Hi, HAProxy 2.5.3 was released on 2022/02/18. It added 17 new commits after version 2.5.2.
This version was released shortly after the 2.5.2 because some pending patches were missing. This version fixes the pending issues that were identified in 2.5.1. Some bugs in the httpclient were found by Baptiste and Willy, one in the lua implementation that was preventing to use the same httpclient context correctly for several requests and the other one was causing a crash with the CLI implementation when the destination buffer had not enough space. In 2.5 we spent time migrating the master-worker mode to a new model that automatically switch to the wait mode after loading the configuration, helping to free the memory of the master. This new behavior revealed some issues in the wait mode that existed for a long time, but were only present upon a loading failure. We fixed some FD leaks related to this, that could have resulted in FD exhaustion after a lot of reloads and failures. Willy fixed some alignement problems that were found when using gcc-11 + RHEL8, resulting in instant crashes on startup. Lukas fixed a problem an issue with multiline ESMTP response in the mailer code. RĂ©mi fixed some SSL issues reported by coverity. As usual, people using the 2.5 branch are encouraged to migrate to this version. Please find the usual URLs below : Site index : http://www.haproxy.org/ Discourse : http://discourse.haproxy.org/ Slack channel : https://slack.haproxy.org/ Issue tracker : https://github.com/haproxy/haproxy/issues Wiki : https://github.com/haproxy/wiki/wiki Sources : http://www.haproxy.org/download/2.5/src/ Git repository : http://git.haproxy.org/git/haproxy-2.5.git/ Git Web browsing : http://git.haproxy.org/?p=haproxy-2.5.git Changelog : http://www.haproxy.org/download/2.5/src/CHANGELOG Cyril's HTML doc : http://cbonte.github.io/haproxy-dconv/ --- Complete changelog : Christopher Faulet (3): BUG/MINOR: sink: Use the right field in appctx context in release callback BUG/MEDIUM: resolvers: Really ignore trailing dot in domain names MINOR: httpclient: Don't limit data transfer to 1024 bytes Lukas Tribus (1): BUG/MINOR: mailers: negotiate SMTP, not ESMTP Remi Tricot-Le Breton (3): BUG/MINOR: ssl: Add missing return value check in ssl_ocsp_response_print BUG/MINOR: ssl: Fix leak in "show ssl ocsp-response" CLI command BUG/MINOR: ssl: Missing return value check in ssl_ocsp_response_print William Lallemand (3): BUG/MINOR: mworker: fix a FD leak of a sockpair upon a failed reload BUG/MINOR: httpclient: reinit flags in httpclient_start() BUG/MINOR: tools: url2sa reads ipv4 too far Willy Tarreau (7): MINOR: sock: move the unused socket cleaning code into its own function BUG/MEDIUM: mworker: close unused transferred FDs on load failure BUG/MEDIUM: fd: always align fdtab[] to 64 bytes BUG/MAJOR: compiler: relax alignment constraints on certain structures CLEANUP: httpclient/cli: fix indentation alignment of the help message BUG/MEDIUM: httpclient: limit transfers to the maximum available room DEBUG: buffer: check in __b_put_blk() whether the buffer room is respected --- -- William Lallemand