Hi, HAProxy 2.3.1 was released on 2020/11/13. It added 26 new commits after version 2.3.0.
This is the first release since the 2.3.0 of last week and it fixes a few bugs: Chistopher fixed a memory corruption in the spoe which appears when an offloaded stream try to update the state of a released applet because it still have a reference on it. There are many ways to trigger this bug. The easiest is probably during reloads. The crt-list support was partly broken, which led to some crt-list lines silently ignored in the case the certificate they use was already used on another line. (issue #940) Willy fixed a decoding problem in the peers implementation which was leading to protocol errors. Amaury fixed a problem in the checks which could lead to a segfault. (issue #945) Less critical fixes are listed in the changelog below. As usual, please update to this version if you are using the 2.3.0. Please find the usual URLs below : Site index : http://www.haproxy.org/ Discourse : http://discourse.haproxy.org/ Slack channel : https://slack.haproxy.org/ Issue tracker : https://github.com/haproxy/haproxy/issues Wiki : https://github.com/haproxy/wiki/wiki Sources : http://www.haproxy.org/download/2.3/src/ Git repository : http://git.haproxy.org/git/haproxy-2.3.git/ Git Web browsing : http://git.haproxy.org/?p=haproxy-2.3.git Changelog : http://www.haproxy.org/download/2.3/src/CHANGELOG Cyril's HTML doc : http://cbonte.github.io/haproxy-dconv/ --- Complete changelog : Amaury Denoyelle (4): BUG/MINOR: stats: free dynamically stats fields/lines on shutdown BUG/MEDIUM: check: reuse srv proto only if using same mode MINOR: check: report error on incompatible proto MINOR: check: report error on incompatible connect proto Christopher Faulet (10): MINOR: http-htx: Add understandable errors for the errorfiles parsing DOC: config: Fix a typo on ssl_c_chain_der BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet MINOR: spoe: Don't close connection in sync mode on processing timeout BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after MINOR: init: Fix the prototype for per-thread free callbacks MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2 Eric Salama (1): MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error. Frédéric Lécaille (3): BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries. BUG/MINOR: peers: Missing TX cache entries reset. MINOR: peers: Add traces to peer_treat_updatemsg(). Maciej Zdeb (1): BUG/MINOR: http-fetch: Extract cookie value even when no cookie name Thierry Fournier (2): BUG/MINOR: pattern: a sample marked as const could be written BUG/MINOR: lua: set buffer size during map lookups William Lallemand (3): BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded REGTEST: ssl: test wildcard and multi-type + exclusions REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken Willy Tarreau (2): BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages -- William Lallemand