Version 1.4.17 of HAproxy
Release Notes: White space past the end of header values was not ignored, causing a space-padded content-length header to be rejected as invalid. A few minor improvements were made. The halog tool was improved to support more filtering criteria and to be noticeably faster. There is no need to upgrade for already running setups.
Other releases
Release Notes: A number of old bugs were reported recently, including the risk of a crash if using reqrep/rsprep and having tune.bufsize larger than default, the risk of a crash when using header captures on a TCP frontend (config error), the risk of a crash when some servers were declared with checks in a farm that does not use an LB algorithm, and "balance source" not correctly hashing IPv6 addresses resulting in IPv4 connections to IPv6 listeners always having the same hash. Some other minor fixes and improvements were merged. Though unlikely affected, users are encouraged to upgrade to avoid future issues.
Release Notes: http_auth_group was broken in dev9, and would only validate users without checking groups. The connection's destination address could not be fetched anymore, breaking dst ACL and transparent mode, among other things. "timeout tunnel" has been added for easier WebSocket configuration. A rework of the poller has brought a global performance increase of up to around 10%. Users of 1.5 should not use 1.5-dev9, and should switch to -dev10 instead.
Release Notes: A new logging subsystem with customizable log formats, a unique-ID generator, a full rework of the buffers and HTTP message storage, a merge of the ACL and pattern fetch code, ACL support for IPv6 addresses, cookies, URL parameters, and arbitrary payload, support for specifying a precise occurrence in fetch functions, much better error reporting for ACL parsing errors, the long-awaited "use-server" directive, minor improvements to the error capture reports, and a significant number of bugfixes.
Release Notes: A number of annoying issues (some old) were fixed. All 1.4 users are encouraged to upgrade. Zero-weight servers won't take requests from the backend queue anymore. A fix for an issue where releasing a server connection would not result in picking a new one from the queue. POST requests smaller than the buffer could sometimes be delayed by 200ms. The TCP segment merging mechanism has been improved to ensure that outgoing segments are always merged even with wrapping chunks.
Release Notes: White space past the end of header values was not ignored, causing a space-padded content-length header to be rejected as invalid. A few minor improvements were made. The halog tool was improved to support more filtering criteria and to be noticeably faster. There is no need to upgrade for already running setups.
