HAProxy known bugs for version v2.6.17 (maintenance branch 2.6) : 119

This version (2.6.17) is a release belonging to maintenance branch 2.6 whose latest version is 2.6.20. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

full changelog for 2.6 : here
browse history for 2.6 : here

Other versions in the same branch

This branch contains the following releases :

Date Version Comment

2024-11-08 2.6.20 ⇐ last

2024-09-19 2.6.19

2024-06-18 2.6.18

2024-04-05 2.6.17 ⇐ yours

2023-12-13 2.6.16

2023-08-09 2.6.15

2023-06-09 2.6.14

2023-05-02 2.6.13

2023-03-28 2.6.12

2023-03-17 2.6.11

2023-03-10 2.6.10

2023-02-14 2.6.9

2023-01-24 2.6.8

2022-12-02 2.6.7

2022-09-22 2.6.6

2022-09-03 2.6.5

2022-08-22 2.6.4

2022-08-19 2.6.3

2022-07-22 2.6.2

2022-06-21 2.6.1

2022-05-31 2.6.0

Date	Version	Comment
2024-11-08	2.6.20	⇐ last
2024-09-19	2.6.19
2024-06-18	2.6.18
2024-04-05	2.6.17	⇐ yours
2023-12-13	2.6.16
2023-08-09	2.6.15
2023-06-09	2.6.14
2023-05-02	2.6.13
2023-03-28	2.6.12
2023-03-17	2.6.11
2023-03-10	2.6.10
2023-02-14	2.6.9
2023-01-24	2.6.8
2022-12-02	2.6.7
2022-09-22	2.6.6
2022-09-03	2.6.5
2022-08-22	2.6.4
2022-08-19	2.6.3
2022-07-22	2.6.2
2022-06-21	2.6.1
2022-05-31	2.6.0

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 2.6 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

MINOR: the bug presents a limited impact and can easily be mitigated ; users rarely upgrade just for these ones ;
MEDIUM: the bug can cause some undesired behaviour and may require some tricky configuration changes to avoid hitting it ; users normally upgrade to get rid of them, or temporarily disable a functionality.
MAJOR: the bug affects short term reliability and cannot easily be worked around without a significant performance penalty or without a significant functional loss ; such bugs don't stay long in the queue without a release and users must plan an upgrade as soon as possible ;
CRITICAL: this one very rarely happens ; it indicates a short-term reliability or security issue for which there is no workaround. A release will be emitted for this fix even if it's alone and users are urged to upgrade immediately. Some distro maintainers might have been informed in advance in order to agree on a coordinated release date.

Total known bugs in this version by category :

Total CRITICAL MAJOR MEDIUM MINOR

119 0 3 45 71

Total	CRITICAL	MAJOR	MEDIUM	MINOR
119	0	3	45	71

Click on the subjects below to get the full description of the bug :

Merge date	Subject - Severity (minor, medium, major, critical)
2024-11-08	BUG/MEDIUM: mux-pt: Never fully close the connection on shutdown
2024-11-06	BUG/MINOR: http-ana: Report internal error if an action yields on a final eval
2024-11-06	BUG/MINOR: ssl/cli: 'set ssl cert' does not check the transaction name correctly
2024-11-06	BUG/MEDIUM: server: fix race on servers_list during server deletion
2024-11-06	BUG/MINOR: server: fix dynamic server leak with check on failed init
2024-11-06	BUG/MEDIUM: connection/http-reuse: fix address collision on unhandled address families
2024-11-06	BUG/MINOR: mworker: fix mworker-max-reloads parser
2024-11-06	BUG/MINOR: http-ana: Don't report a server abort if response payload is invalid
2024-11-06	BUG/MEDIUM: hlua: properly handle sample func errors in hlua_run_sample_{fetch,conv}()
2024-11-06	BUG/MEDIUM: hlua: make hlua_ctx_renew() safe
2024-11-06	BUG/MEDIUM: server: server stuck in maintenance after FQDN change
2024-11-06	BUG/MINOR: cfgparse-global: fix allowed args number for setenv
2024-11-06	BUG/MEDIUM: cli: Deadlock when setting frontend maxconn
2024-09-18	BUG/MINOR: cfgparse-listen: fix option httpslog override warning message
2024-09-17	BUG/MEDIUM: promex: Wait to have the request before sending the response
2024-09-17	BUG/MEDIUM: cache/stats: Wait to have the request before sending the response
2024-09-17	BUG/MEDIUM: queue: implement a flag to check for the dequeuing
2024-09-17	BUG/MINOR: polling: fix time reporting when using busy polling
2024-09-17	BUG/MEDIUM: pattern: prevent UAF on reused pattern expr
2024-09-17	BUG/MINOR: pattern: prevent const sample from being tampered in pat_match_beg()
2024-09-17	BUG/MINOR: pattern: do not leave a leading comma on "set" error messages
2024-09-17	BUG/MINOR: pattern: pat_ref_set: return 0 if err was found
2024-09-17	BUG/MINOR: pattern: pat_ref_set: fix UAF reported by coverity
2024-09-17	BUG/MINOR: h3: properly reject too long header responses
2024-09-17	BUG/MINOR: proto_uxst: delete fd from fdtab if listen() fails
2024-09-17	BUG/MINOR: mux-quic: do not send too big MAX_STREAMS ID
2024-09-17	BUG/MINOR: proto_tcp: keep error msg if listen() fails
2024-09-17	BUG/MINOR: proto_tcp: delete fd from fdtab if listen() fails
2024-09-17	BUG/MINOR: quic/trace: make quic_conn_enc_level_init() emit NEW not CLOSE
2024-09-17	BUG/MINOR: trace/quic: make "qconn" selectable as a lockon criterion
2024-09-17	BUG/MINOR: trace: automatically start in waiting mode with "start "
2024-09-17	BUG/MINOR: trace/quic: permit to lock on frontend/connect/session etc
2024-09-17	BUG/MINOR: trace/quic: enable conn/session pointer recovery from quic_conn
2024-09-17	BUG/MINOR: fcgi-app: handle a possible strdup() failure
2024-09-17	BUG/MEDIUM: h2: Only report early HTX EOM for tunneled streams
2024-09-17	BUG/MEDIUM: quic: prevent conn freeze on 0RTT undeciphered content
2024-09-17	BUG/MEDIUM: cli: Always release back endpoint between two commands on the mcli
2024-09-17	BUG/MEDIUM: stream: Prevent mux upgrades if client connection is no longer ready
2024-07-31	BUG/MEDIUM: init: fix fd_hard_limit default in compute_ideal_maxconn
2024-07-31	BUG/MEDIUM: queue: deal with a rare TOCTOU in assign_server_and_queue()
2024-07-31	BUG/MINOR: cli: Atomically inc the global request counter between CLI commands
2024-07-31	BUG/MINOR: server: Don't warn fallback IP is used during init-addr resolution
2024-07-31	BUG/MINOR: stick-table: fix crash for src_inc_gpc() without stkcounter
2024-07-31	BUG/MEDIUM: spoe: Be sure to create a SPOE applet if none on the current thread
2024-07-31	BUG/MEDIUM: h1: Reject empty Transfer-encoding header
2024-07-31	BUG/MINOR: h1: Reject empty coding name as last transfer-encoding value
2024-07-31	BUG/MINOR: h1: Fail to parse empty transfer coding names
2024-07-31	BUG/MEDIUM: jwt: Clear SSL error queue on error when checking the signature
2024-07-31	BUG/MINOR: jwt: fix variable initialisation
2024-07-31	BUG/MINOR: jwt: don't try to load files with HMAC algorithm
2024-07-31	BUG/MINOR: quic: Lack of precision when computing K (cubic only cc)
2024-07-03	BUG/MEDIUM: h3: ensure the ":scheme" pseudo header is totally valid
2024-07-03	BUG/MEDIUM: h3: ensure the ":method" pseudo header is totally valid
2024-07-03	BUG/MINOR: hlua: report proper context upon error in hlua_cli_io_handler_fct()
2024-07-03	BUG/MINOR: quic: fix BUG_ON() on Tx pkt alloc failure
2024-07-03	BUG/MINOR: mux-quic: fix crash on qcs SD alloc failure
2024-07-03	BUG/MINOR: quic: fix computed length of emitted STREAM frames
2024-06-19	BUG/MEDIUM: cli: fix cli_output_msg() regression
2024-06-07	BUG/MINOR: haproxy: only tid 0 must not sleep if got signal
2024-06-07	BUG/MEDIUM: quic: don't blindly rely on unaligned accesses
2024-06-07	BUG/MAJOR: connection: fix server used_conns with H2 + reuse safe
2024-06-07	BUG/MEDIUM: http_ana: ignore NTLM for reuse aggressive/always and no H1
2024-06-07	BUG/MAJOR: server: do not delete srv referenced by session
2024-06-07	BUG/MEDIUM: quic: fix connection freeze on post handshake
2024-06-07	BUG/MEDIUM: server: fix dynamic servers initial settings
2024-06-07	BUG/MEDIUM: ssl: wrong priority whem limiting ECDSA ciphers in ECDSA+RSA configuration
2024-06-07	BUG/MINOR: hlua: fix leak in hlua_ckch_set() error path
2024-06-07	BUG/MINOR: hlua: prevent LJMP in hlua_traceback()
2024-06-07	BUG/MINOR: hlua: fix unsafe hlua_pusherror() usage
2024-06-07	BUG/MINOR: hlua: don't use lua_pushfstring() when we don't expect LJMP
2024-06-07	BUG/MINOR: quic: prevent crash on qc_kill_conn()
2024-06-07	BUG/MINOR: hlua: use CertCache.set() from various hlua contexts
2024-06-07	BUG/MINOR: tools: fix possible null-deref in env_expand() on out-of-memory
2024-06-07	BUG/MINOR: tcpcheck: report correct error in tcp-check rule parser
2024-06-07	BUG/MINOR: cfgparse: remove the correct option on httpcheck send-state warning
2024-06-07	BUG/MINOR: activity: fix Delta_calls and Delta_bytes count
2024-06-07	BUG/MINOR: ssl/ocsp: init callback func ptr as NULL
2024-06-07	BUG/MINOR: server: Don't reset resolver options on a new default-server line
2024-06-07	BUG/MINOR: http-htx: Support default path during scheme based normalization
2024-06-07	BUG/MINOR: quic: adjust restriction for stateless reset emission
2024-06-07	BUG/MEDIUM: mux-quic: Create sedesc in same time of the QUIC stream
2024-06-07	BUG/MEDIUM: quic_tls: prevent LibreSSL < 4.0 from negotiating CHACHA20_POLY1305
2024-06-07	BUG/MAJOR: quic: Crash with TLS_AES_128_CCM_SHA256 (libressl only)
2024-06-07	BUG/MINOR: connection: parse PROXY TLV for LOCAL mode
2024-06-07	BUG/MINOR: stats: Don't state the 303 redirect response is chunked
2024-06-07	BUG/MINOR: htpp-ana/stats: Specify that HTX redirect messages have a C-L header
2024-06-07	BUG/MEDIUM: fd: prevent memory waste in fdtab array
2024-06-07	BUG/MEDIUM: h1: Reject CONNECT request if the target has a scheme
2024-06-07	BUG/MINOR: h1: Check authority for non-CONNECT methods only if a scheme is found
2024-06-07	BUG/MEDIUM: stick-tables: properly mark stktable_data as packed
2024-06-07	BUG/MEDIUM: htx: mark htx_sl as packed since it may be realigned
2024-06-07	BUG/MINOR: qpack: fix error code reported on QPACK decoding failure
2024-06-07	BUG/MINOR: mux-quic: fix error code on shutdown for non HTTP/3
2024-06-07	BUG/MINOR: log: smp_rgs array issues with inherited global log directives
2024-06-07	BUG/MINOR: log: keep the ref in dup_logger()
2024-06-07	BUG/MINOR: mworker: reintroduce way to disable seamless reload with -x /dev/null
2024-06-07	BUG/MINOR: h1: fix detection of upper bytes in the URI
2024-06-07	BUG/MINOR: backend: use cum_sess counters instead of cum_conn
2024-06-07	BUG/MINOR: fd: my_closefrom() on Linux could skip contiguous series of sockets
2024-06-07	BUG/MINOR: sock: handle a weird condition with connect()
2024-06-07	BUG/MINOR: stconn: Fix sc_mux_strm() return value
2024-06-07	BUG/MEDIUM: cache: Vary not working properly on anything other than accept-encoding
2024-04-19	BUG/MINOR: server: fix slowstart behavior
2024-04-19	BUG/MEDIUM: peers: Fix exit condition when max-updates-at-once is reached
2024-04-19	BUG/MEDIUM: evports: do not clear returned events list on signal
2024-04-19	BUG/MEDIUM: stconn: Don't forward channel data if input data must be filtered
2024-04-19	BUG/MEDIUM: grpc: Fix several unaligned 32/64 bits accesses
2024-04-19	BUG/MEDIUM: peers/trace: fix crash when listing event types
2024-04-19	BUG/MINOR: debug: make sure DEBUG_STRICT=0 does work as documented
2024-04-19	BUG/MINOR: http-ana: Fix TX_L7_RETRY and TX_D_L7_RETRY values
2024-04-19	BUG/MEDIUM: http-ana: Deliver 502 on keep-alive for fressh server connection
2024-04-19	BUG/MINOR: log: invalid snprintf() usage in sess_build_logline()
2024-04-19	BUG/MINOR: tools/log: invalid encode_{chunk,string} usage
2024-04-19	BUG/MINOR: log: fix lf_text_len() truncate inconsistency
2024-04-08	BUG/MEDIUM: cli: Warn if pipelined commands are delimited by a \n
2024-04-08	BUG/MINOR: ext-check: cannot use without preserve-env
2024-04-08	BUG/MEDIUM: quic: remove unsent data from qc_stream_desc buf
2024-04-08	BUG/MEDIUM: mux-quic: report early error on stream
2024-04-08	BUG/MEDIUM: cli: fix once for all the problem of missing trailing LFs

Back to the list of branches and versions
Back to the HAProxy page