HAProxy known bugs for version v3.0.0 (maintenance branch 3.0) :  209 

This version (3.0.0) is a release belonging to maintenance branch 3.0 whose latest version is 3.0.7. If your version is not the last one in the maintenance branch, you are missing fixes for known bugs, and by not updating you are needlessly taking the responsibility for the risk of unexpected service outages and exposing your web site to possible security issues.

The HAProxy development team takes a great care of maintaining stable versions so that all users can apply bug fixes without having to take the risk of upgrading to a new branch. In turn users are expected to apply the fixes when the development team estimates that they were worth being backported to stable branches.

Quick links

Other versions in the same branch

This branch contains the following releases :

DateVersionComment
2024-12-123.0.7 ⇐ last
2024-11-073.0.6 
2024-09-193.0.5 
2024-09-033.0.4 
2024-07-113.0.3 
2024-06-143.0.2 
2024-06-103.0.1 
2024-05-293.0.0 ⇐ yours

Known bugs affecting this version, and already fixed in the maintenance branch

These fixes have already been queued for a more recent 3.0 version. Some of them might have already been released in a more recent version than yours, and other ones might still be pending in the maintenance branch for a future release. The list may be empty if you're already on the latest version and no new fix was backported.

Bugs are almost always tagged with a severity (some people forget the severity tag when the bug is minor). The following severities are used :

Total known bugs in this version by category :

TotalCRITICALMAJORMEDIUMMINOR
209 0 9 92 108

Click on the subjects below to get the full description of the bug :

Merge dateSubject - Severity (minor, medium, major, critical)
2024-12-11BUG/MINOR: server-state: Fix expiration date of srvrq_check tasks
2024-12-11BUG/MINOR: quic: remove startup alert if conn socket-owner unsupported
2024-12-11BUG/MINOR: signal: register default handler for SIGINT in signal_init()
2024-12-11BUG/MINOR: h1-htx: Use default reason if not set when formatting the response
2024-12-11BUG/MEDIUM: http-ana: Reset request flag about data sent to perform a L7 retry
2024-12-11BUG/MEDIUM: event_hdl: fix uninitialized value in async mode when no data is provided
2024-12-11BUG/MINOR: log: fix lf_text() behavior with empty string
2024-11-27BUG/MEDIUM: sock: Remove FD_POLL_HUP during connect() if FD_POLL_ERR is not set
2024-11-27BUG/MEDIUM: http-ana: Don't release too early the L7 buffer
2024-11-27BUG/MAJOR: quic: fix wrong packet building due to already acked frames
2024-11-22BUG/MAJOR: mux-h1: Properly handle wrapping on obuf when dumping the first-line
2024-11-22BUG/MEDIUM: pools/memprofile: always clean stale pool info on pool_destroy()
2024-11-22BUG/MINOR: activity/memprofile: reinitialize the free calls on DSO summary
2024-11-22BUG/MEDIUM: wdt: fix the stuck detection for warnings
2024-11-22BUG/MEDIUM: debug: don't set the STUCK flag from debug_handler()
2024-11-22BUG/MEDIUM: h3: Increase max number of headers when sending headers
2024-11-22BUG/MEDIUM: h3: Properly limit the number of headers received
2024-11-22BUG/MEDIUM: mux-h2: Check the number of headers in HEADERS frame after decoding
2024-11-22BUG/MEDIUM: mux-h2: Increase max number of headers when encoding HEADERS frames
2024-11-22BUG/MINOR: http-ana: Adjust the server status before the L7 retries
2024-11-22BUG/MINOR: http_ana: Report -1 for %Tr for invalid response only
2024-11-22BUG/MINOR: peers: make sure to always apply offsets to now_ms in expiration
2024-11-22BUG/MINOR: mux_quic: make sure to always apply offsets to now_ms in expiration
2024-11-22BUG/MEDIUM: mailers: make sure to always apply offsets to now_ms in expiration
2024-11-22BUG/MEDIUM: checks: make sure to always apply offsets to now_ms in expiration
2024-11-22BUG/MINOR: Don't report early srv aborts on request forwarding in DONE state
2024-11-22BUG/MEDIUM: mux-h2: Don't send RST_STREAM frame for streams with no ID
2024-11-13BUG/MEDIUM: resolvers: Insert a non-executed resulution in front of the wait list
2024-11-13BUG/MINOR: cli: don't show sockpairs in HAPROXY_CLI and HAPROXY_MASTER_CLI
2024-11-13BUG/MEDIUM: quic: prevent crash due to CRYPTO parsing error
2024-11-13BUG/MINOR: guid/server: ensure thread-safety on GUID insert/delete
2024-11-08BUG/MINOR: quic: repeat packet parsing to deal with fragmented CRYPTO
2024-11-08BUG/MEDIUM: quic: support wait-for-handshake
2024-11-08BUG/MINOR: stream: unblock stream on wait-for-handshake completion
2024-11-08BUG/MEDIUM: pattern: prevent uninitialized reads in pat_match_{str,beg}
2024-11-06DEBUG: wdt: add a stats counter "BlockedTrafficWarnings" in show info
2024-11-06DEBUG: wdt: make the blocked traffic warning delay configurable
2024-11-06DEBUG: cli: make it possible for "debug dev loop" to trigger warnings
2024-11-06DEBUG: wdt: better detect apparently locked up threads and warn about them
2024-11-06BUG/MINOR: stats: Fix the name for the total number of streams created
2024-11-06BUG/MINOR: quic: fix malformed probing packet building
2024-11-06BUG/MEDIUM: promex: Fix dump of extra counters
2024-11-06BUG/MINOR: http-ana: Report internal error if an action yields on a final eval
2024-11-06BUG/MEDIUM: mux-h1: Fix how timeouts are applied on H1 connections
2024-11-06BUG/MINOR: ssl/cli: 'set ssl cert' does not check the transaction name correctly
2024-11-06BUG/MINOR: trace: stop rewriting argv with -dt
2024-10-24BUG/MEDIUM: server: fix race on servers_list during server deletion
2024-10-24BUG/MINOR: stconn: Don't disable 0-copy FF if EOS was reported on consumer side
2024-10-24BUG/MINOR: http-ana: Fix wrong client abort reports during responses forwarding
2024-10-24BUG/MEDIUM: stconn: Report blocked send if sends are blocked by an error
2024-10-24BUG/MINOR: server: fix dynamic server leak with check on failed init
2024-10-23BUG/MEDIUM: connection/http-reuse: fix address collision on unhandled address families
2024-10-23BUG/MEDIUM: mux-h2: Remove H2S from send list if data are sent via 0-copy FF
2024-10-23BUG/MEDIUM: stats-html: Never dump more data than expected during 0-copy FF
2024-10-23BUG/MINOR: mux-quic: do not close STREAM with empty FIN if no data sent
2024-10-23BUG/MINOR: mworker: fix mworker-max-reloads parser
2024-10-23BUG/MEDIUM: quic: avoid freezing 0RTT connections
2024-10-23BUG/MINOR: quic: avoid leaking post handshake frames
2024-10-23BUG/MAJOR: filters/htx: Add a flag to state the payload is altered by a filter
2024-10-23BUG/MEDIUM: stconn: Check FF data of SC to perform a shutdown in sc_notify()
2024-10-23BUG/MINOR: http-ana: Don't report a server abort if response payload is invalid
2024-10-23BUG/MEDIUM: stconn: Wait iobuf is empty to shut SE down during a check send
2024-10-23BUG/MINOR: httpclient: return NULL when no proxy available during httpclient_new()
2024-10-23BUG/MEDIUM: queue: make sure never to queue when there's no more served conns
2024-10-23BUG/MEDIUM: mux-quic: ensure timeout server is active for short requests
2024-10-23BUG/MEDIUM: hlua: properly handle sample func errors in hlua_run_sample_{fetch,conv}()
2024-10-23BUG/MEDIUM: hlua: make hlua_ctx_renew() safe
2024-10-21BUG/MEDIUM: server: server stuck in maintenance after FQDN change
2024-10-02BUG/MINOR: http-ana: Disable fast-fwd for unfinished req waiting for upgrade
2024-10-02BUG/MINOR: mux-h1: Fix condition to set EOI on SE during zero-copy forwarding
2024-10-02BUG/MEDIUM: queue: always dequeue the backend when redistributing the last server
2024-10-02BUG/MINOR: queue: make sure that maintenance redispatches server queue
2024-10-02BUG/MEDIUM: stream: make stream_shutdown() async-safe
2024-10-01BUG/MINOR: cfgparse-global: fix allowed args number for setenv
2024-10-01BUG/MINOR: server: make sure the HMAINT state is part of MAINT
2024-10-01BUG/MEDIUM: cli: Deadlock when setting frontend maxconn
2024-10-01BUG/MEDIUM: cli: Be sure to catch immediate client abort
2024-10-01BUG/MINOR: mux-quic: report glitches to session
2024-10-01BUG/MEDIUM: mux-h1/mux-h2: Reject upgrades with payload on H2 side only
2024-10-01BUG/MINOR: h2: reject extended connect for h2c protocol
2024-10-01BUG/MINOR: h1: do not forward h2c upgrade header token
2024-09-19BUG/MINOR: quic: prevent freeze after early QCS closure
2024-09-19BUG/MEDIUM: quic: handle retransmit for standalone FIN STREAM
2024-09-18BUG/MINOR: cfgparse-listen: fix option httpslog override warning message
2024-09-17BUG/MEDIUM: promex: Wait to have the request before sending the response
2024-09-17BUG/MEDIUM: cache/stats: Wait to have the request before sending the response
2024-09-17BUG/MEDIUM: sc_strm/applet: Wake applet after a successfull synchronous send
2024-09-17BUG/MINOR: peers: local entries updates may not be advertised after resync
2024-09-17BUG/MEDIUM: queue: implement a flag to check for the dequeuing
2024-09-17BUG/MINOR: clock: validate that now_offset still applies to the current date
2024-09-17BUG/MINOR: clock: make time jump corrections a bit more accurate
2024-09-17BUG/MINOR: polling: fix time reporting when using busy polling
2024-09-10BUG/MINOR: pattern: do not leave a leading comma on "set" error messages
2024-09-09BUG/MINOR: h1-htx: Don't flag response as bodyless when a tunnel is established
2024-09-09BUG/MAJOR: mux-h1: Wake SC to perform 0-copy forwarding in CLOSING state
2024-09-09BUG/MEDIUM: pattern: prevent UAF on reused pattern expr
2024-09-09BUG/MINOR: pattern: prevent const sample from being tampered in pat_match_beg()
2024-09-09BUG/MEDIUM: clock: detect and cover jumps during execution
2024-09-06BUG/MINOR: quic: Too short datagram during packet building failures (aws-lc only)
2024-09-05BUG/MINOR: quic: Crash from trace dumping SSL eary data status (AWS-LC)
2024-09-05BUG/MEDIUM: quic: always validate sender address on 0-RTT
2024-09-05BUG/MINOR: quic: Missing incrementation in NEW_TOKEN frame builder
2024-09-04BUG/MEDIUM: clock: also update the date offset on time jumps
2024-09-03BUG/MINOR: cfgparse-global: remove tune.fast-forward from common_kw_list
2024-09-03BUG/MINOR: pattern: pat_ref_set: return 0 if err was found
2024-09-03BUG/MINOR: pattern: pat_ref_set: fix UAF reported by coverity
2024-09-03BUG/MINOR: h3: properly reject too long header responses
2024-09-03BUG/MINOR: proto_uxst: delete fd from fdtab if listen() fails
2024-09-03BUG/MINOR: mux-quic: do not send too big MAX_STREAMS ID
2024-09-03BUG/MEDIUM: mworker/cli: fix pipelined modes on master CLI
2024-09-03BUG/MINOR: proto_tcp: keep error msg if listen() fails
2024-09-03BUG/MINOR: proto_tcp: delete fd from fdtab if listen() fails
2024-09-03BUG/MINOR: quic/trace: make quic_conn_enc_level_init() emit NEW not CLOSE
2024-09-03BUG/MINOR: trace/quic: make "qconn" selectable as a lockon criterion
2024-09-03BUG/MINOR: trace: automatically start in waiting mode with "start "
2024-09-03BUG/MEDIUM: trace: fix null deref in lockon mechanism since TRACE_ENABLED()
2024-09-03BUG/MINOR: trace/quic: permit to lock on frontend/connect/session etc
2024-09-03BUG/MINOR: trace/quic: enable conn/session pointer recovery from quic_conn
2024-09-03BUG/MINOR: fcgi-app: handle a possible strdup() failure
2024-09-03BUG/MEDIUM: peer: Notify the applet won't consume data when it waits for sync
2024-09-03BUG/MEDIUM: mux-h2: Propagate term flags to SE on error in h2s_wake_one_stream
2024-09-03BUG/MEDIUM: h2: Only report early HTX EOM for tunneled streams
2024-09-03BUG/MEDIUM: http-ana: Report error on write error waiting for the response
2024-09-03BUG/MEDIUM: quic: prevent conn freeze on 0RTT undeciphered content
2024-09-03BUG/MEDIUM: ssl: 0-RTT initialized at the wrong place for AWS-LC
2024-09-03BUG/MEDIUM: ssl: reactivate 0-RTT for AWS-LC
2024-09-03BUG/MINOR: stconn: bs.id and fs.id had their dependencies incorrect
2024-09-03BUG/MEDIUM: mux-pt/mux-h1: Release the pipe on connection error on sending path
2024-09-03BUG/MEDIUM: stconn: Report error on SC on send if a previous SE error was set
2024-09-03BUG/MEDIUM: server/addr: fix tune.events.max-events-at-once event miss and leak
2024-09-03BUG/MEDIUM: mux-pt: Fix condition to perform a shutdown for writes in mux_pt_shut()
2024-09-03BUG/MINOR: Crash on O-RTT RX packet after dropping Initial pktns
2024-09-03BUG/MINOR: quic: Too shord datagram during O-RTT handshakes (aws-lc only)
2024-09-03BUG/MAJOR: mux-h2: always clear MUX_MFULL and DEM_MROOM when clearing the mbuf
2024-09-03BUG/MEDIUM: mux-h1: Properly handle empty message when an error is triggered
2024-09-03BUG/MINOR: quic: unexploited retransmission cases for Initial pktns.
2024-09-03BUG/MEDIUM: cli: Always release back endpoint between two commands on the mcli
2024-09-03BUG/MEDIUM: mux-pt: Never fully close the connection on shutdown
2024-09-02BUG/MINIR: proxy: Match on 429 status when trying to perform a L7 retry
2024-09-02BUG/MEDIUM: stream: Prevent mux upgrades if client connection is no longer ready
2024-09-02BUG/MEDIUM: mux-h2: Set ES flag when necessary on 0-copy data forwarding
2024-07-29BUG/MEDIUM: init: fix fd_hard_limit default in compute_ideal_maxconn
2024-07-29BUG/MEDIUM: queue: deal with a rare TOCTOU in assign_server_and_queue()
2024-07-29BUG/MEDIUM: jwt: Clear SSL error queue on error when checking the signature
2024-07-29BUG/MINOR: quic: Lack of precision when computing K (cubic only cc)
2024-07-29BUG/MINOR: quic: Non optimal first datagram.
2024-07-29BUG/MINOR: cli: Atomically inc the global request counter between CLI commands
2024-07-29BUG/MINOR: server: Don't warn fallback IP is used during init-addr resolution
2024-07-29BUG/MINOR: stick-table: fix crash for src_inc_gpc() without stkcounter
2024-07-29BUG/MAJOR: mux-h2: force a hard error upon short read with pending error
2024-07-29BUG/MEDIUM: ssl_sock: fix deadlock in ssl_sock_load_ocsp() on error path
2024-07-29BUG/MEDIUM: debug/cli: fix "show threads" crashing with low thread counts
2024-07-29BUG/MINOR: session: Eval L4/L5 rules defined in the default section
2024-07-29BUG/MEDIUM: quic: prevent crash on accept queue full
2024-07-11BUG/MEDIUM: bwlim: Be sure to never set the analyze expiration date in past
2024-07-11BUG/MEDIUM: spoe: Be sure to create a SPOE applet if none on the current thread
2024-07-11BUG/MEDIUM: h1: Reject empty Transfer-encoding header
2024-07-11BUG/MINOR: h1: Reject empty coding name as last transfer-encoding value
2024-07-11BUG/MINOR: h1: Fail to parse empty transfer coding names
2024-07-11BUG/MINOR: jwt: fix variable initialisation
2024-07-05BUG/MEDIUM: peers: Fix crash when syncing learn state of a peer without appctx
2024-07-05BUG/MINOR: jwt: don't try to load files with HMAC algorithm
2024-07-05BUG/MEDIUM: server: fix race on server_atomic_sync()
2024-07-03BUG/MEDIUM: hlua/cli: Fix lua CLI commands to work with applet's buffers
2024-07-03BUG/MINOR: promex: Remove Help prefix repeated twice for each metric
2024-07-03BUG/MEDIUM: quic: fix possible exit from qc_check_dcid() without unlocking
2024-07-03BUG/MINOR: quic: fix race-condition on trace for CID retrieval
2024-07-03BUG/MINOR: quic: fix race condition in qc_check_dcid()
2024-07-03BUG/MEDIUM: quic: fix race-condition in quic_get_cid_tid()
2024-07-03BUG/MEDIUM: h3: ensure the ":scheme" pseudo header is totally valid
2024-07-03BUG/MEDIUM: h3: ensure the ":method" pseudo header is totally valid
2024-07-03BUG/MEDIUM: server/dns: prevent DOWN/UP flap upon resolution timeout or error
2024-07-03BUG/MINOR: server: fix first server template name lookup UAF
2024-06-26BUG/MEDIUM: stick-table: Decrement the ref count inside lock to kill a session
2024-06-26BUG/MINOR: hlua: report proper context upon error in hlua_cli_io_handler_fct()
2024-06-26BUG/MINOR: quic: fix BUG_ON() on Tx pkt alloc failure
2024-06-26BUG/MINOR: h3: fix BUG_ON() crash on control stream alloc failure
2024-06-26BUG/MINOR: mux-quic: fix crash on qcs SD alloc failure
2024-06-26BUG/MINOR: h3: fix crash on STOP_SENDING receive after GOAWAY emission
2024-06-26BUG/MAJOR: quic: fix padding with short packets
2024-06-26BUG/MEDIUM: proxy: fix email-alert invalid free
2024-06-26DEBUG: hlua: distinguish burst timeout errors from exec timeout errors
2024-06-26BUG/MINOR: log: fix broken '+bin' logformat node option
2024-06-14BUG/MINOR: quic: fix padding of INITIAL packets
2024-06-12BUG/MAJOR: mux-h1: Prevent any UAF on H1 connection after draining a request
2024-06-12BUG/MEDIUM: proxy: fix UAF with {tcp,http}checks logformat expressions
2024-06-12BUG/MINOR: promex: Skip resolvers metrics when there is no resolver section
2024-06-12BUG/MEDIUM: log: fix lf_expr_postcheck() behavior with default section
2024-06-12BUG/MINOR: proxy: fix header_unique_id leak on deinit()
2024-06-12BUG/MINOR: proxy: fix source interface and usesrc leaks on deinit()
2024-06-12BUG/MINOR: proxy: fix dyncookie_key leak on deinit()
2024-06-12BUG/MINOR: proxy: fix check_{command,path} leak on deinit()
2024-06-12BUG/MINOR: proxy: fix email-alert leak on deinit()
2024-06-12BUG/MINOR: proxy: fix log_tag leak on deinit()
2024-06-12BUG/MINOR: proxy: fix server_id_hdr_name leak on deinit()
2024-06-10BUG/MINOR: mux-h1: Use the right variable to set NEGO_FF_FL_EXACT_SIZE flag
2024-06-10BUG/MAJOR: mux-h1: Properly copy chunked input data during zero-copy nego
2024-06-10BUG/MEDIUM: stconn/mux-h1: Fix suspect change causing timeouts
2024-06-10BUG/MINOR: quic: ensure Tx buf is always purged
2024-06-10BUG/MINOR: quic: fix computed length of emitted STREAM frames
2024-06-10BUG/MEDIUM: ssl: bad auth selection with TLS1.2 and WolfSSL
2024-06-06BUG/MEDIUM: ssl: wrong priority whem limiting ECDSA ciphers in ECDSA+RSA configuration
2024-06-06BUG/MEDIUM: mux-quic: Don't unblock zero-copy fwding if blocked during nego
2024-06-06BUG/MINOR: hlua: fix leak in hlua_ckch_set() error path
2024-06-06BUG/MINOR: hlua: prevent LJMP in hlua_traceback()
2024-06-06BUG/MINOR: hlua: fix unsafe hlua_pusherror() usage
2024-06-06BUG/MINOR: hlua: don't use lua_pushfstring() when we don't expect LJMP
2024-06-06BUG/MINOR: quic: prevent crash on qc_kill_conn()
2024-06-06BUG/MEDIUM: mux-quic: Unblock zero-copy forwarding if the txbuf can be released
2024-06-06BUG/MEDIUM: h1-htx: Don't state interim responses are bodyless
2024-06-06BUG/MINOR: hlua: use CertCache.set() from various hlua contexts
2024-06-06BUG/MINOR: tools: fix possible null-deref in env_expand() on out-of-memory
2024-06-06BUG/MINOR: tcpcheck: report correct error in tcp-check rule parser
2024-06-06BUG/MINOR: cfgparse: remove the correct option on httpcheck send-state warning

Back to the list of branches and versions
Back to the HAProxy page