http_act: don't check capture id in backend Christopher Faulet (35): BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop MINOR: http-rules: Add a flag on redirect rules to know the rule direction MINOR: http-rules: Handle the rule direction when a redirect is evaluated BUG/MINOR: http-ana: Reset request analysers on error when waiting for response BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned MINOR: hlua: Display debug messages on stderr only in debug mode BUG/MEDIUM: filters: Don't try to init filters for disabled proxies BUG/MINOR: filters: Skip disabled proxies during startup only BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches BUG/MINOR: tools: make parse_time_err() more strict on the timer validity BUG/MINOR: tools: Reject size format not starting by a digit BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list BUG/MINOR: server: Fix server-state-file-name directive CLEANUP: deinit: release global and per-proxy server-state variables on deinit BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL BUG/MINOR: sample: Always consider zero size string samples as unsafe BUG/MINOR: server: Init params before parsing a new server-state line BUG/MINOR: http-ana: Only consider dst address to process originalto option BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule BUG/MINOR: connection: Use the client's dst family for adressless servers BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring() BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached Daniel Corbett (1): BUG/MINOR: stats: Fix color of draining servers on stats page David Carlier (1): DOC: email change of the DeviceAtlas maintainer Dragan Dosen (1): BUG/MEDIUM: pattern: fix memory leak in regex pattern functions Emeric Brun (1): CLEANUP: channel: fix comment in ci_putblk. Emmanuel Hocdet (1): BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1 Jerome Magnin (3): BUG/MINOR: stream: don't mistake match rules for store-request rules BUG/MINOR: pattern: handle errors from fgets when trying to load patterns BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits Joao Morais (1): BUG/MINOR: config: Update cookie domain warn to RFC6265 Maciej Zdeb (1): BUG/MINOR: http-fetch: Extract cookie value even when no cookie name Mathias Weiersmueller (1): DOC: clarify matching strings on binary fetches Miroslav Zagorac (1): BUG/MINOR: spoe: correction of setting bits for analyzer Olivier Doucet (1): DOC: Improve documentation on http-request set-src Phil Scherer (1): DOC/MINOR: Fix formatting in Management Guide Thayne McCombs (1): SCRIPTS: announce-release: fix typo in help message Tim Duesterhus (6): BUG/MINOR: dns: Make dns_query_id_seed unsigned BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch BUG/MAJOR: proxy_protocol: Properly validate TLV lengths BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL BUG/MINOR: http_act: don't check capture id in backend (2) BUG/MINOR: http_act: don't check capture id in backend (2) William Dauchy (4): MINOR: tcp: avoid confusion in time parsing init BUG/MINOR: dns: allow 63 char in hostname BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat DOC: agent-check: fix typo in "fail" word expected reply William Lallemand (4): BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp() BUG/MINOR: ssl: verifyhost is case sensitive DOC: ssl: crt-list negative filters are only a hint Willy Tarreau (47): SCRIPTS: create-release: show the correct origin name in suggested commands SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands BUG/MINOR: listener: also clear the error flag on a paused listener BUG/MAJOR: dns: add minimalist error processing on the Rx path BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive. BUILD/MINOR: ssl: shut up a build warning about format truncation BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset() DOC: remove references to the outdated architecture.txt BUG/MINOR: log: fix minor resource leaks on logformat error path BUG/MINOR: sample: fix the closing bracket and LF in the debug converter BUG/MINOR: sample: always check converters' arguments BUG/MEDIUM: session: do not report a failure when rejecting a session BUG/MAJOR: hashes: fix the signedness of the hash inputs SCRIPTS: announce-release: place the send command in the mail's header SCRIPTS: announce-release: allow the user to force to overwrite old files BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit SCRIPTS: make announce-release executable again SCRIPTS: announce-release: use mutt -H instead of -i to include the draft MINOR: compiler: move CPU capabilities definition from config.h and complete them BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support BUILD: fix recent build failure on unaligned archs MINOR: compiler: add new alignment macros BUILD: ebtree: improve architecture-specific alignment BUG/MINOR: sample: fix the json converter's endian-sensitivity BUG/MAJOR: list: fix invalid element address calculation DOC: fix incorrect indentation of http_auth_* BUG/MEDIUM: http: unbreak redirects in legacy mode BUILD: chunk: properly declare pool_head_trash as extern BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam BUG/MEDIUM: shctx: really check the lock's value while waiting BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks SCRIPTS: publish-release: pass -n to gzip to remove timestamp SCRIPTS: announce-release: add the link to the wiki in the announce messages SCRIPTS: git-show-backports: make -m most only show the left branch SCRIPTS: git-show-backports: emit the shell command to backport a commit BUG/MINOR: stats: use strncmp() instead of memcmp() on health states BUG/MINOR: pools: use %u not %d to report pool stats in "show pools" SCRIPTS: improve announce-release to support different tag and versions SCRIPTS: make announce release support preparing announces before tag exists BUG/MINOR: xxhash: make sure armv6 uses memcpy() BUG/MEDIUM: config: don't pick unset values from last defaults section BUG/MINOR: checks: properly handle wrapping time in __health_adjust() BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode -- Christopher Faulet
