Added

• External Web Server Support: Enabled the functionality to call an external web server, enhancing integration capabilities with other services.
• Comprehensive Kubernetes Demo: Introduced a complete Kubernetes demo covering data plane, control plane, and service discovery. This includes updated kustomize manifests for easier deployment and customization.
• Build Process Improvements: Enhanced build processes by adding Makefile targets (make docker, make docker-push) to facilitate building Docker images and pushing them to registries, streamlining CI/CD pipeline operations.

Fixed

• Fix AI Functionality Bugs: Addressed several bugs related to AI functionalities, ensuring more reliable and accurate processing within AI-driven features.

Added

• Support third-party WAF integration (Pull #1222)
• Support basic functions of an AI gateway (Pull #1223)
• Support forwarding requests to backend RS over HTTPS

Added

• Support building docker images for multiple architectures
• Support WASM to allow dynamic plugin

Fixed

• Upgrade versions of some third-paty modules for security reasons
• Fix format issue in bfe_http/request_test.go
• Temporarily remove some test cases using legacy test data
• mod_tcp_keepalive: fix broken unit tests
• http2: close connections when receiving too many headers
• Fix readloop goroutine leak

Removed

• The previous experimental dynamic plugin is deprecated

Added

• Allow user to disable monitor port (Issue #936)
• Support HTTP2 fingerprint (Issue #1071)
• Documents optimization

Changed

• Optimize idle connection handling (Pull #1044)
• Performance optimize in smooth least connection balancing algorithm(Pull #1062)
• Miscellaneous golang dependency updates
• Miscellaneous improvements in makefile and other CI tools

Fixed

• mod_trust_clientip: fix incorrect private IP address range (Issue #856)
• arm build error in golang 1.18

Added

• Add mod_tcp_keepalive to support custom TCP KeepAlive configuration
• Documents optimization

Changed

• Change JSON parser: use json-iterator to replace encoding/json
• Optimize error handling in io.Write

Fixed

• Fix issue in go.mod which may cause build error (Issue #933)

Security

• Fix http security issue (Issue #940)
• Fix http security issue (Issue #941)

Added

• Documents optimization

Changed

• Upgrade golang version from 1.13 to 1.17
• mod_markdown: upgrade bluemonday version to 1.0.16
• Optimize mutex
• Improve Makefile and pre-commit

Added

• Support basic route rules that are similar to k8s ingress rules
• Documents optimization

Changed

• Ignore GREASE values for JA3 fingerprint

Added

• Set GOMAXPROCS according to real CPU quota if running on container
• Support condition primitive bfe_time_range/bfe_periodic_time_range
• Support URI hash strategy
• mod_block: support global request rules and ALLOW action
• mod_header: support variables about client certificate
• mod_access: support log to single file and stdout

Changed

• Change primitive params of req_context_value_in

Added

• Support JA3 fingerprint for SSL/TLS client
• Support Slow‐Start to allow a backend instance gradually recover its weight
• Add maxConnPerHost to limit the number of connections to a backend
• mod_header: add header renaming actions
• Merge some updates from golang/net/textproto
• Merge some updates from golang/net/http
• Merge some updates from golang/net/http2
• Documents optimization

Changed

• Change outlierDetectionLevel to OutlierDetectionHttpCode

Fixed

• Fix panic when write internal response timeout
• Fix unit test in bfe_spdy/frame_test.go under go 1.16

Security

• Fix config loading for multi-value option

Added

• Add condition primitive: req_path_contain/req_path_element_prefix_in/req_context_value_in
• Add outlier detection options
• Add mod_waf with rule to detect exploitation of "Shellshock" GNU Bash RCE vulnerability

Fixed

• Fix build issue under go1.15 environment
• Fix processing X-Forwarded-For header value
• Fix write timeout of internal response generated by bfe