-
haproxy (1.7.2-1) unstable; urgency=medium
* New upstream release (see CHANGELOG):
+ Fix a regression whereby fragmented requests were randomly flagged as
bad requests depending on previous buffer contents; this was noticable
under low load with authenticated requests.
+ Fix dynamic address resolution for IPv6-only hosts.
+ Make sure SSL sessions are not reused when the SNI changes. This makes
SNI and SSL health checks play nice together.
+ Minor improvements:
- Add the ability to perform actions on multiple servers via the stats
page.
- Add the ability to specify a custom HTTP reason field in generated
responses.
- New sample fetch function, `fc_rcvd_proxy', indicating wheter the
PROXY protocol was used on the frontend for a connection or not.
-- Apollon Oikonomopoulos <email address hidden> Fri, 13 Jan 2017 14:49:05 +0200
-
haproxy (1.7.1-1) unstable; urgency=medium
* New upstream stable release.
* Upload to unstable.
* Notable new features since 1.6:
+ SPOE (stream processing offload engine) : ability to delegate some
slow, unreliable or dangerous processing to external processes.
+ More statistics in the CSV output.
+ Support of directories for config files: if the argument to -f
is a directory, all files found there are loaded in alphabetical order.
+ It is now possible to set/unset/preset environment variables directly in
the global section and query them through the CLI.
+ The CLI makes it possible to change a server's address, port, maxconn,
check address and port at runtime, without reloading haproxy.
+ Support for multiple certificates: different certificates for the same
domain so that the best one can be picked according to browser support.
The main use is to be able to deliver ECDSA certificates to clients
supporting them, without breaking compatibility with older clients.
+ SO_REUSEPORT is now configurable and can be disabled.
+ Updates to the Lua API, including new classes to access many internal
objects like listeners, servers, proxies etc.
+ Support for a new type of maps consisting of regular expressions with
replacement values.
-- Apollon Oikonomopoulos <email address hidden> Tue, 13 Dec 2016 12:32:32 +0200
-
haproxy (1.6.10-1) unstable; urgency=medium
* New upstream release (see CHANGELOG):
+ Fix retransmits in proxy mode and rare cases of unkillable tasks.
+ systemd wrapper: do not leave old processes behind when reloading too
fast.
+ systemd wrapper: correctly set the status code.
+ Fix two bugs in the peers' task management possibly causing some
CLOSE_WAIT connection after some rare race conditions.
+ Make SO_REUSEPORT use configurable via the "-dR" command line switch
or the "noreuseport" config option in the global section.
* B-D on libssl1.0-dev (Closes: #828337); upstream does not currently
support OpenSSL 1.1 for the 1.6 series.
* haproxy: depend on lsb-base for the initscript's use of
/lib/lsb/init-functions.
-- Apollon Oikonomopoulos <email address hidden> Mon, 21 Nov 2016 11:46:16 +0200
-
haproxy (1.6.9-2) unstable; urgency=medium
* Enable Linux namespace support.
* Pass the full Debian version and package release date from d/changelog to
the build system.
* initscript: reorder the reload command arguments to always parse EXTRAOPTS
properly.
-- Apollon Oikonomopoulos <email address hidden> Wed, 28 Sep 2016 10:45:43 +0300
-
haproxy (1.6.8-1) unstable; urgency=medium
* New upstream release (see CHANGELOG):
+ BUG/MAJOR: compression: initialize avail_in/next_in even during
flush
+ BUG/MAJOR: server: the "sni" directive could randomly cause trouble
+ BUG/MAJOR: stick-counters: possible crash when using sc_trackers
with wrong table
-- Vincent Bernat <email address hidden> Sun, 14 Aug 2016 14:17:08 +0200
