HAProxy known bugs for maintenance branch 2.6 : 30

This is maintenance branch 2.6 whose latest version is 2.6.20. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches. In short, if you are running any 2.6 version other than 2.6.20, you're running with known bugs.

Quick links

full changelog for 2.6 : here
browse history for 2.6 : here

Versions available in this branch

This branch contains the following releases :

Date Version Comment

2024-11-08 2.6.20 ⇐ last

2024-09-19 2.6.19

2024-06-18 2.6.18

2024-04-05 2.6.17

2023-12-13 2.6.16

2023-08-09 2.6.15

2023-06-09 2.6.14

2023-05-02 2.6.13

2023-03-28 2.6.12

2023-03-17 2.6.11

2023-03-10 2.6.10

2023-02-14 2.6.9

2023-01-24 2.6.8

2022-12-02 2.6.7

2022-09-22 2.6.6

2022-09-03 2.6.5

2022-08-22 2.6.4

2022-08-19 2.6.3

2022-07-22 2.6.2

2022-06-21 2.6.1

2022-05-31 2.6.0

Date	Version	Comment
2024-11-08	2.6.20	⇐ last
2024-09-19	2.6.19
2024-06-18	2.6.18
2024-04-05	2.6.17
2023-12-13	2.6.16
2023-08-09	2.6.15
2023-06-09	2.6.14
2023-05-02	2.6.13
2023-03-28	2.6.12
2023-03-17	2.6.11
2023-03-10	2.6.10
2023-02-14	2.6.9
2023-01-24	2.6.8
2022-12-02	2.6.7
2022-09-22	2.6.6
2022-09-03	2.6.5
2022-08-22	2.6.4
2022-08-19	2.6.3
2022-07-22	2.6.2
2022-06-21	2.6.1
2022-05-31	2.6.0

Fixes for known bugs pending in this branch since the last release (2.6.20)

These fixes have already been queued for the next 2.6 release but no version was released with them yet. Note that fixes are backported several at a time from the development branch to maintenance branches, and the absence of a fix here doesn't mean none will be issued soon.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

MINOR: the bug presents a limited impact and can easily be mitigated ; users rarely upgrade just for these ones ;
MEDIUM: the bug can cause some undesired behaviour and may require some tricky configuration changes to avoid hitting it ; users normally upgrade to get rid of them, or temporarily disable a functionality.
MAJOR: the bug affects short term reliability and cannot easily be worked around without a significant performance penalty or without a significant functional loss ; such bugs don't stay long in the queue without a release and users must plan an upgrade as soon as possible ;
CRITICAL: this one very rarely happens ; it indicates a short-term reliability or security issue for which there is no workaround. A release will be emitted for this fix even if it's alone and users are urged to upgrade immediately. Some distro maintainers might have been informed in advance in order to agree on a coordinated release date.

Total known bugs in the latest version of this branch by category :

Total CRITICAL MAJOR MEDIUM MINOR

30 0 1 21 8

Total	CRITICAL	MAJOR	MEDIUM	MINOR
30	0	1	21	8

Click on the subjects below to get the full description of the bug :

Merge date	Subject - Severity (minor, medium, major, critical)
2025-01-09	BUG/MEDIUM: queue: Make process_srv_queue return the number of streams
2025-01-09	BUG/MEDIUM: queues: Do not use pendconn_grab_from_px().
2025-01-09	BUG/MEDIUM: queues: Make sure we call process_srv_queue() when leaving
2025-01-09	BUG/MEDIUM: stconn: Don't forward shut for SC in connecting state
2025-01-09	BUG/MINOR: stream: unblock stream on wait-for-handshake completion
2025-01-09	BUG/MEDIUM: pattern: prevent uninitialized reads in pat_match_{str,beg}
2025-01-09	BUG/MEDIUM: mux-h1: Fix how timeouts are applied on H1 connections
2025-01-09	BUG/MINOR: server-state: Fix expiration date of srvrq_check tasks
2025-01-09	BUG/MINOR: signal: register default handler for SIGINT in signal_init()
2025-01-09	BUG/MINOR: h1-htx: Use default reason if not set when formatting the response
2025-01-09	BUG/MEDIUM: http-ana: Reset request flag about data sent to perform a L7 retry
2025-01-09	BUG/MEDIUM: sock: Remove FD_POLL_HUP during connect() if FD_POLL_ERR is not set
2025-01-09	BUG/MEDIUM: http-ana: Don't release too early the L7 buffer
2025-01-09	BUG/MAJOR: quic: fix wrong packet building due to already acked frames
2025-01-09	BUG/MEDIUM: h3: Increase max number of headers when sending headers
2025-01-09	BUG/MEDIUM: h3: Properly limit the number of headers received
2025-01-09	BUG/MEDIUM: mux-h2: Check the number of headers in HEADERS frame after decoding
2025-01-09	BUG/MEDIUM: mux-h2: Increase max number of headers when encoding HEADERS frames
2025-01-09	BUG/MINOR: http-ana: Adjust the server status before the L7 retries
2025-01-09	BUG/MINOR: http_ana: Report -1 for %Tr for invalid response only
2025-01-09	BUG/MINOR: peers: make sure to always apply offsets to now_ms in expiration
2025-01-09	BUG/MEDIUM: mailers: make sure to always apply offsets to now_ms in expiration
2025-01-09	BUG/MEDIUM: checks: make sure to always apply offsets to now_ms in expiration
2025-01-09	BUG/MEDIUM: mux-h2: Don't send RST_STREAM frame for streams with no ID
2025-01-09	BUG/MEDIUM: resolvers: Insert a non-executed resulution in front of the wait list
2025-01-09	BUG/MINOR: cli: don't show sockpairs in HAPROXY_CLI and HAPROXY_MASTER_CLI
2025-01-09	BUG/MEDIUM: queue: make sure never to queue when there's no more served conns
2025-01-09	BUG/MEDIUM: queue: always dequeue the backend when redistributing the last server
2025-01-09	BUG/MEDIUM: stream: make stream_shutdown() async-safe
2024-11-08	BUG/MEDIUM: mux-pt: Never fully close the connection on shutdown

Known bugs fixed in the development branch after the last commit in this branch

It is important to understand that not all of these commits are necessarily relevant to this version, but clicking on them will show the bug description. All fixes are made first in the development branch and then backported to the maintenance branches. This ensures no fix is lost when upgrading. If a fix was marked for backporting to this branch and is not there yet, it's likely that it is still missing. Do not hesitate to ask on the haproxy mailing list if you feel like a fix has been skipped.

Date Subject

2025-01-20 BUG/MINOR: init: set HAPROXY_STARTUP_VERSION from the variable, not the macro

2025-01-20 BUG/MAJOR: log/sink: possible sink collision in sink_new_from_srv()

2025-01-20 BUG/MAJOR: quic: reject too large CRYPTO frames

2025-01-14 BUG/MEDIUM: promex: Use right context pointers to dump backends extra-counters

2025-01-14 BUG/MEDIUM: stktable: fix missing lock on some table converters

2025-01-10 BUG/MINOR: quic: reject NEW_TOKEN frames from clients

Date	Subject
2025-01-20	BUG/MINOR: init: set HAPROXY_STARTUP_VERSION from the variable, not the macro
2025-01-20	BUG/MAJOR: log/sink: possible sink collision in sink_new_from_srv()
2025-01-20	BUG/MAJOR: quic: reject too large CRYPTO frames
2025-01-14	BUG/MEDIUM: promex: Use right context pointers to dump backends extra-counters
2025-01-14	BUG/MEDIUM: stktable: fix missing lock on some table converters
2025-01-10	BUG/MINOR: quic: reject NEW_TOKEN frames from clients

Back to the list of branches and versions
Back to the HAProxy page