"Fossies" - the Fresh Open Source Software Archive

Member "haproxy-2.5.0/CHANGELOG" (23 Nov 2021, 1079526 Bytes) of package /linux/misc/haproxy-2.5.0.tar.gz:


As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file. See also the latest Fossies "Diffs" side-by-side code changes report for "CHANGELOG": 2.4.8_vs_2.5.0.

    1 ChangeLog :
    2 ===========
    3 
    4 2021/11/23 : 2.5.0
    5     - BUILD: SSL: add quictls build to scripts/build-ssl.sh
    6     - BUILD: SSL: add QUICTLS to build matrix
    7     - CLEANUP: sock: Wrap `accept4_broken = 1` into additional parenthesis
    8     - BUILD: cli: clear a maybe-unused  warning on some older compilers
    9     - BUG/MEDIUM: cli: make sure we can report a warning from a bind keyword
   10     - BUG/MINOR: ssl: make SSL counters atomic
   11     - CLEANUP: assorted typo fixes in the code and comments
   12     - BUG/MINOR: ssl: free correctly the sni in the backend SSL cache
   13     - MINOR: version: mention that it's stable now
   14 
   15 2021/11/19 : 2.5-dev15
   16     - BUG/MINOR: stick-table/cli: Check for invalid ipv6 key
   17     - CLEANUP: peers: Remove useless test on peer variable in peer_trace()
   18     - DOC: log: Add comments to specify when session's listener is defined or not
   19     - BUG/MEDIUM: mux-h1: Handle delayed silent shut in h1_process() to release H1C
   20     - REGTESTS: ssl_crt-list_filters: feature cmd incorrectly set
   21     - DOC: internals: document the list API
   22     - BUG/MINOR: h3: ignore unknown frame types
   23     - MINOR: quic: redirect app_ops snd_buf through mux
   24     - MEDIUM: quic: inspect ALPN to install app_ops
   25     - MINOR: quic: support hq-interop
   26     - MEDIUM: quic: send version negotiation packet on unknown version
   27     - BUG/MEDIUM: mworker: cleanup the listeners when reexecuting
   28     - DOC: internals: document the scheduler API
   29     - BUG/MINOR: quic: fix version negotiation packet generation
   30     - CLEANUP: ssl: fix wrong #else commentary
   31     - MINOR: config: support default values for environment variables
   32     - SCRIPTS: run-regtests: reduce the number of processes needed to check options
   33     - SCRIPT: run-regtests: avoid several calls to grep to test for features
   34     - SCRIPT: run-regtests: avoid calling awk to compute the version
   35     - REGTEST: set retries count to zero for all tests that expect at 503
   36     - REGTESTS: make tcp-check_min-recv fail fast
   37     - REGTESTS: extend the default I/O timeouts and make them overridable
   38     - BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3
   39     - BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found
   40     - REGTESTS: ssl: test the TLS resumption
   41     - BUILD: makefile: stop opening sub-shells for each and every command
   42     - BUILD: makefile: reorder objects by build time
   43     - BUG/MEDIUM: mux-h2: always process a pending shut read
   44     - MINOR: quic_sock: missing CO_FL_ADDR_TO_SET flag
   45     - MINOR: quic: Possible wrong connection identification
   46     - MINOR: quic: Correctly pad UDP datagrams
   47     - MINOR: quic: Support transport parameters draft TLS extension
   48     - MINOR: quic: Anti-amplification implementation
   49     - MINOR: quic: Wrong Initial packet connection initialization
   50     - MINOR: quic: Wrong ACK range building
   51     - MINOR: quic: Update some QUIC protocol errors
   52     - MINOR: quic: Send CONNECTION_CLOSE frame upon TLS alert
   53     - MINOR: quic: Wrong largest acked packet number parsing
   54     - MINOR: quic: Add minimalistic support for stream flow control frames
   55     - MINOR: quic: Wrong value for version negotiation packet 'Unused' field
   56     - MINOR: quic: Support draft-29 QUIC version
   57     - BUG/MINOR: quic: fix segfault on trace for version negotiation
   58     - BUG/MINOR: hq-interop: fix potential NULL dereference
   59     - BUILD: quic: fix potential NULL dereference on xprt_quic
   60     - DOC: lua: documentation about the httpclient API
   61     - BUG/MEDIUM: cache/cli: make "show cache" thread-safe
   62     - BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found
   63     - BUG/MINOR: shctx: do not look for available blocks when the first one is enough
   64     - MINOR: shctx: add a few BUG_ON() for consistency checks
   65 
   66 2021/11/14 : 2.5-dev14
   67     - DEV: coccinelle: Remove unused `expression e`
   68     - DEV: coccinelle: Add rule to use `istend()` where possible
   69     - CLEANUP: Apply ist.cocci
   70     - CLEANUP: Re-apply xalloc_size.cocci
   71     - CLEANUP: halog: make the default usage message fit in small screens
   72     - MINOR: h3/qpack: fix gcc11 warnings
   73     - MINOR: mux-quic: fix gcc11 warning
   74     - MINOR: h3: fix potential NULL dereference
   75     - MINOR: quic: Fix potential null pointer dereference
   76     - CLEANUP: halog: remove unused strl2ui()
   77     - OPTIM: halog: improve field parser speed for modern compilers
   78     - OPTIM: halog: skip fields 64 bits at a time when supported
   79     - DEV: coccinelle: Add rule to use `isttrim()` where possible
   80     - CLEANUP: Apply ist.cocci
   81     - DEV: coccinelle: Add rule to use `chunk_istcat()` instead of `chunk_memcat()`
   82     - DEV: coccinelle: Add rule to use `chunk_istcat()` instead of `chunk_strncat()`
   83     - CLEANUP: Apply ist.cocci
   84     - CLEANUP: chunk: Remove duplicated chunk_Xcat implementation
   85     - CLEANUP: chunk: remove misleading chunk_strncat() function
   86     - BUG/MINOR: cache: properly ignore unparsable max-age in quotes
   87     - Revert "DEV: coccinelle: Add rule to use `chunk_istcat()` instead of `chunk_strncat()`"
   88     - DOC: stats: fix location of the text representation
   89     - DOC: internals: document the IST API
   90     - BUG/MINOR: httpclient/lua: rcv freeze when no request payload
   91     - BUG/MEDIUM: httpclient: channel_add_input() must use htx->data
   92     - MINOR: promex: backend aggregated server check status
   93     - DOC: config: Fix typo in ssl_fc_unique_id description
   94     - BUG/MINOR: http-ana: Apply stop to the current section for http-response rules
   95     - Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back"
   96     - DOC: config: Be more explicit in "allow" actions description
   97     - DOC: lua: Be explicit with the Reply object limits
   98     - MINOR: mux-h1: Slightly Improve H1 traces
   99     - BUG/MEDIUM: conn-stream: Don't reset CS flags on close
  100     - CLEANUP: mworker: remove any relative PID reference
  101     - MEDIUM: mworker: reexec in waitpid mode after successful loading
  102     - MINOR: mworker: clarify starting/failure messages
  103     - MINOR: mworker: only increment the number of reload in wait mode
  104     - MINOR: mworker: implement a reload failure counter
  105     - MINOR: mworker: ReloadFailed shown depending on failedreload
  106     - MINOR: mworker: change the way we set PROC_O_LEAVING
  107     - BUG/MINOR: mworker: doesn't launch the program postparser
  108     - DOC: management: edit the "show proc" example to show the current output
  109     - BUG/MEDIUM: httpclient/cli: free of unallocated hc->req.uri
  110     - REGTESTS: httpclient/lua: add greater body values
  111     - BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value
  112     - BUG/MINOR: pools: don't mark ourselves as harmless in DEBUG_UAF mode
  113     - BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent
  114     - BUILD: makefile: simplify detection of libatomic
  115 
  116 2021/11/06 : 2.5-dev13
  117     - SCRIPTS: git-show-backports: re-enable file-based filtering
  118     - MINOR: jwt: Make invalid static JWT algorithms an error in `jwt_verify` converter
  119     - MINOR: mux-h2: add trace on extended connect usage
  120     - BUG/MEDIUM: mux-h2: reject upgrade if no RFC8441 support
  121     - MINOR: stream/mux: implement websocket stream flag
  122     - MINOR: connection: implement function to update ALPN
  123     - MINOR: connection: add alternative mux_ops param for conn_install_mux_be
  124     - MEDIUM: server/backend: implement websocket protocol selection
  125     - MINOR: server: add ws keyword
  126     - BUG/MINOR: resolvers: fix sent messages were counted twice
  127     - BUG/MINOR: resolvers: throw log message if trash not large enough for query
  128     - MINOR: resolvers/dns: split dns and resolver counters in dns_counter struct
  129     - MEDIUM: resolvers: rename dns extra counters to resolvers extra counters
  130     - BUG/MINOR: jwt: Fix jwt_parse_alg incorrectly returning JWS_ALG_NONE
  131     - DOC: add QUIC instruction in INSTALL
  132     - CLEANUP: halog: Remove dead stores
  133     - DEV: coccinelle: Add ha_free.cocci
  134     - CLEANUP: Apply ha_free.cocci
  135     - DEV: coccinelle: Add rule to use `istnext()` where possible
  136     - CLEANUP: Apply ist.cocci
  137     - REGTESTS: Use `feature cmd` for 2.5+ tests (2)
  138     - DOC: internals: move some API definitions to an "api" subdirectory
  139     - MINOR: quic: Allocate listener RX buffers
  140     - CLEANUP: quic: Remove useless code
  141     - MINOR: quic: Enhance the listener RX buffering part
  142     - MINOR: quic: Remove a useless lock for CRYPTO frames
  143     - MINOR: quic: Use QUIC_LOCK QUIC specific lock label.
  144     - MINOR: backend: Get client dst address to set the server's one only if needful
  145     - MINOR: compression: Warn for 'compression offload' in defaults sections
  146     - MEDIUM: connection: rename fc_conn_err and bc_conn_err to fc_err and bc_err
  147     - DOC: configuration: move the default log formats to their own section
  148     - MINOR: ssl: make the ssl_fc_sni() sample-fetch function always available
  149     - MEDIUM: log: add the client's SNI to the default HTTPS log format
  150     - DOC: config: add an example of reasonably complete error-log-format
  151     - DOC: config: move error-log-format before custom log format
  152 
  153 2021/11/02 : 2.5-dev12
  154     - MINOR: httpclient: support payload within a buffer
  155     - MINOR: httpclient/lua: support more HTTP methods
  156     - MINOR: httpclient/lua: return an error when it can't generate the request
  157     - CLEANUP: lua: Remove any ambiguities about lua txn execution context flags
  158     - BUG/MEDIUM: lua: fix invalid return types in hlua_http_msg_get_body
  159     - CLEANUP: connection: No longer export make_proxy_line_v1/v2 functions
  160     - CLEANUP: tools: Use const address for get_net_port() and get_host_port()
  161     - CLEANUP: lua: Use a const address to retrieve info about a connection
  162     - MINOR: connection: Add function to get src/dst without updating the connection
  163     - MINOR: session: Add src and dst addresses to the session
  164     - MINOR: stream-int: Add src and dst addresses to the stream-interface
  165     - MINOR: frontend: Rely on client src and dst addresses at stream level
  166     - MINOR: log: Rely on client addresses at the appropriate level to log messages
  167     - MINOR: session: Rely on client source address at session level to log error
  168     - MINOR: http-ana: Rely on addresses at stream level to set xff and xot headers
  169     - MINOR: http-fetch: Rely on addresses at stream level in HTTP sample fetches
  170     - MINOR: mux-fcgi: Rely on client addresses at stream level to set default params
  171     - MEDIUM: tcp-sample: Rely on addresses at the appropriate level in tcp samples
  172     - MEDIUM: connection: Rely on addresses at stream level to make proxy line
  173     - MEDIUM: backend: Rely on addresses at stream level to init server connection
  174     - MEDIUM: connection: Assign session addresses when PROXY line is received
  175     - MEDIUM: connection: Assign session addresses when NetScaler CIP proto is parsed
  176     - MEDIUM: tcp-act: Set addresses at the apprioriate level in set-(src/dst) actions
  177     - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules
  178     - DOC: config: Fix alphabetical order of fc_* samples
  179     - MINOR: tcp-sample: Add samples to get original info about client connection
  180     - REGTESTS: Add script to test client src/dst manipulation at different levels
  181     - MINOR: stream: Use backend stream-interface dst address instead of target_addr
  182     - BUILD: log: Fix compilation without SSL support
  183     - DEBUG: protocol: yell loudly during registration of invalid sock_domain
  184     - MINOR: protocols: add a new protocol type selector
  185     - MINOR: protocols: make use of the protocol type to select the protocol
  186     - MINOR: protocols: replace protocol_by_family() with protocol_lookup()
  187     - MINOR: halog: Add -qry parameter allowing to preserve the query string in -uX
  188     - CLEANUP: jwt: Remove the use of a trash buffer in jwt_jwsverify_hmac()
  189     - CLEANUP: jwt: Remove the use of a trash buffer in jwt_jwsverify_rsa_ecdsa()
  190     - DEV: coccinelle: Add realloc_leak.cocci
  191     - CLEANUP: hlua: Remove obsolete branch in `hlua_alloc()`
  192     - BUILD: atomic: prefer __atomic_compare_exchange_n() for __ha_cas_dw()
  193     - BUILD: atomic: fix build on mac/arm64
  194     - MINOR: atomic: remove the memcpy() call and dependency on string.h
  195     - MINOR: httpclient: request streaming with a callback
  196     - MINOR: httpclient/lua: handle the streaming into the lua applet
  197     - REGTESTS: lua: test httpclient with body streaming
  198     - DOC: halog: Move the `-qry` parameter into the correct section in help text
  199     - MINOR: halog: Rename -qry to -query
  200     - CLEANUP: halog: Use consistent indentation in help()
  201     - BUG/MINOR: halog: Add missing newlines in die() messages
  202     - MINOR: halog: Add support for extracting captures using -hdr
  203     - DOC: Typo fixed "it" should be "is"
  204     - BUG/MINOR: mux-h1: Save shutdown mode if the shutdown is delayed
  205     - BUG/MEDIUM: mux-h1: Perform a connection shutdown when the h1c is released
  206     - BUG/MEDIUM: resolvers: Don't recursively perform requester unlink
  207     - BUG/MEDIUM: http-ana: Drain request data waiting the tarpit timeout expiration
  208     - BUG/MINOR: http: Authorization value can have multiple spaces after the scheme
  209     - BUG/MINOR: http: http_auth_bearer fetch does not work on custom header name
  210     - BUG/MINOR: httpclient/lua: misplaced luaL_buffinit()
  211     - BUILD/MINOR: cpuset freebsd build fix
  212     - BUG/MINOR: httpclient: use a placeholder value for Host header
  213     - BUG/MEDIUM: stream-int: Block reads if channel cannot receive more data
  214     - BUG/MEDIUM: resolvers: Track api calls with a counter to free resolutions
  215     - MINOR: stream: Improve dump of bogus streams
  216     - DOC/peers: some grammar fixes for peers 2.1 spec
  217     - MEDIUM: vars: make the var() sample fetch function really return type ANY
  218     - MINOR: vars: add "set-var" for "tcp-request connection" rules.
  219 
  220 2021/10/22 : 2.5-dev11
  221     - DEV: coccinelle: Add strcmp.cocci
  222     - CLEANUP: Apply strcmp.cocci
  223     - CI: Add `permissions` to GitHub Actions
  224     - CI: Clean up formatting in GitHub Action definitions
  225     - MINOR: add ::1 to predefined LOCALHOST acl
  226     - CLEANUP: assorted typo fixes in the code and comments
  227     - CLEANUP: Consistently `unsigned int` for bitfields
  228     - MEDIUM: resolvers: lower-case labels when converting from/to DNS names
  229     - MEDIUM: resolvers: replace bogus resolv_hostname_cmp() with memcmp()
  230     - MINOR: jwt: Empty the certificate tree during deinit
  231     - MINOR: jwt: jwt_verify returns negative values in case of error
  232     - MINOR: jwt: Do not rely on enum order anymore
  233     - BUG/MEDIUM: stream: Keep FLT_END analyzers if a stream detects a channel error
  234     - MINOR: httpclient/cli: access should be only done from expert mode
  235     - DOC: management: doc about the CLI httpclient
  236     - BUG/MEDIUM: tcpcheck: Properly catch early HTTP parsing errors
  237     - BUG/MAJOR: dns: tcp session can remain attached to a list after a free
  238     - BUG/MAJOR: dns: attempt to lock globaly for msg waiter list instead of use barrier
  239     - CLEANUP: dns: always detach the appctx from the dns session on release
  240     - DEBUG: dns: add a few more BUG_ON at sensitive places
  241     - BUG/MAJOR: resolvers: add other missing references during resolution removal
  242     - CLEANUP: resolvers: do not export resolv_purge_resolution_answer_records()
  243     - BUILD: resolvers: avoid a possible warning on null-deref
  244     - BUG/MEDIUM: resolvers: always check a valid item in query_list
  245     - CLEANUP: always initialize the answer_list
  246     - CLEANUP: resolvers: simplify resolv_link_resolution() regarding requesters
  247     - CLEANUP: resolvers: replace all LIST_DELETE with LIST_DEL_INIT
  248     - MEDIUM: resolvers: use a kill list to preserve the list consistency
  249     - MEDIUM: resolvers: remove the last occurrences of the "safe" argument
  250     - BUG/MEDIUM: checks: fix the starting thread for external checks
  251     - MEDIUM: resolvers: replace the answer_list with a (flat) tree
  252     - MEDIUM: resolvers: hash the records before inserting them into the tree
  253     - BUG/MAJOR: buf: fix varint API post- vs pre- increment
  254     - OPTIM: resolvers: move the eb32 node before the data in the answer_item
  255     - MINOR: list: add new macro LIST_INLIST_ATOMIC()
  256     - OPTIM: dns: use an atomic check for the list membership
  257     - BUG/MINOR: task: do not set TASK_F_USR1 for no reason
  258     - BUG/MINOR: mux-h2: do not prevent from sending a final GOAWAY frame
  259     - MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close
  260     - MINOR: mux-h2: perform a full cycle shutdown+drain on close
  261     - CLEANUP: resolvers: get rid of single-iteration loop in resolv_get_ip_from_response()
  262     - MINOR: quic: Increase the size of handshake RX UDP datagrams
  263     - BUG/MEDIUM: lua: fix memory leaks with realloc() on non-glibc systems
  264     - MINOR: memprof: report the delta between alloc and free on realloc()
  265     - MINOR: memprof: add one pointer size to the size of allocations
  266     - BUILD: fix compilation on NetBSD
  267     - MINOR: backend: add traces for idle connections reuse
  268     - BUG/MINOR: backend: fix improper insert in avail tree for always reuse
  269     - MINOR: backend: improve perf with tcp proxies skipping idle conns
  270     - MINOR: connection: remove unneeded memset 0 for idle conns
  271 
  272 2021/10/16 : 2.5-dev10
  273     - MINOR: initcall: Rename __GLOBL and __GLOBL1.
  274     - MINOR: rules: add a new function new_act_rule() to allocate act_rules
  275     - MINOR: rules: add a file name and line number to act_rules
  276     - MINOR: stream: report the current rule in "show sess all" when known
  277     - MINOR: stream: report the current filter in "show sess all" when known
  278     - CLEANUP: stream: Properly indent current_rule line in "show sess all"
  279     - BUG/MINOR: lua: Fix lua error handling in `hlua_config_prepend_path()`
  280     - CI: github: switch to OpenSSL 3.0.0
  281     - REGTESTS: ssl: Fix references to removed option in test description
  282     - MINOR: ssl: Add ssllib_name_startswith precondition
  283     - REGTESTS: ssl: Fix ssl_errors test for OpenSSL v3
  284     - REGTESTS: ssl: Reenable ssl_errors test for OpenSSL only
  285     - REGTESTS: ssl: Use mostly TLSv1.2 in ssl_errors test
  286     - MEDIUM: mux-quic: rationalize tx buffers between qcc/qcs
  287     - MEDIUM: h3: properly manage tx buffers for large data
  288     - MINOR: mux-quic: standardize h3 settings sending
  289     - CLEANUP: h3: remove dead code
  290     - MINOR: mux-quic: implement standard method to detect if qcc is dead
  291     - MEDIUM: mux-quic: defer stream shut if remaining tx data
  292     - MINOR: mux: remove last occurences of qcc ring buffer
  293     - MINOR: quic: handle CONNECTION_CLOSE frame
  294     - REGTESTS: ssl: re-enable set_ssl_cert_bundle.vtc
  295     - MINOR: ssl: add ssl_fc_is_resumed to "option httpslog"
  296     - MINOR: http: Add http_auth_bearer sample fetch
  297     - MINOR: jwt: Parse JWT alg field
  298     - MINOR: jwt: JWT tokenizing helper function
  299     - MINOR: jwt: Insert public certificates into dedicated JWT tree
  300     - MINOR: jwt: jwt_header_query and jwt_payload_query converters
  301     - MEDIUM: jwt: Add jwt_verify converter to verify JWT integrity
  302     - REGTESTS: jwt: Add tests for the jwt_verify converter
  303     - BUILD: jwt: fix declaration of EVP_KEY in jwt-h.h
  304     - MINOR: proto_tcp: use chunk_appendf() to ouput socket setup errors
  305     - MINOR: proto_tcp: also report the attempted MSS values in error message
  306     - MINOR: inet: report the faulty interface name in "bind" errors
  307     - MINOR: protocol: report the file and line number for binding/listening errors
  308     - MINOR: protocol: uniformize protocol errors
  309     - MINOR: resolvers: fix the resolv_str_to_dn_label() API about trailing zero
  310     - BUG/MEDIUM: resolver: make sure to always use the correct hostname length
  311     - BUG/MINOR: resolvers: do not reject host names of length 255 in SRV records
  312     - MINOR: resolvers: fix the resolv_dn_label_to_str() API about trailing zero
  313     - MEDIUM: listeners: split the thread mask between receiver and bind_conf
  314     - MINOR: listeners: add clone_listener() to duplicate listeners at boot time
  315     - MEDIUM: listener: add the "shards" bind keyword
  316     - BUG/MEDIUM: resolvers: use correct storage for the target address
  317     - MINOR: resolvers: merge address and target into a union "data"
  318     - BUG/MEDIUM: resolvers: fix truncated TLD consecutive to the API fix
  319     - BUG/MEDIUM: jwt: fix base64 decoding error detection
  320     - BUG/MINOR: jwt: use CRYPTO_memcmp() to compare HMACs
  321     - DOC: jwt: fix a typo in the jwt_verify() keyword description
  322     - BUG/MEDIUM: sample/jwt: fix another instance of base64 error detection
  323     - BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back
  324     - BUG/MINOR: sample: Fix 'fix_tag_value' sample when waiting for more data
  325     - DOC: config: Move 'tcp-response content' at the right place
  326     - BUG/MINOR: proxy: Use .disabled field as a bitfield as documented
  327     - MINOR: proxy: Introduce proxy flags to replace disabled bitfield
  328     - MINOR: sample/arg: Be able to resolve args found in defaults sections
  329     - MEDIUM: proxy: Warn about ambiguous use of named defaults sections
  330     - MINOR: proxy: Be able to reference the defaults section used by a proxy
  331     - MINOR: proxy: Add PR_FL_READY flag on fully configured and usable proxies
  332     - MINOR: config: Finish configuration for referenced default proxies
  333     - MINOR: config: No longer remove previous anonymous defaults section
  334     - MINOR: tcpcheck: Support 2-steps args resolution in defaults sections
  335     - MEDIUM: rules/acl: Parse TCP/HTTP rules and acls defined in defaults sections
  336     - MEDIUM: tcp-rules: Eval TCP rules defined in defaults sections
  337     - MEDIUM: http-ana: Eval HTTP rules defined in defaults sections
  338     - BUG/MEDIUM: sample: Cumulate frontend and backend sample validity flags
  339     - REGTESTS: Add scripts to test support of TCP/HTTP rules in defaults sections
  340     - DOC: config: Add documentation about TCP/HTTP rules in defaults section
  341     - DOC: config: Rework and uniformize how TCP/HTTP rules are documented
  342     - BUG/MINOR: proxy: Release ACLs and TCP/HTTP rules of default proxies
  343     - BUG/MEDIUM: cpuset: fix cpuset size for FreeBSD
  344     - BUG/MINOR: sample: fix backend direction flags consecutive to last fix
  345     - BUG/MINOR: listener: fix incorrect return on out-of-memory
  346     - BUG/MINOR: listener: add an error check for unallocatable trash
  347     - CLEANUP: listeners: remove unreachable code in clone_listener()
  348 
  349 2021/10/08 : 2.5-dev9
  350     - head-truc
  351     - REGTESTS: lua: test the httpclient:get() feature
  352     - Revert "head-truc"
  353     - BUG/MEDIUM: httpclient: replace ist0 by istptr
  354     - MINOR: config: use a standard parser for the "nbthread" keyword
  355     - CLEANUP: init: remove useless test against MAX_THREADS in affinity loop
  356     - MEDIUM: init: de-uglify the per-thread affinity setting
  357     - MINOR: init: extract the setup and end of threads to their own functions
  358     - MINOR: log: Try to get the status code when MUX_EXIT_STATUS is retrieved
  359     - MINOR: mux-h1: Set error code if possible when MUX_EXIT_STATUS is returned
  360     - MINOR: mux-h1: Be able to set custom status code on parsing error
  361     - MEDIUM: mux-h1: Reject HTTP/1.0 GET/HEAD/DELETE requests with a payload
  362     - MEDIUM: h1: Force close mode for invalid uses of T-E header
  363     - BUG/MINOR: mux-h1/mux-fcgi: Sanitize TE header to only send "trailers"
  364     - MINOR: http: Add 422-Unprocessable-Content error message
  365     - MINOR: h1: Change T-E header parsing to fail if chunked encoding is found twice
  366     - BUG/MEDIUM: mux-h1/mux-fcgi: Reject messages with unknown transfer encoding
  367     - REGTESTS: Add script to validate T-E header parsing
  368     - REORG: pools: move default settings to defaults.h
  369     - DOC: peers: fix doc "enable" statement on "peers" sections
  370     - MINOR: Makefile: add MEMORY_POOLS to the list of DEBUG_xxx options
  371     - MINOR: ssl: Set connection error code in case of SSL read or write fatal failure
  372     - MINOR: ssl: Rename ssl_bc_hsk_err to ssl_bc_err
  373     - MINOR: ssl: Store the last SSL error code in case of read or write failure
  374     - REGTESTS: ssl: enable show_ssl_ocspresponse.vtc again
  375     - REGTESTS: ssl: enable ssl_crt-list_filters.vtc again
  376     - BUG/MEDIUM: lua: fix wakeup condition from sleep()
  377     - BUG/MAJOR: lua: use task_wakeup() to properly run a task once
  378     - MINOR: arg: Be able to forbid unresolved args when building an argument list
  379     - BUG/MINOR: tcpcheck: Don't use arg list for default proxies during parsing
  380     - BUG/MINOR: tcp-rules: Stop content rules eval on read error and end-of-input
  381     - MINOR: tasks: catch TICK_ETERNITY with BUG_ON() in __task_queue()
  382     - REGTESTS: ssl: show_ssl_ocspresponse w/ freebsd won't use base64
  383     - REGTESTS: ssl: wrong feature cmd in show_ssl_ocspresponse.vtc
  384     - CLEANUP: tasks: remove the long-unused work_lists
  385     - MINOR: task: provide 3 task_new_* wrappers to simplify the API
  386     - MINOR: time: uninline report_idle() and move it to task.c
  387     - REORG: sched: move idle time calculation from time.h to task.h
  388     - REORG: sched: move the stolen CPU time detection to sched_entering_poll()
  389     - BUG/MEDIUM: filters: Fix a typo when a filter is attached blocking the release
  390     - BUG/MEDIUM: http-ana: Clear request analyzers when applying redirect rule
  391     - MINOR: httpclient: destroy() must free the headers and the ists
  392     - MINOR: httpclient: set HTTPCLIENT_F_ENDED only in release
  393     - MINOR: httpclient: stop_and_destroy() ask the applet to autokill
  394     - MINOR: httpclient: test if started during stop_and_destroy()
  395     - MINOR: httpclient/lua: implement garbage collection
  396     - BUG/MEDIUM: httpclient/lua: crash because of b_xfer and get_trash_chunk()
  397     - MINOR: httpclient: destroy checks if a client was started but not stopped
  398     - BUG/MINOR: httpclient/lua: does not process headers when failed
  399     - MINOR: httpclient/lua: supports headers via named arguments
  400     - CLEANUP: server: always include the storage for SSL settings
  401     - CLEANUP: sample: rename sample_conv_var2smp() to *_sint
  402     - CLEANUP: sample: uninline sample_conv_var2smp_str()
  403     - MINOR: sample: provide a generic var-to-sample conversion function
  404     - BUG/MEDIUM: sample: properly verify that variables cast to sample
  405     - BUILD: action: add the relevant structures for function arguments
  406     - BUILD: extcheck: needs to include stream-t.h
  407     - BUILD: hlua: needs to include stream-t.h
  408     - BUILD: stats: define several missing structures in stats.h
  409     - BUILD: resolvers: define missing types in resolvers.h
  410     - BUILD: httpclient: include missing ssl_sock-t
  411     - BUILD: sample: include openssl-compat
  412     - BUILD: http_ana: need to include proxy-t to get redirect_rule
  413     - BUILD: http_rules: requires http_ana-t.h for REDIRECT_*
  414     - BUILD: vars: need to include xxhash
  415     - BUILD: peers: need to include eb{32/mb/pt}tree.h
  416     - BUILD: ssl_ckch: include ebpttree.h in ssl_ckch.c
  417     - BUILD: compiler: add the container_of() and container_of_safe() macros
  418     - BUILD: idleconns: include missing ebmbtree.h at several places
  419     - BUILD: connection: connection.h needs list.h and server.h
  420     - BUILD: tree-wide: add missing http_ana.h from many places
  421     - BUILD: cfgparse-ssl: add missing errors.h
  422     - BUILD: tcp_sample: include missing errors.h and session-t.h
  423     - BUILD: mworker: mworker-prog needs time.h for the 'now' variable
  424     - BUILD: tree-wide: add several missing activity.h
  425     - BUILD: compat: fix -Wundef on SO_REUSEADDR
  426     - CLEANUP: pools: pools-t.h doesn't need to include thread-t.h
  427     - REORG: pools: uninline the UAF allocator and force-inline the rest
  428     - REORG: thread: uninline the lock-debugging code
  429     - MINOR: thread/debug: replace nsec_now() with now_mono_time()
  430     - CLEANUP: remove some unneeded includes from applet-t.h
  431     - REORG: listener: move bind_conf_alloc() and listener_state_str() to listener.c
  432     - CLEANUP: listeners: do not include openssl-compat
  433     - CLEANUP: servers: do not include openssl-compat
  434     - REORG: ssl: move ssl_sock_is_ssl() to connection.h and rename it
  435     - CLEANUP: mux_fcgi: remove dependency on ssl_sock
  436     - CLEANUP: ssl/server: move ssl_sock_set_srv() to srv_set_ssl() in server.c
  437     - REORG: ssl-sock: move the sslconns/totalsslconns counters to global
  438     - REORG: sample: move the crypto samples to ssl_sample.c
  439     - REORG: sched: moved samp_time and idle_time to task.c as well
  440     - REORG: time/ticks: move now_ms and global_now_ms definitions to ticks.h
  441     - CLEANUP: tree-wide: remove unneeded include time.h in ~20 files
  442     - REORG: activity: uninline activity_count_runtime()
  443     - REORG: acitvity: uninline sched_activity_entry()
  444     - CLEANUP: stream: remove many unneeded includes from stream-t.h
  445     - CLEANUP: stick-table: no need to include socket nor in.h
  446     - MINOR: connection: use uint64_t for the hashes
  447     - REORG: connection: move the hash-related stuff to connection.c
  448     - REORG: connection: uninline conn_notify_mux() and conn_delete_from_tree()
  449     - REORG: server: uninline the idle conns management functions
  450     - REORG: ebtree: split structures into their own file ebtree-t.h
  451     - CLEANUP: tree-wide: only include ebtree-t from type files
  452     - REORG: connection: move the largest inlines from connection.h to connection.c
  453     - CLEANUP: connection: do not include http_ana!
  454     - CLEANUP: connection: remove unneeded tcpcheck-t.h and use only session-t.h
  455     - REORG: connection: uninline the rest of the alloc/free stuff
  456     - REORG: task: uninline the loop time measurement code
  457     - CLEANUP: time: move a few configurable defines to defaults.h
  458     - CLEANUP: fd: do not include time.h
  459     - REORG: fd: uninline compute_poll_timeout()
  460     - CLENAUP: wdt: use ha_tkill() instead of accessing pthread directly
  461     - REORG: thread: move the thread init/affinity/stop to thread.c
  462     - REORG: thread: move ha_get_pthread_id() to thread.c
  463     - MINOR: thread: use a dedicated static pthread_t array in thread.c
  464     - CLEANUP: thread: uninline ha_tkill/ha_tkillall/ha_cpu_relax()
  465     - DOC: configuration: add clarification on escaping in keyword arguments
  466     - BUG/MINOR: task: fix missing include with DEBUG_TASK
  467     - MINOR: pools: report the amount used by thread caches in "show pools"
  468     - MINOR: quic: Distinguish packet and SSL read enc. level in traces
  469     - MINOR: quic: Add a function to dump SSL stack errors
  470     - MINOR: quic: BUG_ON() SSL errors.
  471     - MINOR: quic: Fix SSL error issues (do not use ssl_bio_and_sess_init())
  472     - BUG/MEDIUM: mux-quic: reinsert all streams in by_id tree
  473     - BUG/MAJOR: xprt-quic: do not queue qc timer if not set
  474     - MINOR: mux-quic: release connection if no more bidir streams
  475     - BUG/MAJOR: quic: remove qc from receiver cids tree on free
  476     - BUG/MEDIUM: mux_h2: Handle others remaining read0 cases on partial frames
  477     - MINOR: qpack: do not encode invalid http status code
  478     - MINOR: qpack: support non-indexed http status code encoding
  479     - MINOR: qpack: fix memory leak on huffman decoding
  480     - CLEANUP: mux-quic: remove unused code
  481     - BUG/MINOR: quic: fix includes for compilation
  482     - BUILD: connection: avoid a build warning on FreeBSD with SO_USER_COOKIE
  483     - BUILD: init: avoid a build warning on FreeBSD with USE_PROCCTL
  484     - REORG: time: move time-keeping code and variables to clock.c
  485     - REORG: clock: move the updates of cpu/mono time to clock.c
  486     - MINOR: activity: get the run_time from the clock updates
  487     - CLEANUP: clock: stop exporting before_poll and after_poll
  488     - REORG: clock: move the clock_id initialization to clock.c
  489     - REORG: clock/wdt: move wdt timer initialization to clock.c
  490     - MINOR: clock: move the clock_ids to clock.c
  491     - MINOR: wdt: move wd_timer to wdt.c
  492     - CLEANUP: wdt: do not remap SI_TKILL to SI_LWP, test the values directly
  493     - REORG: thread/sched: move the task_per_thread stuff to thread_ctx
  494     - REORG: thread/clock: move the clock parts of thread_info to thread_ctx
  495     - REORG: thread/sched: move the thread_info flags to the thread_ctx
  496     - REORG: thread/sched: move the last dynamic thread_info to thread_ctx
  497     - MINOR: thread: make "ti" a const pointer and clean up thread_info a bit
  498     - MINOR: threads: introduce a minimalistic notion of thread-group
  499     - MINOR: global: add a new "thread-groups" directive
  500     - MINOR: global: add a new "thread-group" directive
  501     - MINOR: threads: make tg point to the current thread's group
  502     - MEDIUM: threads: automatically assign threads to groups
  503     - MINOR: threads: set the group ID and its bit in the thread group
  504     - MINOR: threads: set the tid, ltid and their bit in thread_cfg
  505     - MEDIUM: threads: replace ha_set_tid() with ha_set_thread()
  506     - MINOR: threads: add the current group ID in thread-local "tgid" variable
  507     - MINOR: debug: report the group and thread ID in the thread dumps
  508     - MEDIUM: listeners: support the definition of thread groups on bind lines
  509     - MINOR: threads: add a new function to resolve config groups and masks
  510     - MEDIUM: config: resolve relative threads on bind lines to absolute ones
  511     - MEDIUM: stick-table: never learn the "conn_cur" value from peers
  512 
  513 2021/09/24 : 2.5-dev8
  514     - BUILD: compiler: fixed a missing test on  defined(__GNUC__)
  515     - BUILD: halog: fix a -Wundef warning on non-glibc systems
  516     - BUILD: threads: fix -Wundef for _POSIX_PRIORITY_SCHEDULING on libmusl
  517     - BUG/MINOR: compat: make sure __WORDSIZE is always defined
  518     - BUILD: sample: fix format warning on 32-bit archs in sample_conv_be2dec_check()
  519     - CLEANUP: pools: factor all malloc_trim() calls into trim_all_pools()
  520     - MINOR: pools: automatically disable malloc_trim() with external allocators
  521     - MINOR: pools: report it when malloc_trim() is enabled
  522     - DOC: Add .mailmap
  523     - CLEANUP: tree-wide: fix prototypes for functions taking no arguments.
  524     - CLEANUP: Remove prototype for non-existent thread_get_default_count()
  525     - CLEANUP: acl: Remove unused variable when releasing an acl expression
  526     - BUG/MAJOR: mux-h1: Don't eval input data if an error was reported
  527     - DOC: update Tim's address in .mailmap
  528     - MINOR: pools: use mallinfo2() when available instead of mallinfo()
  529     - BUG/MINOR: tcpcheck: Improve LDAP response parsing to fix LDAP check
  530     - DOC: management: certificate files must be sanitized before injection
  531     - BUG/MINOR: connection: prevent null deref on mux cleanup task allocation
  532     - BUILD: ist: prevent gcc11 maybe-uninitialized warning on istalloc
  533     - BUG/MINOR: cli/payload: do not search for args inside payload
  534     - BUILD: sockpair: do not set unused flag
  535     - BUILD: proto_uxst: do not set unused flag
  536     - BUILD: fd: remove unused variable totlen in fd_write_frag_line()
  537     - MINOR: applet: remove the thread mask from appctx_new()
  538     - REORG: threads: move ha_get_pthread_id() to tinfo.h
  539     - CLEANUP: Apply ist.cocci
  540     - DEV: coccinelle: Add ist.cocci
  541     - CLEANUP: Apply bug_on.cocci
  542     - DEV: coccinelle: Add xalloc_size.cocci
  543     - DEV: coccinelle: Add bug_on.cocci
  544     - CLEANUP: Apply xalloc_size.cocci
  545     - DEV: coccinelle: Add xalloc_cast.cocci
  546     - BUG/MINOR: flt-trace: fix an infinite loop when random-parsing is set
  547     - MINOR: httpclient: add the EOH when no headers where provided
  548     - CLEANUP: Include check.h in flt_spoe.c
  549     - CLEANUP: Remove unreachable `break` from parse_time_err()
  550     - BUG/MINOR: server: allow 'enable health' only if check configured
  551     - BUG/MINOR: server: alloc dynamic srv ssl ctx if proxy uses ssl chk rule
  552     - MINOR: server: enable more keywords for ssl checks for dynamic servers
  553     - MINOR: server: enable more check related keywords for dynamic servers
  554     - REORG: server: move slowstart init outside of checks
  555     - MINOR: server: enable slowstart for dynamic server
  556     - MEDIUM: listener: deprecate "process" in favor of "thread" on bind lines
  557     - BUG/MEDIUM: leastconn: fix rare possibility of divide by zero
  558     - BUG/MINOR: quic: Possible NULL pointer dereferencing when dumping streams.
  559     - MINOR: quic: Move transport parmaters to anynomous struct.
  560     - MINOR: mux_quic: Add QUIC mux layer.
  561     - MINOR: connection: Add callbacks definitions for QUIC.
  562     - MINOR: quic: Attach QUIC mux connection objet to QUIC connection.
  563     - MINOR: quic: Add a new definition to store STREAM frames.
  564     - MINOR: h3: Add HTTP/3 definitions.
  565     - MINOR: qpack: Add QPACK compression.
  566     - MINOR: quic_sock: Finalize the QUIC connections.
  567     - MINOR: quic: Disable the action of ->rcv_buf() xprt callback
  568     - MINOR: quic: Add callbacks for (un)scribing to QUIC xprt.
  569     - MINOR: quic: Variable-length integer encoding/decoding into/from buffer struct.
  570     - BUG/MINOR: quic: Wrong ->accept() error handling
  571     - MINOR: quic: Add a wrapper function to update transport parameters.
  572     - MINOR: quic: Update the streams transport parameters.
  573     - MINOR: quic: Avoid header collisions
  574     - MINOR: quic: Replace max_packet_size by max_udp_payload size.
  575     - MINOR: quic: Enable some quic, h3 and qpack modules compilation.
  576     - MINOR: quic: Move an SSL func call from QUIC I/O handler to the xprt init.
  577     - MINOR: quic: Initialize the session before starting the xprt.
  578     - BUG/MINOR: quic: Do not check the acception of a new conn from I/O handler.
  579     - MINOR: quic: QUIC conn initialization from I/O handler
  580     - MINOR: quic: Remove header protection for conn with context
  581     - MINOR: quic: Derive the initial secrets asap
  582     - MINOR: quic: Remove header protection also for Initial packets
  583     - BUG/MINOR: quic: Wrong memory free in quic_update_ack_ranges_list()
  584     - MINOR: quic: quic_update_ack_ranges_list() code factorization
  585     - MINOR: quic: Useless test in quic_update_ack_ranges_list()
  586     - MINOR: quic: Remove a useless variable in quic_update_ack_ranges_list()
  587     - BUG/MINOR: quic: Missing cases treatement when updating ACK ranges
  588     - CLEAUNUP: quic: Usage of a useless variable in qc_treat_rx_pkts()
  589     - BUG/MINOR: quic: Wrong RX packet reference counter usage
  590     - MINOR: quic: Do not stop the packet parsing too early in qc_treat_rx_packets()
  591     - MINOR: quic: Add a lock for RX packets
  592     - MINOR: quic: Move the connection state
  593     - MINOR: quic: Replace quic_conn_ctx struct by ssl_sock_ctx struct
  594     - MINOR: quic: Replace the RX list of packet by a thread safety one.
  595     - MINOR: quic: Replace the RX unprotected packet list by a thread safety one.
  596     - MINOR: quic: Add useful traces for I/O dgram handler
  597     - MINOR: quic: Do not wakeup the xprt task on ACK receipt
  598     - MINOR: quic: Connection allocations rework
  599     - MINOR: quic: Move conn_prepare() to ->accept_conn() callback
  600     - MINOR: quic: Make qc_lstnr_pkt_rcv() be thread safe.
  601     - MINOR: quic: Add a ring buffer implementation for QUIC
  602     - MINOR: quic: Prefer x25519 as ECDH preferred parametes.
  603     - MINOR: quic: Add the QUIC v1 initial salt.
  604     - BUG/MINOR: quic: Too much reduced computed space to build handshake packets
  605     - MINOR: net_helper: add functions for pointers
  606     - MINOR: quic: Add ring buffer definition (struct qring) for QUIC
  607     - MINOR: proto_quic: Allocate TX ring buffers for listeners
  608     - MINOR: quic: Initialize pointers to TX ring buffer list
  609     - MINOR: quic: Make use of TX ring buffers to send QUIC packets
  610     - MINOR: quic_tls: Make use of the QUIC V1 salt.
  611     - MINOR: quic: Remove old TX buffer implementation
  612     - MINOR: Add function for TX packets reference counting
  613     - MINOR: quic: Add TX packets at the very last time to their tree.
  614     - MINOR: quic: Unitialized mux context upon Client Hello message receipt.
  615     - MINOR: quic: Missing encryption level rx.crypto member initialization and lock.
  616     - MINOR: quic: Rename ->rx.rwlock of quic_enc_level struct to ->rx.pkts_rwlock
  617     - MINOR: quic: Make qc_treat_rx_pkts() be thread safe.
  618     - MINOR: quic: Make ->tx.frms quic_pktns struct member be thread safe
  619     - MINOR: quic: Replace quic_tx_frm struct by quic_frame struct
  620     - MINOR: quic: Add a mask for TX frame builders and their authorized packet types
  621     - MINOR: quic: Add a useful function to compute any frame length.
  622     - MINOR: quic: Add the QUIC connection state to traces
  623     - MINOR: quic: Store post handshake frame in ->pktns.tx.frms MT_LIST
  624     - MINOR: quic: Add the packet type to quic_tx_packet struct
  625     - MINOR: quic: Modify qc_do_build_hdshk_pkt() to accept any packet type
  626     - MINOR: quic: Atomically handle packet number space ->largest_acked_pn variable
  627     - MINOR: quic: Modify qc_build_cfrms() to support any frame
  628     - MINOR: quic: quic_conn_io_cb() task rework
  629     - MINOR: quic: Make qc_build_hdshk_pkt() atomically consume a packet number
  630     - MINOR: quic: qc_do_build_hdshk_pkt() does not  need to pass a copy of CRYPTO frame
  631     - MINOR: quic: Remove Application level related functions
  632     - MINOR: quic: Rename functions which do not build only Handshake packets
  633     - MINOR: quic: Make circular buffer internal buffers be variable-sized.
  634     - MINOR: quic: Add a pool for TX ring buffer internal buffer
  635     - MINOR: quic: Make use of the last cbuf API when initializing TX ring buffers
  636     - MINOR: quic: Missing acks encoded size updates.
  637     - MINOR: quic: Evaluate the packet lengths in advance
  638     - MINOR: quic: Update the TLS extension for QUIC transport parameters
  639     - MINOR: quic: Fix handshake state debug strings
  640     - MINOR: quic: Atomically get/set the connection state
  641     - MINOR: quic: Missing QUIC encryption level for qc_build_pkt()
  642     - MINOR: quic: Coalesce Application level packets with Handshake packets.
  643     - MINOR: quic: Wrong flags handling for acks
  644     - MINOR: quic: Missing case when discarding HANDSHAKE secrets
  645     - MINOR: quic: Post handshake packet building improvements
  646     - MINOR: quic: Prepare Application level packet asap.
  647     - MINOR: h3: Send h3 settings asap
  648     - MINOR: quic: Wrong STREAM frame length computing
  649     - MINOR: quic: Wrong short packet minimum length
  650     - MINOR: quic: Prepare STREAM frames to fill QUIC packets
  651     - MINOR: h3: change default settings
  652     - MINOR: quic-enc: fix varint encoding
  653     - MINOR: qpack: fix wrong comment
  654     - MINOR: qpack: generate headers list on decoder
  655     - MINOR: h3: parse headers to htx
  656     - MINOR: h3: allocate stream on headers
  657     - MEDIUM: mux-quic: implement ring buffer on stream tx
  658     - MINOR: mux-quic: send SETTINGS on uni stream
  659     - MINOR: h3: define snd_buf callback and divert mux ops
  660     - MINOR: mux-quic: define FIN stream flag
  661     - MINOR: qpack: create qpack-enc module
  662     - MINOR: qpack: encode headers functions
  663     - MINOR: h3: encode htx headers to QPACK
  664     - MINOR: h3: send htx data
  665     - MINOR: h3/mux: detect fin on last h3 frame of the stream
  666     - MINOR: quic: Shorten some handshakes
  667     - MINOR: quic: Make QUIC-TLS support at least two initial salts
  668     - MINOR: quic: Attach the QUIC connection to a thread.
  669     - MINOR: quic: Missing active_connection_id_limit default value
  670     - MINOR: quic_sock: Do not flag QUIC connections as being set
  671     - MINOR: buf: Add b_force_xfer() function
  672     - MINOR: quic: Make use of buffer structs to handle STREAM frames
  673     - MINOR: mux_quic: move qc_process() code to qc_send()
  674     - MINOR: quic: Add a typedef for unsigned long long
  675     - MINOR: quic: Confusion between TX/RX for the frame builders
  676     - MINOR: quic: Wrong packet flags settings during frame building
  677     - MINOR: quic: Constantness fixes for frame builders/parsers.
  678     - MINOR: quic_tls: Client/serveur state reordering
  679     - MINOR: quic: Wrong packet loss detection due to wrong pktns order
  680     - MINOR: quic: Wrong packet number space selection in quic_loss_pktns()
  681     - MINOR: quic: Initial packet number spaced not discarded
  682     - MINOR: quic: Add useful trace about pktns discarding
  683     - MINOR: mux_quic: Export the mux related flags
  684     - MINOR: quic: Implement quic_conn_subscribe()
  685     - MINOR: quic: Wake up the mux upon ACK receipt
  686     - MINOR: quic: Stream FIN bit fix in qcs_push_frame()
  687     - MINOR: quic: Implement qc_process_mux()
  688     - MINOR: quic: Wake up the xprt from mux
  689     - CLEANUP: quic: Remove useless inline functions
  690     - MINOR: quic: RX packets memory leak
  691     - MINOR: quic: Possible endless loop in qc_treat_rx_pkts()
  692     - MINOR: quic: Crash upon too big packets receipt
  693     - MINOR: quic: define close handler
  694     - MEDIUM: quic: implement mux release/conn free
  695     - MINOR: quic: fix qcc subs initialization
  696     - BUG/MINOR: h1-htx: Fix a typo when request parser is reset
  697     - BUG/MEDIUM: mux-h1: Adjust conditions to ask more space in the channel buffer
  698     - BUG/MEDIUM: stream-int: Notify stream that the mux wants more room to xfer data
  699     - BUG/MEDIUM: stream: Stop waiting for more data if SI is blocked on RXBLK_ROOM
  700     - MINOR: stream-int: Set CO_RFL transient/persistent flags apart in si_cs_rcv()
  701     - MINOR: htx: Add an HTX flag to know when a message is fragmented
  702     - MINOR: htx: Add a function to know if the free space wraps
  703     - BUG/MEDIUM: stream-int: Defrag HTX message in si_cs_recv() if necessary
  704     - MINOR: stream-int: Notify mux when the buffer is not stuck when calling rcv_buf
  705     - BUG/MINOR: http-ana: increment internal_errors counter on response error
  706     - MINOR: stats: Enable dark mode on stat web page
  707     - CLEANUP: stats: Fix some alignment mistakes
  708     - MINOR: httpclient: httpclient_data() returns the available data
  709     - MINOR: httpclient: httpclient_ended() returns 1 if the client ended
  710     - MINOR: httpclient/lua: httpclient:get() API in lua
  711     - MINOR: httpclient/lua: implement the headers in the response object
  712     - BUG/MINOR: httpclient/lua: return an error on argument check
  713     - CLEANUP: slz: Mark `reset_refs` as static
  714 
  715 2021/09/12 : 2.5-dev7
  716     - BUG/MINOR: config: reject configs using HTTP with bufsize >= 256 MB
  717     - CLEANUP: htx: remove comments about "must be < 256 MB"
  718     - BUG/MAJOR: htx: fix missing header name length check in htx_add_header/trailer
  719     - Revert "BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive"
  720     - MINOR: proxy: add a global "grace" directive to postpone soft-stop
  721     - MINOR: vars: rename vars_init() to vars_init_head()
  722     - CLEANUP: vars: rename sample_clear_stream() to var_unset()
  723     - REORG: vars: remerge sample_store{,_stream}() into var_set()
  724     - MEDIUM: vars: make the ifexist variant of set-var only apply to the proc scope
  725     - MINOR: vars: add a VF_CREATEONLY flag for creation
  726     - MINOR: vars: support storing empty sample data with a variable
  727     - MINOR: vars: store flags into variables and add VF_PERMANENT
  728     - MEDIUM: vars: make var_clear() only reset VF_PERMANENT variables
  729     - MEDIUM: vars: pre-create parsed SCOPE_PROC variables as permanent ones
  730     - MINOR: vars: preset a random seed to hash variables names
  731     - MEDIUM: vars: replace the global name index with a hash
  732     - CLEANUP: vars: remove the now unused var_names array
  733     - MINOR: vars: centralize the lock/unlock into static inlines
  734     - OPTIM: vars: only takes the variables lock on shared entries
  735     - OPTIM: vars: remove internal bookkeeping for vars_global_size
  736     - OPTIM: vars: do not keep variables usage stats if no limit is set
  737     - BUILD: fix dragonfly build again on __read_mostly
  738     - CI: Github Actions: temporarily disable Opentracing
  739     - BUG/MEDIUM: mux-h1: Remove "Upgrade:" header for requests with payload
  740     - MINOR: htx: Skip headers with no value when adding a header list to a message
  741     - CLEANUP: mux-h1: Remove condition rejecting upgrade requests with payload
  742     - BUG/MEDIUM: stream-int: Don't block SI on a channel policy if EOI is reached
  743     - BUG/MEDIUM: http-ana: Reset channels analysers when returning an error
  744     - BUG/MINOR: filters: Set right FLT_END analyser depending on channel
  745     - CLEANUP: Add haproxy/xxhash.h to avoid modifying import/xxhash.h
  746     - CLEANUP: ebmbtree: Replace always-taken elseif by else
  747     - CLEANUP: Move XXH3 macro from haproxy/compat.h to haproxy/xxhash.h
  748     - BUILD: opentracing: exclude the use of haproxy variables for the OpenTracing context
  749     - BUG/MINOR: opentracing: enable the use of http headers without a set value
  750     - CLEANUP: opentracing: use the haproxy function to generate uuid
  751     - MINOR: opentracing: change the scope of the variable 'ot.uuid' from 'sess' to 'txn'
  752     - CI: Github Actions: re-enable Opentracing
  753     - CLEANUP: opentracing: simplify the condition on the empty header
  754     - BUG/MEDIUM lua: Add missing call to RESET_SAFE_LJMP in hlua_filter_new()
  755 
  756 2021/09/03 : 2.5-dev6
  757     - BUG/MINOR threads: Use get_(local|gm)time instead of (local|gm)time
  758     - BUG/MINOR: tools: Fix loop condition in dump_text()
  759     - BUILD: ssl: next round of build warnings on LIBRESSL_VERSION_NUMBER
  760     - BUILD: ssl: fix two remaining occurrences of #if USE_OPENSSL
  761     - BUILD: tools: properly guard __GLIBC__ with defined()
  762     - BUILD: globally enable -Wundef
  763     - MINOR: log: Remove log-error-via-logformat option
  764     - MINOR: log: Add new "error-log-format" option
  765     - BUG/MAJOR: queue: better protect a pendconn being picked from the proxy
  766     - CLEANUP: Add missing include guard to signal.h
  767     - MINOR: ssl: Add new ssl_bc_hsk_err sample fetch
  768     - MINOR: connection: Add a connection error code sample fetch for backend side
  769     - REGTESTS: ssl: Add tests for bc_conn_err and ssl_bc_hsk_err sample fetches
  770     - MINOR: http-rules: add a new "ignore-empty" option to redirects.
  771     - CI: Github Actions: temporarily disable BoringSSL builds
  772     - BUG/MINOR: vars: fix set-var/unset-var exclusivity in the keyword parser
  773     - BUG/MINOR: vars: improve accuracy of the rules used to check expression validity
  774     - MINOR: sample: add missing ARGC_ entries
  775     - BUG/MINOR: vars: properly set the argument parsing context in the expression
  776     - DOC: configuration: remove wrong tcp-request examples in tcp-response
  777     - MEDIUM: vars: add a new "set-var-fmt" action
  778     - BUG/MEDIUM: vars: run over the correct list in release_store_rules()
  779     - BUG/MINOR: vars: truncate the variable name in error reports about scope.
  780     - BUG/MINOR: vars: do not talk about global section in CLI errors for set-var
  781     - CLEANUP: vars: name the temporary proxy "CFG" instead of "CLI" for global vars
  782     - MINOR: log: make log-format expressions completely usable outside of req/resp
  783     - MINOR: vars: add a "set-var-fmt" directive to the global section
  784     - MEDIUM: vars: also support format strings in CLI's "set var" command
  785     - CLEANUP: vars: factor out common code from vars_get_by_{desc,name}
  786     - MINOR: vars: make vars_get_by_* support an optional default value
  787     - MINOR: vars: make the vars() sample fetch function support a default value
  788     - BUILD: ot: add argument for default value to vars_get_by_name()
  789 
  790 2021/08/28 : 2.5-dev5
  791     - MINOR: httpclient: initialize the proxy
  792     - MINOR: httpclient: implement a simple HTTP Client API
  793     - MINOR: httpclient/cli: implement a simple client over the CLI
  794     - MINOR: httpclient/cli: change the User-Agent to "HAProxy"
  795     - MEDIUM: ssl: Keep a reference to the client's certificate for use in logs
  796     - BUG/MEDIUM: h2: match absolute-path not path-absolute for :path
  797     - BUILD/MINOR: ssl: Fix compilation with OpenSSL 1.0.2
  798     - MINOR: server: check if srv is NULL in free_server()
  799     - MINOR: proxy: check if p is NULL in free_proxy()
  800     - BUG/MEDIUM: cfgparse: do not allocate IDs to automatic internal proxies
  801     - BUG/MINOR: http_client: make sure to preset the proxy's default settings
  802     - REGTESTS: http_upgrade: fix incorrect expectation on TCP->H1->H2
  803     - REGTESTS: abortonclose: after retries, 503 is expected, not close
  804     - REGTESTS: server: fix agent-check syntax and expectation
  805     - BUG/MINOR: httpclient: fix uninitialized sl variable
  806     - BUG/MINOR: httpclient/cli: change the appctx test in the callbacks
  807     - BUG/MINOR: httpclient: check if hdr_num is not 0
  808     - MINOR: httpclient: cleanup the include files
  809     - MINOR: hlua: take the global Lua lock inside a global function
  810     - MINOR: tools: add FreeBSD support to get_exec_path()
  811     - BUG/MINOR: systemd: ExecStartPre must use -Ws
  812     - MINOR: systemd: remove the ExecStartPre line in the unit file
  813     - MINOR: ssl: add an openssl version string parser
  814     - MINOR: cfgcond: implements openssl_version_atleast and openssl_version_before
  815     - CLEANUP: ssl: remove useless check on p in openssl_version_parser()
  816     - BUG/MINOR: stick-table: fix the sc-set-gpt* parser when using expressions
  817     - BUG/MINOR: httpclient: remove deinit of the httpclient
  818     - BUG/MEDIUM: base64: check output boundaries within base64{dec,urldec}
  819     - MINOR: httpclient: set verify none on the https server
  820     - MINOR: httpclient: add the server to the proxy
  821     - BUG/MINOR: httpclient: fix Host header
  822     - BUILD: httpclient: fix build without OpenSSL
  823     - CI: github-actions: remove obsolete options
  824     - CLEANUP: assorted typo fixes in the code and comments
  825     - MINOR: proc: setting the process to produce a core dump on FreeBSD.
  826     - BUILD: adopt script/build-ssl.sh for OpenSSL-3.0.0beta2
  827     - MINOR: server: return the next srv instance on free_server
  828     - BUG/MINOR: stats: use refcount to protect dynamic server on dump
  829     - MEDIUM: server: extend refcount for all servers
  830     - MINOR: server: define non purgeable server flag
  831     - MINOR: server: mark referenced servers as non purgeable
  832     - MINOR: server: mark servers referenced by LUA script as non purgeable
  833     - MEDIUM: server: allow to remove servers at runtime except non purgeable
  834     - BUG/MINOR: base64: base64urldec() ignores padding in output size check
  835     - REGTEST: add missing lua requirements on server removal test
  836     - REGTEST: fix haproxy required version for server removal test
  837     - BUG/MINOR: proxy: don't dump servers of internal proxies
  838     - REGTESTS: Use `feature cmd` for 2.5+ tests
  839     - REGTESTS: Remove REQUIRE_VERSION=1.5 from all tests
  840     - BUG/MINOR: resolvers: mark servers with name-resolution as non purgeable
  841     - MINOR: compiler: implement an ONLY_ONCE() macro
  842     - BUG/MINOR: lua: use strlcpy2() not strncpy() to copy sample keywords
  843     - MEDIUM: ssl: Capture more info from Client Hello
  844     - MINOR: sample: Expose SSL captures using new fetchers
  845     - MINOR: sample: Add be2dec converter
  846     - MINOR: sample: Add be2hex converter
  847     - MEDIUM: config: Deprecate tune.ssl.capture-cipherlist-size
  848     - BUG/MINOR: time: fix idle time computation for long sleeps
  849     - MINOR: time: add report_idle() to report process-wide idle time
  850     - BUG/MINOR: ebtree: remove dependency on incorrect macro for bits per long
  851     - BUILD: activity: use #ifdef not #if on USE_MEMORY_PROFILING
  852     - BUILD/MINOR: defaults: eliminate warning on MAXHOSTNAMELEN with -Wundef
  853     - BUILD/MINOR: ssl: avoid a build warning on LIBRESSL_VERSION with -Wundef
  854     - IMPORT: slz: silence a build warning with -Wundef
  855     - BUILD/MINOR: regex: avoid a build warning on USE_PCRE2 with -Wundef
  856 
  857 2021/08/17 : 2.5-dev4
  858     - MINOR: log: rename 'dontloglegacyconnerr' to 'log-error-via-logformat'
  859     - MINOR: doc: rename conn_status in `option httsplog`
  860     - MINOR: proxy: disabled takes a stopping and a disabled state
  861     - MINOR: stats: shows proxy in a stopped state
  862     - BUG/MINOR: server: fix race on error path of 'add server' CLI if track
  863     - CLEANUP: thread: fix fantaisist indentation of thread_harmless_till_end()
  864     - MINOR: threads: make thread_release() not wait for other ones to complete
  865     - MEDIUM: threads: add a stronger thread_isolate_full() call
  866     - MEDIUM: servers: make the server deletion code run under full thread isolation
  867     - BUG/MINOR: server: remove srv from px list on CLI 'add server' error
  868     - MINOR: activity/fd: remove the dead_fd counter
  869     - MAJOR: fd: get rid of the DWCAS when setting the running_mask
  870     - CLEANUP: fd: remove the now unused fd_set_running()
  871     - CLEANUP: fd: remove the now unneeded fd_mig_lock
  872     - BUG/MINOR: server: update last_change on maint->ready transitions too
  873     - MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure
  874     - BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released
  875     - BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued
  876     - MINOR: server: unmark deprecated on enable health/agent cli
  877     - MEDIUM: task: implement tasklet kill
  878     - MINOR: server: initialize fields for dynamic server check
  879     - MINOR: check: allocate default check ruleset for every backends
  880     - MINOR: check: export check init functions
  881     - MINOR: check: do not increment global maxsock at runtime
  882     - MINOR: server: implement a refcount for dynamic servers
  883     - MEDIUM: check: implement check deletion for dynamic servers
  884     - MINOR: check: enable safe keywords for dynamic servers
  885     - MEDIUM: server: implement check for dynamic servers
  886     - MEDIUM: server: implement agent check for dynamic servers
  887     - REGTESTS: server: add dynamic check server test
  888     - MINOR: doc: specify ulimit-n usage for dynamic servers
  889     - REGTESTS: server: fix dynamic server with checks test
  890     - CI: travis-ci: temporarily disable arm64 builds
  891     - BUG/MINOR: check: test if server is not null in purge
  892     - MINOR: global: define MODE_STOPPING
  893     - BUG/MINOR: server: do not use refcount in free_server in stopping mode
  894     - ADMIN: dyncookie: implement a simple dynamic cookie calculator
  895     - BUG/MINOR: check: do not reset check flags on purge
  896     - BUG/MINOR: check: fix leak on add dynamic server with agent-check error
  897     - BUG/MEDIUM: check: fix leak on agent-check purge
  898     - BUG/MEDIUM: server: support both check/agent-check on a dynamic instance
  899     - BUG/MINOR: buffer: fix buffer_dump() formatting
  900     - MINOR: channel: remove an htx block from a channel
  901     - BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer
  902     - BUG/MINOR: stream: Don't release a stream if FLT_END is still registered
  903     - MINOR: lua: Add a flag on lua context to know the yield capability at run time
  904     - BUG/MINOR: lua: Yield in channel functions only if lua context can yield
  905     - BUG/MINOR: lua: Don't yield in channel.append() and channel.set()
  906     - MINOR: filters/lua: Release filters before the lua context
  907     - MINOR: lua: Add a function to get a reference on a table in the stack
  908     - MEDIUM: lua: Process buffer data using an offset and a length
  909     - MEDIUM: lua: Improve/revisit the lua api to manipulate channels
  910     - DOC: Improve the lua documentation
  911     - MEDIUM: filters/lua: Add support for dummy filters written in lua
  912     - MINOR: lua: Add a function to get a filter attached to a channel class
  913     - MINOR: lua: Add flags on the lua TXN to know the execution context
  914     - MEDIUM: filters/lua: Be prepared to filter TCP payloads
  915     - MEDIUM: filters/lua: Support declaration of some filter callback functions in lua
  916     - MEDIUM: filters/lua: Add HTTPMessage class to help HTTP filtering
  917     - MINOR: filters/lua: Add request and response HTTP messages in the lua TXN
  918     - MINOR: filters/lua: Support the HTTP filtering from filters written in lua
  919     - DOC: config: Fix 'http-response send-spoe-group' documentation
  920     - BUG/MINOR: lua: Properly check negative offset in Channel/HttpMessage functions
  921     - BUG/MINOR: lua: Properly catch alloc errors when parsing lua filter directives
  922     - BUG/MEDIUM: cfgcheck: verify existing log-forward listeners during config check
  923     - MINOR: cli: delare the CLI frontend as an internal proxy
  924     - MINOR: proxy: disable warnings for internal proxies
  925     - BUG/MINOR: filters: Always set FLT_END analyser when CF_FLT_ANALYZE flag is set
  926     - BUG/MINOR: lua/filters: Return right code when txn:done() is called
  927     - DOC: lua-api: Add documentation about lua filters
  928     - CI: Remove obsolete USE_SLZ=1 CI job
  929     - CLEANUP: assorted typo fixes in the code and comments
  930     - CI: github actions: relax OpenSSL-3.0.0 version comparision
  931     - BUILD: tools: get the absolute path of the current binary on NetBSD.
  932     - DOC: Minor typo fix - 'question mark' -> 'exclamation mark'
  933     - DOC/MINOR: fix typo in management document
  934     - MINOR: http: add a new function http_validate_scheme() to validate a scheme
  935     - BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax
  936     - BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it
  937     - BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header
  938     - BUG/MEDIUM: h2: give :authority precedence over Host
  939     - REGTESTS: add a test to prevent h2 desync attacks
  940 
  941 2021/08/01 : 2.5-dev3
  942     - BUG/MINOR: arg: free all args on make_arg_list()'s error path
  943     - BUG/MINOR: cfgcond: revisit the condition freeing mechanism to avoid a leak
  944     - MEDIUM: proxy: remove long-broken 'option http_proxy'
  945     - CLEANUP: http_ana: Remove now unused label from http_process_request()
  946     - MINOR: deinit: always deinit the init_mutex on failed initialization
  947     - BUG/MEDIUM: cfgcond: limit recursion level in the condition expression parser
  948     - BUG/MEDIUM: mworker: do not register an exit handler if exit is expected
  949     - BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs
  950     - BUILD/MINOR: memprof fix macOs build.
  951     - BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request
  952     - BUG/MINOR: stats: Add missing agent stats on servers
  953     - BUG/MINOR: check: fix the condition to validate a port-less server
  954     - BUILD: threads: fix pthread_mutex_unlock when !USE_THREAD
  955     - BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree
  956     - MINOR: ssl: use __objt_* variant when retrieving counters
  957     - BUG/MINOR: systemd: must check the configuration using -Ws
  958     - BUG/MINOR: mux-h1: Obey dontlognull option for empty requests
  959     - BUG/MINOR: mux-h2: Obey dontlognull option during the preface
  960     - BUG/MINOR: mux-h1: Be sure to swap H1C to splice mode when rcv_pipe() is called
  961     - BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames
  962     - MINOR: proxy: rename PR_CAP_LUA to PR_CAP_INT
  963     - MINOR: mworker: the mworker CLI proxy is internal
  964     - MINOR: stats: don't output internal proxies (PR_CAP_INT)
  965     - CLEANUP: mworker: use the proxy helper functions in mworker_cli_proxy_create()
  966     - CLEANUP: mworker: PR_CAP already initialized with alloc_new_proxy()
  967     - BUG/MINOR: connection: Add missing error labels to conn_err_code_str
  968     - MINOR: connection: Add a connection error code sample fetch
  969     - MINOR: ssl: Enable error fetches in case of handshake error
  970     - MINOR: ssl: Add new ssl_fc_hsk_err sample fetch
  971     - MINOR: ssl: Define a default https log format
  972     - MEDIUM: connection: Add option to disable legacy error log
  973     - REGTESTS: ssl: Add tests for the connection and SSL error fetches
  974     - REGTESTS: ssl: ssl_errors.vtc does not work with old openssl version
  975     - BUG/MEDIUM: connection: close a rare race between idle conn close and takeover
  976     - BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before
  977     - BUG/MINOR: select: fix excess number of dead/skip reported
  978     - BUG/MINOR: poll: fix abnormally high skip_fd counter
  979     - BUG/MINOR: pollers: always program an update for migrated FDs
  980     - BUG/MINOR: fd: protect fd state harder against a concurrent takeover
  981     - DOC: internals: document the FD takeover process
  982     - MINOR: fd: update flags only once in fd_update_events()
  983     - MINOR: poll/epoll: move detection of RDHUP support earlier
  984     - REORG: fd: uninline fd_update_events()
  985     - MEDIUM: fd: rely more on fd_update_events() to detect changes
  986     - BUG/MINOR: freq_ctr: use stricter barriers between updates and readings
  987     - MEDIUM: atomic: simplify the atomic load/store/exchange operations
  988     - MEDIUM: atomic: relax the load/store barriers on x86_64
  989     - BUILD: opentracing: fixed build when using pkg-config utility
  990 
  991 2021/07/17 : 2.5-dev2
  992     - BUILD/MEDIUM: tcp: set-mark support for OpenBSD
  993     - DOC: config: use CREATE USER for mysql-check
  994     - BUG/MINOR: stick-table: fix several printf sign errors dumping tables
  995     - BUG/MINOR: peers: fix data_type bit computation more than 32 data_types
  996     - MINOR: stick-table: make skttable_data_cast to use only std types
  997     - MEDIUM: stick-table: handle arrays of standard types into stick-tables
  998     - MEDIUM: peers: handle arrays of std types in peers protocol
  999     - DOC: stick-table: add missing documentation about gpt0 stored type
 1000     - MEDIUM: stick-table: add the new array of gpt data_type
 1001     - MEDIUM: stick-table: make the use of 'gpt' excluding the use of 'gpt0'
 1002     - MEDIUM: stick-table: add the new arrays of gpc and gpc_rate
 1003     - MEDIUM: stick-table: make the use of 'gpc' excluding the use of 'gpc0/1''
 1004     - BUG/MEDIUM: sock: make sure to never miss early connection failures
 1005     - BUG/MINOR: cli: fix server name output in "show fd"
 1006     - Revert "MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules"
 1007     - MEDIUM: stats: include disabled proxies that hold active sessions to stats
 1008     - BUILD: stick-table: shut up invalid "uninitialized" warning in gcc 8.3
 1009     - MINOR: http: implement http_get_scheme
 1010     - MEDIUM: http: implement scheme-based normalization
 1011     - MEDIUM: h1-htx: apply scheme-based normalization on h1 requests
 1012     - MEDIUM: h2: apply scheme-based normalization on h2 requests
 1013     - REGTESTS: add http scheme-based normalization test
 1014     - BUILD: http_htx: fix ci compilation error with isdigit for Windows
 1015     - MINOR: http: implement http uri parser
 1016     - MINOR: http: use http uri parser for scheme
 1017     - MINOR: http: use http uri parser for authority
 1018     - REORG: http_ana: split conditions for monitor-uri in wait for request
 1019     - MINOR: http: use http uri parser for path
 1020     - BUG/MEDIUM: http_ana: fix crash for http_proxy mode during uri rewrite
 1021     - MINOR: mux_h2: define config to disable h2 websocket support
 1022     - CLEANUP: applet: remove unused thread_mask
 1023     - BUG/MINOR: ssl: Default-server configuration ignored by server
 1024     - BUILD: add detection of missing important CFLAGS
 1025     - BUILD: lua: silence a build warning with TCC
 1026     - MINOR: srv: extract tracking server config function
 1027     - MINOR: srv: do not allow to track a dynamic server
 1028     - MEDIUM: server: support track keyword for dynamic servers
 1029     - REGTESTS: test track support for dynamic servers
 1030     - MINOR: init: verify that there is a single word on "-cc"
 1031     - MINOR: init: make -cc support environment variables expansion
 1032     - MINOR: arg: add a free_args() function to free an args array
 1033     - CLEANUP: config: use free_args() to release args array in cfg_eval_condition()
 1034     - CLEANUP: hlua: use free_args() to release args arrays
 1035     - REORG: config: move the condition preprocessing code to its own file
 1036     - MINOR: cfgcond: start to split the condition parser to introduce terms
 1037     - MEDIUM: cfgcond: report invalid trailing chars after expressions
 1038     - MINOR: cfgcond: remerge all arguments into a single line
 1039     - MINOR: cfgcond: support negating conditional expressions
 1040     - MINOR: cfgcond: make the conditional term parser automatically allocate nodes
 1041     - MINOR: cfgcond: insert an expression between the condition and the term
 1042     - MINOR: cfgcond: support terms made of parenthesis around expressions
 1043     - REGTEST: make check_condition.vtc fail as soon as possible
 1044     - REGTESTS: add more complex check conditions to check_conditions.vtc
 1045     - BUG/MEDIUM: init: restore behavior of command-line "-m" for memory limitation
 1046 
 1047 2021/06/30 : 2.5-dev1
 1048     - CLEANUP: ssl: Move ssl_store related code to ssl_ckch.c
 1049     - MINOR: ssl: Allow duplicated entries in the cafile_tree
 1050     - MEDIUM: ssl: Chain ckch instances in ca-file entries
 1051     - MINOR: ssl: Add reference to default ckch instance in bind_conf
 1052     - MINOR: ssl: Add helper functions to create/delete cafile entries
 1053     - MEDIUM: ssl: Add a way to load a ca-file content from memory
 1054     - MINOR: ssl: Add helper function to add cafile entries
 1055     - MINOR: ssl: Ckch instance rebuild and cleanup factorization in CLI handler
 1056     - MEDIUM: ssl: Add "set+commit ssl ca-file" CLI commands
 1057     - REGTESTS: ssl: Add new ca-file update tests
 1058     - MINOR: ssl: Add "abort ssl ca-file" CLI command
 1059     - MINOR: ssl: Add a cafile_entry type field
 1060     - MINOR: ssl: Refactorize the "show certificate details" code
 1061     - MEDIUM: ssl: Add "show ssl ca-file" CLI command
 1062     - MEDIUM: ssl: Add "new ssl ca-file" CLI command
 1063     - MINOR: ssl: Add "del ssl ca-file" CLI command
 1064     - REGTESTS: ssl: Add "new/del ssl ca-file" tests
 1065     - DOC: ssl: Add documentation about CA file hot update commands
 1066     - DOC: internals: update the SSL architecture schema
 1067     - MINOR: ssl: Chain instances in ca-file entries
 1068     - MEDIUM: ssl: Add "set+commit ssl crl-file" CLI commands
 1069     - MEDIUM: ssl: Add "new+del crl-file" CLI commands
 1070     - MINOR: ssl: Add "abort ssl crl-file" CLI command
 1071     - MEDIUM: ssl: Add "show ssl crl-file" CLI command
 1072     - REGTESTS: ssl: Add "new/del ssl crl-file" tests
 1073     - REGTESTS: ssl: Add "set/commit ssl crl-file" test
 1074     - DOC: ssl: Add documentation about CRL file hot update commands
 1075     - BUILD/MINOR: ssl: Fix compilation with SSL enabled
 1076     - BUILD/MINOR: ssl: Fix compilation with OpenSSL 1.0.2
 1077     - CI: introduce scripts/build-vtest.sh for installing VTest
 1078     - CLEANUP: ssl: Fix coverity issues found in CA file hot update code
 1079     - CI: github actions: add OpenTracing builds
 1080     - BUG/MEDIUM: ebtree: Invalid read when looking for dup entry
 1081     - BUG/MAJOR: server: prevent deadlock when using 'set maxconn server'
 1082     - BUILD/MINOR: opentracing: fixed build when using clang
 1083     - BUG/MEDIUM: filters: Exec pre/post analysers only one time per filter
 1084     - BUG/MINOR: http-comp: Preserve HTTP_MSGF_COMPRESSIONG flag on the response
 1085     - MINOR: map/acl: print the count of all the map/acl entries in "show map/acl"
 1086     - CLEANUP: pattern: remove export of non-existent function pattern_delete()
 1087     - MINOR: h1-htx: Update h1 parsing functions to return result as a size_t
 1088     - MEDIUM: h1-htx: Adapt H1 data parsing to copy wrapping data in one call
 1089     - MINOR: mux-h1/mux-fcgi: Don't needlessly loop on data parsing
 1090     - MINOR: h1-htx: Move HTTP chunks parsing into a dedicated function
 1091     - MEDIUM: h1-htx: Split function to parse a chunk and the loop on the buffer
 1092     - MEDIUM: h1-htx: Add a function to parse contiguous small chunks
 1093     - MINOR: h1-htx: Use a correlation table to speed-up small chunks parsing
 1094     - MINOR: buf: Add function to realign a buffer with a specific head position
 1095     - MINOR: muxes/h1-htx: Realign input buffer using b_slow_realign_ofs()
 1096     - CLEANUP: mux-h1: Rename functions parsing input buf and filling output buf
 1097     - Revert "MEDIUM: http-ana: Deal with L7 retries in HTTP analysers"
 1098     - BUG/MINOR: http-ana: Send the right error if max retries is reached on L7 retry
 1099     - BUG/MINOR: http-ana: Handle L7 retries on refused early data before K/A aborts
 1100     - MINOR: http-ana: Perform L7 retries because of status codes in response analyser
 1101     - MINOR: cfgparse: Fail when encountering extra arguments in macro
 1102     - DOC: intro: Fix typo in starter guide
 1103     - BUG/MINOR: server: Missing calloc return value check in srv_parse_source
 1104     - BUG/MINOR: peers: Missing calloc return value check in peers_register_table
 1105     - BUG/MINOR: ssl: Missing calloc return value check in ssl_init_single_engine
 1106     - BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture
 1107     - BUG/MINOR: proxy: Missing calloc return value check in proxy_parse_declare
 1108     - BUG/MINOR: proxy: Missing calloc return value check in proxy_defproxy_cpy
 1109     - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request/tcp-response
 1110     - BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule
 1111     - BUG/MINOR: compression: Missing calloc return value check in comp_append_type/algo
 1112     - BUG/MINOR: worker: Missing calloc return value check in mworker_env_to_proc_list
 1113     - BUG/MINOR: http: Missing calloc return value check while parsing redirect rule
 1114     - BUG/MINOR: http: Missing calloc return value check in make_arg_list
 1115     - BUG/MINOR: proxy: Missing calloc return value check in chash_init_server_tree
 1116     - CLEANUP: http-ana: Remove useless if statement about L7 retries
 1117     - BUG/MAJOR: stream-int: Release SI endpoint on server side ASAP on retry
 1118     - MINOR: backend: Don't release SI endpoint anymore in connect_server()
 1119     - BUG/MINOR: vars: Be sure to have a session to get checks variables
 1120     - DOC/MINOR: move uuid in the configuration to the right alphabetical order
 1121     - CLEANUP: mux-fcgi: Don't needlessly store result of data/trailers parsing
 1122     - BUILD: fix compilation for OpenSSL-3.0.0-alpha17
 1123     - MINOR: http-ana: Use -1 status for client aborts during queuing and connect
 1124     - REGTESTS: Fix http_abortonclose.vtc to support -1 status for some client aborts
 1125     - CLEANUP: backend: fix incorrect comments on locking conditions for lb functions
 1126     - CLEANUP: reg-tests: Remove obsolete no-htx parameter for reg-tests
 1127     - CI: github actions: add OpenSSL-3.0.0 builds
 1128     - CI: github actions: -Wno-deprecated-declarations with OpenSSL 3.0.0
 1129     - MINOR: errors: allow empty va_args for diag variadic macro
 1130     - REORG: errors: split errors reporting function from log.c
 1131     - CLEANUP: server: fix cosmetic of error message on sni parsing
 1132     - MEDIUM: errors: implement user messages buffer
 1133     - MINOR: log: do not discard stderr when starting is over
 1134     - MEDIUM: errors: implement parsing context type
 1135     - MINOR: errors: use user messages context in print_message
 1136     - MINOR: log: display exec path on first warning
 1137     - MINOR: errors: specify prefix "config" for parsing output
 1138     - MINOR: log: define server user message format
 1139     - REORG: server: use parsing ctx for server parsing
 1140     - REORG: config: use parsing ctx for server config check
 1141     - MINOR: server: use parsing ctx for server init addr
 1142     - MINOR: server: use ha_alert in server parsing functions
 1143     - DOC: use the req.ssl_sni in examples
 1144     - CLEANUP: cfgparse: Remove duplication of `MAX_LINE_ARGS + 1`
 1145     - CLEANUP: tools: Make errptr const in `parse_line()`
 1146     - MINOR: haproxy: Add `-cc` argument
 1147     - BUG: errors: remove printf positional args for user messages context
 1148     - CI: Make matrix.py executable and add shebang
 1149     - BUILD: make tune.ssl.keylog available again
 1150     - BUG/MINOR: ssl: OCSP stapling does not work if expire too far in the future
 1151     - Revert "BUG/MINOR: opentracing: initialization after establishing daemon mode"
 1152     - BUG/MEDIUM: opentracing: initialization before establishing daemon and/or chroot mode
 1153     - SCRIPTS: opentracing: enable parallel builds in build-ot.sh
 1154     - BUG/MEDIUM: compression: Fix loop skipping unused blocks to get the next block
 1155     - BUG/MEDIUM: compression: Properly get the next block to iterate on payload
 1156     - BUG/MEDIUM: compression: Add a flag to know the filter is still processing data
 1157     - MINOR: ssl: Keep the actual key length in the certificate_ocsp structure
 1158     - MINOR: ssl: Add new "show ssl ocsp-response" CLI command
 1159     - MINOR: ssl: Add the OCSP entry key when displaying the details of a certificate
 1160     - MINOR: ssl: Add the "show ssl cert foo.pem.ocsp" CLI command
 1161     - REGTESTS: ssl: Add "show ssl ocsp-response" test
 1162     - BUG/MINOR: server: explicitly set "none" init-addr for dynamic servers
 1163     - BUG/MINOR: pools: fix a possible memory leak in the lockless pool_flush()
 1164     - BUG/MINOR: pools: make DEBUG_UAF always write to the to-be-freed location
 1165     - MINOR: pools: do not maintain the lock during pool_flush()
 1166     - MINOR: pools: call malloc_trim() under thread isolation
 1167     - MEDIUM: pools: use a single pool_gc() function for locked and lockless
 1168     - BUG/MAJOR: pools: fix possible race with free() in the lockless variant
 1169     - CLEANUP: pools: remove now unused seq and pool_free_list
 1170     - MEDIUM: pools: remove the locked pools implementation
 1171     - BUILD: ssl: Fix compilation with BoringSSL
 1172     - BUG/MEDIUM: errors: include missing obj_type file
 1173     - REGTESTS: ssl: show_ssl_ocspresponce.vtc is broken with BoringSSL
 1174     - BUG/MAJOR: htx: Fix htx_defrag() when an HTX block is expanded
 1175     - BUG/MINOR: mux-fcgi: Expose SERVER_SOFTWARE parameter by default
 1176     - BUG/MINOR: h1-htx: Fix a signess bug with char data type when parsing chunk size
 1177     - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
 1178     - BUG/MINOR: resolvers: answser item list was randomly purged or errors
 1179     - MEDIUM: resolvers: add a ref on server to the used A/AAAA answer item
 1180     - MEDIUM: resolvers: add a ref between servers and srv request or used SRV record
 1181     - BUG/MINOR: server-state: load SRV resolution only if params match the config
 1182     - MINOR: config: remove support for deprecated option "tune.chksize"
 1183     - MINOR: config: completely remove support for "no option http-use-htx"
 1184     - MINOR: log: remove the long-deprecated early log-format tags
 1185     - MINOR: http: remove the long deprecated "set-cookie()" sample fetch function
 1186     - MINOR: config: reject long-deprecated "option forceclose"
 1187     - MINOR: config: remove deprecated option "http-tunnel"
 1188     - MEDIUM: proxy: remove the deprecated "grace" keyword
 1189     - MAJOR: config: remove parsing of the global "nbproc" directive
 1190     - BUILD: init: remove initialization of multi-process thread mappings
 1191     - BUILD: log: remove unused fmt_directive()
 1192     - REGTESTS: Remove REQUIRE_VERSION=1.6 from all tests
 1193     - REGTESTS: Remove REQUIRE_VERSION=1.7 from all tests
 1194     - CI: github actions: enable alpine/musl builds
 1195     - BUG/MAJOR: resolvers: segfault using server template without SRV RECORDs
 1196     - DOC: lua: Add a warning about buffers modification in HTTP
 1197     - MINOR: ssl: Use OpenSSL's ASN1_TIME convertor when available
 1198     - BUG/MINOR: stick-table: insert srv in used_name tree even with fixed id
 1199     - BUG/MEDIUM: server: extend thread-isolate over much of CLI 'add server'
 1200     - BUG/MEDIUM: server: clear dynamic srv on delete from proxy id/name trees
 1201     - BUG/MEDIUM: server: do not forget to generate the dynamic servers ids
 1202     - BUG/MINOR: server: do not keep an invalid dynamic server in px ids tree
 1203     - BUG/MEDIUM: server: do not auto insert a dynamic server in px addr_node
 1204     - BUG/MEDIUM: shctx: use at least thread-based locking on USE_PRIVATE_CACHE
 1205     - BUG/MINOR: ssl: use atomic ops to update global shctx stats
 1206     - BUG/MINOR: mworker: fix typo in chroot error message
 1207     - CLEANUP: global: remove unused definition of stopping_task[]
 1208     - MEDIUM: init: remove the loop over processes during init
 1209     - MINOR: mworker: remove the initialization loop over processes
 1210     - CLEANUP: global: remove the nbproc field from the global structure
 1211     - CLEANUP: global: remove pid_bit and all_proc_mask
 1212     - MEDIUM: global: remove dead code from nbproc/bind_proc removal
 1213     - MEDIUM: config: simplify cpu-map handling
 1214     - MEDIUM: cpu-set: make the proc a single bit field and not an array
 1215     - CLEANUP: global: remove unused definition of MAX_PROCS
 1216     - MEDIUM: global: remove the relative_pid from global and mworker
 1217     - DOC: update references to process numbers in cpu-map and bind-process
 1218     - MEDIUM: config: warn about "bind-process" deprecation
 1219     - CLEANUP: shctx: remove the different inter-process locking techniques
 1220     - BUG/MAJOR: queue: set SF_ASSIGNED when setting strm->target on dequeue
 1221     - MINOR: backend: only skip LB when there are actual connections
 1222     - BUG/MINOR: mux-h1: do not skip the error response on bad requests
 1223     - MINOR: connection: add helper conn_append_debug_info()
 1224     - MINOR: mux-h2/trace: report a few connection-level info during h2_init()
 1225     - CLEANUP: mux-h2/traces: better align user messages
 1226     - BUG/MINOR: stats: make "show stat typed desc" work again
 1227     - MINOR: mux-h2: obey http-ignore-probes during the preface
 1228     - BUG/MINOR: mux-h2/traces: bring back the lost "rcvd H2 REQ" trace
 1229     - BUG/MINOR: mux-h2/traces: bring back the lost "sent H2 REQ/RES" traces
 1230     - CLEANUP: assorted typo fixes in the code and comments
 1231     - CI: Replace the requirement for 'sudo' with a call to 'ulimit -n'
 1232     - REGTESTS: Replace REQUIRE_VERSION=2.5 with 'haproxy -cc'
 1233     - REGTESTS: Replace REQUIRE_OPTIONS with 'haproxy -cc' for 2.5+ tests
 1234     - REGTESTS: Replace REQUIRE_BINARIES with 'command -v'
 1235     - REGTESTS: Remove support for REQUIRE_BINARIES
 1236     - CI: ssl: enable parallel builds for OpenSSL on Linux
 1237     - CI: ssl: do not needlessly build the OpenSSL docs
 1238     - CI: ssl: keep the old method for ancient OpenSSL versions
 1239     - CLEANUP: server: a separate function for initializing the per_thr field
 1240     - BUG/MINOR: server: Forbid to set fqdn on the CLI if SRV resolution is enabled
 1241     - BUG/MEDIUM: server/cli: Fix ABBA deadlock when fqdn is set from the CLI
 1242     - MINOR: resolvers: Clean server in a dedicated function when removing a SRV item
 1243     - MINOR: resolvers: Remove server from named_servers tree when removing a SRV item
 1244     - BUG/MEDIUM: resolvers: Add a task on servers to check SRV resolution status
 1245     - BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose
 1246     - BUG/MINOR: backend: do not set sni on connection reuse
 1247     - BUG/MINOR: resolvers: Use resolver's lock in resolv_srvrq_expire_task()
 1248     - BUG/MINOR: server/cli: Fix locking in function processing "set server" command
 1249     - BUG/MINOR: cache: Correctly handle existing-but-empty 'accept-encoding' header
 1250     - MINOR: ssl: fix typo in usage for 'new ssl ca-file'
 1251     - MINOR: ssl: always initialize random generator
 1252     - MINOR: ssl: check allocation in ssl_sock_init_srv
 1253     - MINOR: ssl: check allocation in parse ciphers/ciphersuites/verifyhost
 1254     - MINOR: ssl: check allocation in parse npn/sni
 1255     - MINOR: server: disable CLI 'set server ssl' for dynamic servers
 1256     - MINOR: ssl: render file-access optional on server crt loading
 1257     - MINOR: ssl: split parse functions for alpn/check-alpn
 1258     - MINOR: ssl: support ca-file arg for dynamic servers
 1259     - MINOR: ssl: support crt arg for dynamic servers
 1260     - MINOR: ssl: support crl arg for dynamic servers
 1261     - MINOR: ssl: enable a series of ssl keywords for dynamic servers
 1262     - MINOR: ssl: support ssl keyword for dynamic servers
 1263     - REGTESTS: server: test ssl support for dynamic servers
 1264     - MINOR: queue: update the stream's pend_pos before queuing it
 1265     - CLEANUP: Prevent channel-t.h from being detected as C++ by GitHub
 1266     - BUG/MAJOR: server: fix deadlock when changing maxconn via agent-check
 1267     - REGTESTS: fix maxconn update with agent-check
 1268     - MEDIUM: queue: make pendconn_process_next_strm() only return the pendconn
 1269     - MINOR: queue: update proxy->served once out of the loop
 1270     - MEDIUM: queue: refine the locking in process_srv_queue()
 1271     - MINOR: lb/api: remove the locked argument from take_conn/drop_conn
 1272     - MINOR: queue: create a new structure type "queue"
 1273     - MINOR: proxy: replace the pendconns-related stuff with a struct queue
 1274     - MINOR: server: replace the pendconns-related stuff with a struct queue
 1275     - MEDIUM: queue: use a dedicated lock for the queues
 1276     - MEDIUM: queue: simplify again the process_srv_queue() API
 1277     - MINOR: queue: factor out the proxy/server queuing code
 1278     - MINOR: queue: use atomic-ops to update the queue's index
 1279     - MEDIUM: queue: determine in process_srv_queue() if the proxy is usable
 1280     - MEDIUM: queue: move the queue lock manipulation to pendconn_process_next_strm()
 1281     - MEDIUM: queue: unlock as soon as possible
 1282     - MINOR: queue: make pendconn_first() take the lock by itself
 1283     - CLEANUP: backend: remove impossible case of round-robin + consistent hash
 1284     - MINOR: tcp-act: Add set-src/set-src-port for "tcp-request content" rules
 1285     - DOC: config: Add missing actions in "tcp-request session" documentation
 1286     - CLEANUP: dns: Remove a forgotten debug message
 1287     - DOC: Replace issue templates by issue forms
 1288     - Revert "MINOR: queue: make pendconn_first() take the lock by itself"
 1289     - Revert "MEDIUM: queue: unlock as soon as possible"
 1290     - Revert "MEDIUM: queue: move the queue lock manipulation to pendconn_process_next_strm()"
 1291     - Revert "MEDIUM: queue: determine in process_srv_queue() if the proxy is usable"
 1292     - Revert "MINOR: queue: use atomic-ops to update the queue's index"
 1293     - Revert "MINOR: queue: factor out the proxy/server queuing code"
 1294     - Revert "MEDIUM: queue: simplify again the process_srv_queue() API"
 1295     - Revert "MEDIUM: queue: use a dedicated lock for the queues"
 1296     - Revert "MEDIUM: queue: refine the locking in process_srv_queue()"
 1297     - Revert "MINOR: queue: update proxy->served once out of the loop"
 1298     - Revert "MEDIUM: queue: make pendconn_process_next_strm() only return the pendconn"
 1299     - MEDIUM: queue: update px->served and lb's take_conn once per loop
 1300     - MEDIUM: queue: use a dedicated lock for the queues (v2)
 1301     - MEDIUM: queue: simplify again the process_srv_queue() API (v2)
 1302     - MEDIUM: queue: determine in process_srv_queue() if the proxy is usable (v2)
 1303     - MINOR: queue: factor out the proxy/server queuing code (v2)
 1304     - MINOR: queue: use atomic-ops to update the queue's index (v2)
 1305     - MEDIUM: queue: take the proxy lock only during the px queue accesses
 1306     - MEDIUM: queue: use a trylock on the server's queue
 1307     - MINOR: queue: add queue_init() to initialize a queue
 1308     - MINOR: queue: add a pointer to the server and the proxy in the queue
 1309     - MINOR: queue: store a pointer to the queue into the pendconn
 1310     - MINOR: queue: remove the px/srv fields from pendconn
 1311     - MINOR: queue: simplify pendconn_unlink() regarding srv vs px
 1312     - BUG: backend: stop looking for queued connections once there's no more
 1313     - BUG/MINOR: queue/debug: use the correct lock labels on the queue lock
 1314     - BUG/MINOR: resolvers: Always attach server on matching record on resolution
 1315     - BUG/MINOR: resolvers: Reset server IP when no ip is found in the response
 1316     - MINOR: resolvers: Reset server IP on error in resolv_get_ip_from_response()
 1317     - BUG/MINOR: checks: return correct error code for srv_parse_agent_check
 1318     - BUILD: Makefile: fix linkage for Haiku.
 1319     - BUG/MINOR: tcpcheck: Fix numbering of implicit HTTP send/expect rules
 1320     - MINOR: http-act/tcp-act: Add "set-log-level" for tcp content rules
 1321     - MINOR: http-act/tcp-act: Add "set-nice" for tcp content rules
 1322     - MINOR: http-act/tcp-act: Add "set-mark" and "set-tos" for tcp content rules
 1323     - CLEANUP: tcp-act: Sort action lists
 1324     - BUILD/MEDIUM: tcp: set-mark setting support for FreeBSD.
 1325     - BUILD: tcp-act: avoid warning when set-mark / set-tos are not supported
 1326     - BUG/MINOR: mqtt: Fix parser for string with more than 127 characters
 1327     - BUG/MINOR: mqtt: Support empty client ID in CONNECT message
 1328     - BUG/MEDIUM: resolvers: Make 1st server of a template take part to SRV resolution
 1329     - CLEANUP: peers: re-write intdecode function comment.
 1330 
 1331 2021/05/14 : 2.5-dev0
 1332     - MINOR: version: it's development again
 1333 
 1334 2021/05/14 : 2.4.0
 1335     - BUG/MINOR: http_fetch: fix possible uninit sockaddr in fetch_url_ip/port
 1336     - CLEANUP: cli/activity: Remove double spacing in set profiling command
 1337     - CI: Build VTest with clang
 1338     - CI: extend spellchecker whitelist, add "ists" as well
 1339     - CLEANUP: assorted typo fixes in the code and comments
 1340     - BUG/MINOR: memprof: properly account for differences for realloc()
 1341     - MINOR: memprof: also report the method used by each call
 1342     - MINOR: memprof: also report the totals and delta alloc-free
 1343     - CLEANUP: pattern: remove the unused and dangerous pat_ref_reload()
 1344     - BUG/MINOR: http_act: Fix normalizer names in error messages
 1345     - MINOR: uri_normalizer: Add `fragment-strip` normalizer
 1346     - MINOR: uri_normalizer: Add `fragment-encode` normalizer
 1347     - IMPORT: slz: use the generic function for the last bytes of the crc32
 1348     - IMPORT: slz: do not produce the crc32_fast table when CRC is natively supported
 1349     - BUILD/MINOR: opentracing: fixed compilation with filter enabled
 1350     - BUILD: makefile: add a few popular ARMv8 CPU targets
 1351     - BUG/MEDIUM: stick_table: fix crash when using tcp smp_fetch_src
 1352     - REGTESTS: stick-table: add src_conn_rate test
 1353     - CLEANUP: stick-table: remove a leftover of an old keyword declaration
 1354     - BUG/MINOR: stats: fix lastchk metric that got accidently lost
 1355     - EXAMPLES: add a "basic-config-edge" example config
 1356     - EXAMPLES: add a trivial config for quick testing
 1357     - DOC: management: Correct example reload command in the document
 1358     - Revert "CI: Build VTest with clang"
 1359     - MINOR: activity/cli: optionally support sorting by address on "show profiling"
 1360     - DEBUG: ssl: export ssl_sock_close() to see its symbol resolved in profiling
 1361     - BUG/MINOR: lua/vars: prevent get_var() from allocating a new name
 1362     - DOC: config: Fix configuration example for mqtt
 1363     - BUG/MAJOR: config: properly initialize cpu_map.thread[] up to MAX_THREADS
 1364     - BUILD: config: avoid a build warning on numa_detect_topology() without threads
 1365     - DOC: update min requirements in INSTALL
 1366     - IMPORT: slz: use inttypes.h instead of stdint.h
 1367     - BUILD: sample: use strtoll() instead of atoll()
 1368     - MINOR: version: mention that it's LTS now.
 1369 
 1370 2021/05/10 : 2.4-dev19
 1371     - BUG/MINOR: hlua: Don't rely on top of the stack when using Lua buffers
 1372     - BUG/MEDIUM: cli: prevent memory leak on write errors
 1373     - BUG/MINOR: ssl/cli: fix a lock leak when no memory available
 1374     - MINOR: debug: add a new "debug dev sym" command in expert mode
 1375     - MINOR: pools/debug: slightly relax DEBUG_DONT_SHARE_POOLS
 1376     - CI: Github Actions: switch to LibreSSL-3.3.3
 1377     - MINOR: srv: close all idle connections on shutdown
 1378     - MINOR: connection: move session_list member in a union
 1379     - MEDIUM: mux_h1: release idling frontend conns on soft-stop
 1380     - MEDIUM: connection: close front idling connection on soft-stop
 1381     - MINOR: tools: add functions to retrieve the address of a symbol
 1382     - CLEANUP: activity: mark the profiling and task_profiling_mask __read_mostly
 1383     - MINOR: activity: add a "memory" entry to "profiling"
 1384     - MINOR: activity: declare the storage for memory usage statistics
 1385     - MEDIUM: activity: collect memory allocator statistics with USE_MEMORY_PROFILING
 1386     - MINOR: activity: clean up the show profiling io_handler a little bit
 1387     - MINOR: activity: make "show profiling" support a few arguments
 1388     - MINOR: activity: make "show profiling" also dump the memoery usage
 1389     - MINOR: activity: add the profiling.memory global setting
 1390     - BUILD: makefile: add new option USE_MEMORY_PROFILING
 1391     - MINOR: channel: Rely on HTX version if appropriate in channel_may_recv()
 1392     - BUG/MINOR: stream-int: Don't block reads in si_update_rx() if chn may receive
 1393     - MINOR: conn-stream: Force mux to wait for read events if abortonclose is set
 1394     - MEDIUM: mux-h1: Don't block reads when waiting for the other side
 1395     - BUG/MEDIUM: mux-h1: Properly report client close if abortonclose option is set
 1396     - REGTESTS: Add script to test abortonclose option
 1397     - MINOR: mux-h1: clean up conditions to enabled and disabled splicing
 1398     - MINOR: mux-h1: Subscribe for sends if output buffer is not empty in h1_snd_pipe
 1399     - MINOR: mux-h1: Always subscribe for reads when splicing is disabled
 1400     - MEDIUM: mux-h1: Wake H1 stream when both sides a synchronized
 1401     - CLEANUP: mux-h1: rename WAIT_INPUT/WAIT_OUTPUT flags
 1402     - MINOR: mux-h1: Manage processing blocking flags on the H1 stream
 1403     - BUG/MINOR: stream: Decrement server current session counter on L7 retry
 1404     - BUG/MINOR: config: fix uninitialized initial state in ".if" block evaluator
 1405     - BUG/MINOR: config: add a missing "ELIF_TAKE" test for ".elif" condition evaluator
 1406     - BUG/MINOR: config: .if/.elif should also accept negative integers
 1407     - MINOR: config: centralize the ".if"/".elif" condition parser and evaluator
 1408     - MINOR: config: keep up-to-date current file/line/section in the global struct
 1409     - MINOR: config: support some pseudo-variables for file/line/section
 1410     - BUILD: activity: do not include malloc.h
 1411     - MINOR: arg: improve the error message on missing closing parenthesis
 1412     - MINOR: global: export the build features string list
 1413     - MINOR: global: add version comparison functions
 1414     - MINOR: config: improve .if condition error reporting
 1415     - MINOR: config: make cfg_eval_condition() support predicates with arguments
 1416     - MINOR: config: add predicate "defined()" to conditional expression blocks
 1417     - MINOR: config: add predicates "streq()" and "strneq()" to conditional expressions
 1418     - MINOR: config: add predicate "feature" to detect certain built-in features
 1419     - MINOR: config: add predicates "version_atleast" and "version_before" to cond blocks
 1420     - BUG/MINOR: activity: use the new pointer to calculate the new size in realloc()
 1421     - BUG/MINOR: stream: properly clear the previous error mask on L7 retries
 1422     - MEDIUM: log: slightly refine the output format of alerts/warnings/etc
 1423     - MINOR: config: add a new message directive: .diag
 1424     - CLEANUP: cli/tree-wide: properly re-align the CLI commands' help messages
 1425     - BUG/MINOR: stream: Reset stream final state and si error type on L7 retry
 1426     - BUG/MINOR: checks: Handle synchronous connect when a tcpcheck is started
 1427     - BUG/MINOR: checks: Reschedule check on observe mode only if fastinter is set
 1428     - MINOR: global: define tainted flag
 1429     - MINOR: cfgparse: add a new field flags in cfg_keyword
 1430     - MINOR: cfgparse: implement experimental config keywords
 1431     - MINOR: action: replace match_pfx by a keyword flags field
 1432     - MINOR: action: implement experimental actions
 1433     - MINOR: cli: set tainted when using CLI expert/experimental mode
 1434     - MINOR: stats: report tainted on show info
 1435     - MINOR: http_act: mark normalize-uri as experimental
 1436     - BUILD: fix usage of ha_alert without format string
 1437     - MINOR: proxy: define PR_CAP_LB
 1438     - BUG/MINOR: server: do not report diag for peer servers with null weight
 1439     - DOC: ssl: Extra files loading now works for backends too
 1440     - ADDONS: make addons/ discoverable by git via .gitignore
 1441     - DOC: ssl: Add information about crl-file option
 1442     - MINOR: sample: improve error reporting on missing arg to strcmp() converter
 1443     - DOC: management: mention that some fields may be emitted as floats
 1444     - MINOR: tools: implement trimming of floating point numbers
 1445     - MINOR: tools: add a float-to-ascii conversion function
 1446     - MINOR: freq_ctr: add new functions to report float measurements
 1447     - MINOR: stats: avoid excessive padding of float values with trailing zeroes
 1448     - MINOR: stats: add the HTML conversion for float types
 1449     - MINOR: stats: pass the appctx flags to stats_fill_info()
 1450     - MINOR: stats: support an optional "float" option to "show info"
 1451     - MINOR: stats: use tv_remain() to precisely compute the uptime
 1452     - MINOR: stats: report uptime and start time as floats with subsecond resolution
 1453     - MINOR: stats: make "show info" able to report rates as floats when asked
 1454     - MINOR: config: mark tune.fd.edge-triggered as experimental
 1455     - REORG: vars: move the "proc" scope variables out of the global struct
 1456     - REORG: threads: move all_thread_mask() to thread.h
 1457     - BUILD: wdt: include signal-t.h
 1458     - BUILD: auth: include missing list.h
 1459     - REORG: mworker: move proc_self from global to mworker
 1460     - BUILD: ssl: ssl_utils requires chunk.h
 1461     - BUILD: config: cfgparse-ssl.c needs tools.h
 1462     - BUILD: wurfl: wurfl.c needs tools.h
 1463     - BUILD: spoe: flt_spoe.c needs tools.h
 1464     - BUILD: promex: service-prometheus.c needs tools.h
 1465     - BUILD: resolvers: include tools.h
 1466     - BUILD: config: include tools.h in cfgparse-listen.c
 1467     - BUILD: htx: include tools.h in http_htx.c
 1468     - BUILD: proxy: include tools.h in proxy.c
 1469     - BUILD: session: include tools.h in session.c
 1470     - BUILD: cache: include tools.h in cache.c
 1471     - BUILD: sink: include tools.h in sink.c
 1472     - BUILD: connection: include tools.h in connection.c
 1473     - BUILD: server-state: include tools.h from server_state.c
 1474     - BUILD: dns: include tools.h in dns.c
 1475     - BUILD: payload: include tools.h in payload.c
 1476     - BUILD: vars: include tools.h in vars.c
 1477     - BUILD: compression: include tools.h in compression.c
 1478     - BUILD: mworker: include tools.h from mworker.c
 1479     - BUILD: queue: include tools.h from queue.c
 1480     - BUILD: udp: include tools.h from proto_udp.c
 1481     - BUILD: stick-table: include freq_ctr.h from stick_table.h
 1482     - BUILD: server: include tools.h from server.c
 1483     - BUILD: server: include missing proxy.h in server.c
 1484     - BUILD: sink: include proxy.h in sink.c
 1485     - BUILD: mworker: include proxy.h in mworker.c
 1486     - BUILD: filters: include proxy.h in filters.c
 1487     - BUILD: fcgi-app: include proxy.h in fcgi-app.c
 1488     - BUILD: connection: move list_mux_proto() to connection.c
 1489     - REORG: stick-table: uninline stktable_alloc_data_type()
 1490     - REORG: stick-table: move composite address functions to stick_table.h
 1491     - REORG: config: uninline warnifnotcap() and failifnotcap()
 1492     - BUILD: task: remove unused includes from task.c
 1493     - MINOR: task: stop including stream.h from task.c
 1494     - BUILD: connection: stop including listener-t.h
 1495     - BUILD: hlua: include proxy.h from hlua.c
 1496     - BUILD: mux-h1: include proxy.h from mux-h1.c
 1497     - BUILD: mux-fcgi: include proxy.h from mux-fcgi.c
 1498     - BUILD: listener: include proxy.h from listener.c
 1499     - BUILD: http-rules: include proxy.h from http_rules.c
 1500     - BUILD: thread: include log.h from thread.c
 1501     - BUILD: comp: include proxy.h from flt_http_comp.c
 1502     - BUILD: fd: include log.h from fd.c
 1503     - BUILD: config: do not include proxy.h nor errors.h anymore in cfgparse.h
 1504     - BUILD: makefile: reorder object files by build time
 1505     - DOC: Fix a few grammar/spelling issues and casing of HAProxy
 1506     - REGTESTS: run-regtests: match both "HAProxy" and "HA-Proxy" in the version
 1507     - MINOR: version: report "HAProxy" not "HA-Proxy" in the version output
 1508     - DOC: remove last occurrences of "HA-Proxy" syntax
 1509     - DOC: peers: fix the protocol tag name in the doc
 1510     - ADMIN: netsnmp: report "HAProxy" and not "Haproxy" in output descriptions
 1511     - MEDIUM: mailers: use "HAProxy" nor "HAproxy" in the subject of messages
 1512     - DOC: fix a few remainig cases of "Haproxy" and "HAproxy" in doc and comments
 1513     - MINOR: tools/rnd: compute the result outside of the CAS loop
 1514     - BUILD: http_fetch: address a few aliasing warnings with older compilers
 1515     - BUILD: ssl: define HAVE_CRYPTO_memcmp() based on the library version
 1516     - BUILD: errors: include stdarg in errors.h
 1517     - REGTESTS: disable inter-thread idle connection sharing on sensitive tests
 1518     - MINOR: cli: make "help" support a command in argument
 1519     - MINOR: cli: sort the output of the "help" keywords
 1520     - CLEANUP: cli/mworker: properly align the help messages
 1521     - BUILD: memprof: make the old caller pointer a const in get_prof_bin()
 1522     - BUILD: compat: include malloc_np.h for USE_MEMORY_PROFILING on FreeBSD
 1523     - CI: Github Actions: enable USE_QUIC=1 for BoringSSL builds
 1524     - BUG/MEDIUM: quic: fix null deref on error path in qc_conn_init()
 1525     - BUILD: cli: appease a null-deref warning in cli_gen_usage_msg()
 1526 
 1527 2021/05/01 : 2.4-dev18
 1528     - DOC: Fix indentation for `path-strip-dot` normalizer
 1529     - DOC: Fix RFC reference for the percent-to-uppercase normalizer
 1530     - DOC: Add RFC references for the path-strip-dot(dot)? normalizers
 1531     - MINOR: uri_normalizer: Add a `percent-decode-unreserved` normalizer
 1532     - BUG/MINOR: mux-fcgi: Don't send normalized uri to FCGI application
 1533     - REORG: htx: Inline htx functions to add HTX blocks in a message
 1534     - CLEANUP: assorted typo fixes in the code and comments
 1535     - DOC: general: fix white spaces for HTML converter
 1536     - BUG/MINOR: ssl: ssl_sock_prepare_ssl_ctx does not return an error code
 1537     - BUG/MINOR: cpuset: move include guard at the very beginning
 1538     - BUG/MAJOR: fix build on musl with cpu_set_t support
 1539     - BUG/MEDIUM: cpuset: fix build on MacOS
 1540     - BUG/MINOR: htx: Preserve HTX flags when draining data from an HTX message
 1541     - MEDIUM: htx: Refactor htx_xfer_blks() to not rely on hdrs_bytes field
 1542     - CLEANUP: htx: Remove unsued hdrs_bytes field from the HTX start-line
 1543     - BUG/MINOR: mux-h2: Don't encroach on the reserve when decoding headers
 1544     - MEDIUM: http-ana: handle read error on server side if waiting for response
 1545     - MINOR: htx: Limit length of headers name/value when a HTX message is dumped
 1546     - BUG/MINOR: applet: Notify the other side if data were consumed by an applet
 1547     - BUG/MINOR: hlua: Don't consume headers when starting an HTTP lua service
 1548     - BUG/MEDIUM: mux-h2: Handle EOM flag when sending a DATA frame with zero-copy
 1549     - CLEANUP: channel: No longer notify the producer in co_skip()/co_htx_skip()
 1550     - DOC: general: fix example in set-timeout
 1551     - CLEANUP: cfgparse: de-uglify early file error handling in readcfgfile()
 1552     - MINOR: config: add a new "default-path" global directive
 1553     - BUG/MEDIUM: peers: initialize resync timer to get an initial full resync
 1554     - BUG/MEDIUM: peers: register last acked value as origin receiving a resync req
 1555     - BUG/MEDIUM: peers: stop considering ack messages teaching a full resync
 1556     - BUG/MEDIUM: peers: reset starting point if peers appears longly disconnected
 1557     - BUG/MEDIUM: peers: reset commitupdate value in new conns
 1558     - BUG/MEDIUM: peers: re-work updates lookup during the sync on the fly
 1559     - BUG/MEDIUM: peers: reset tables stage flags stages on new conns
 1560     - MINOR: peers: add informative flags about resync process for debugging
 1561     - BUG/MEDIUM: time: fix updating of global_now upon clock drift
 1562     - CLEANUP: freq_ctr: make arguments of freq_ctr_total() const
 1563     - CLEANUP: hlua: rename hlua_appctx* appctx to luactx
 1564     - MINOR: server: fix doc/trace on lb algo for dynamic server creation
 1565     - REGTESTS: server: fix cli_add_server due to previous trace update
 1566     - REGTESTS: add minimal CLI "add map" tests
 1567     - DOC: management: move "set var" to the proper place
 1568     - CLEANUP: map: slightly reorder the add map function
 1569     - MINOR: map: get rid of map_add_key_value()
 1570     - MINOR: map: show the current and next pattern version in "show map"
 1571     - MINOR: map/acl: add the possibility to specify the version in "show map/acl"
 1572     - MINOR: pattern: support purging arbitrary ranges of generations
 1573     - MINOR: map/acl: add the possibility to specify the version in "clear map/acl"
 1574     - MINOR: map/acl: add the "prepare map/acl" CLI command
 1575     - MINOR: map/acl: add the "commit map/acl" CLI command
 1576     - MINOR: map/acl: make "add map/acl" support an optional version number
 1577     - CLEANUP: map/cli: properly align the map/acl help
 1578     - BUILD: compiler: do not use already defined __read_mostly on dragonfly
 1579 
 1580 2021/04/23 : 2.4-dev17
 1581     - MINOIR: mux-pt/trace: Register a new trace source with its events
 1582     - BUG/MINOR: mux-pt: Fix a possible UAF because of traces in mux_pt_io_cb
 1583     - CI: travis: Drastically clean up .travis.yml
 1584     - CLEANUP: pattern: make all pattern tables read-only
 1585     - MINOR: trace: replace the trace() inline function with an equivalent macro
 1586     - MINOR: initcall: uniformize the section names between MacOS and other unixes
 1587     - CLEANUP: initcall: rename HA_SECTION to HA_INIT_SECTION
 1588     - MINOR: compiler: add macros to declare section names
 1589     - CLEANUP: initcall: rely on HA_SECTION_* instead of defining its own
 1590     - MINOR: global: declare a read_mostly section
 1591     - MINOR: fd: move a few read-mostly variables to their own section
 1592     - MINOR: epoll: move epoll_fd to read_mostly
 1593     - MINOR: kqueue: move kqueue_fd to read_mostly
 1594     - MINOR: pool: move pool declarations to read_mostly
 1595     - MINOR: threads: mark all_threads_mask as read_mostly
 1596     - MINOR: server: move idle_conn_task to read_mostly
 1597     - MINOR: protocol: move __protocol_by_family to read_mostly
 1598     - MINOR: pattern: make the pat_lru_seed read_mostly
 1599     - MINOR: trace: make trace sources read_mostly
 1600     - MINOR: freq_ctr: add a generic function to report the total value
 1601     - MEDIUM: freq_ctr: make read_freq_ctr_period() use freq_ctr_total()
 1602     - MEDIUM: freq_ctr: reimplement freq_ctr_remain_period() from freq_ctr_total()
 1603     - MINOR: freq_ctr: add the missing next_event_delay_period()
 1604     - MINOR: freq_ctr: unify freq_ctr and freq_ctr_period into freq_ctr
 1605     - MEDIUM: freq_ctr: replace the per-second counters with the generic ones
 1606     - MINOR: freq_ctr: add cpu_relax in the rotation loop of update_freq_ctr_period()
 1607     - MINOR: freq_ctr: simplify and improve the update function
 1608     - CLEANUP: time: remove the now unused ms_left_scaled
 1609     - MINOR: time: move the time initialization out of tv_update_date()
 1610     - MINOR: time: remove useless variable copies in tv_update_date()
 1611     - MINOR: time: change the global timeval and the the global tick at once
 1612     - MEDIUM: time: make the clock offset global and no per-thread
 1613     - MINOR: atomic: reimplement the relaxed version of x86 BTS/BTR
 1614     - MINOR: trace: Add the checks as a possible trace source
 1615     - MINOIR: checks/trace: Register a new trace source with its events
 1616     - MINOR: hlua: Add function to release a lua function
 1617     - BUG/MINOR: hlua: Fix memory leaks on error path when registering a task
 1618     - BUG/MINOR: hlua: Fix memory leaks on error path when registering a converter
 1619     - BUG/MINOR: hlua: Fix memory leaks on error path when registering a fetch
 1620     - BUG/MINOR: hlua: Fix memory leaks on error path when parsing a lua action
 1621     - BUG/MINOR: hlua: Fix memory leaks on error path when registering an action
 1622     - BUG/MINOR: hlua: Fix memory leaks on error path when registering a service
 1623     - BUG/MINOR: hlua: Fix memory leaks on error path when registering a cli keyword
 1624     - BUG/MINOR: cfgparse/proxy: Fix some leaks during proxy section parsing
 1625     - BUG/MINOR: listener: Handle allocation error when allocating a new bind_conf
 1626     - BUG/MINOR: cfgparse/proxy: Hande allocation errors during proxy section parsing
 1627     - MINOR: cfgparse/proxy: Group alloc error handling during proxy section parsing
 1628     - DOC: internals: update the SSL architecture schema
 1629     - BUG/MEDIUM: sample: Fix adjusting size in field converter
 1630     - MINOR: sample: add ub64dec and ub64enc converters
 1631     - CLEANUP: sample: align samples list in sample.c
 1632     - MINOR: ist: Add `istclear(struct ist*)`
 1633     - CI: cirrus: install "pcre" package
 1634     - MINOR: opentracing: correct calculation of the number of arguments in the args[]
 1635     - MINOR: opentracing: transfer of context names without prefix
 1636     - MINOR: sample: converter: Add mjson library.
 1637     - MINOR: sample: converter: Add json_query converter
 1638     - CI: travis-ci: enable weekly graviton2 builds
 1639     - DOC: ssl: Certificate hot update only works on fronted certificates
 1640     - DOC: ssl: Certificate hot update works on server certificates
 1641     - BUG/MEDIUM: threads: Ignore current thread to end its harmless period
 1642     - MINOR: threads: Only consider running threads to end a thread harmeless period
 1643     - BUG/MINOR: checks: Set missing id to the dummy checks frontend
 1644     - MINOR: logs: Add support of checks as session origin to format lf strings
 1645     - BUG/MINOR: connection: Fix fc_http_major and bc_http_major for TCP connections
 1646     - MINOR: connection: Make bc_http_major compatible with tcp-checks
 1647     - BUG/MINOR: ssl-samples: Fix ssl_bc_* samples when called from a health-check
 1648     - BUG/MINOR: http-fetch: Make method smp safe if headers were already forwarded
 1649     - MINOR: tcp_samples: Add samples to get src/dst info of the backend connection
 1650     - MINOR: tcp_samples: Be able to call bc_src/bc_dst from the health-checks
 1651     - BUG/MINOR: http_htx: Remove BUG_ON() from http_get_stline() function
 1652     - BUG/MINOR: logs: Report the true number of retries if there was no connection
 1653     - BUILD: makefile: Redirect stderr to /dev/null when probing options
 1654     - MINOR: uri_normalizer: Add uri_normalizer module
 1655     - MINOR: uri_normalizer: Add `enum uri_normalizer_err`
 1656     - MINOR: uri_normalizer: Add `http-request normalize-uri`
 1657     - MINOR: uri_normalizer: Add a `merge-slashes` normalizer to http-request normalize-uri
 1658     - MINOR: uri_normalizer: Add a `dotdot` normalizer to http-request normalize-uri
 1659     - MINOR: uri_normalizer: Add support for supressing leading `../` for dotdot normalizer
 1660     - MINOR: uri_normalizer: Add a `sort-query` normalizer
 1661     - MINOR: uri_normalizer: Add a `percent-upper` normalizer
 1662     - MEDIUM: http_act: Rename uri-normalizers
 1663     - DOC: Add introduction to http-request normalize-uri
 1664     - DOC: Note that URI normalization is experimental
 1665     - BUG/MINOR: pools: maintain consistent ->allocated count on alloc failures
 1666     - BUG/MINOR: pools/buffers: make sure to always reserve the required buffers
 1667     - MINOR: pools: drop the unused static history of artificially failed allocs
 1668     - CLEANUP: pools: remove unused arguments to pool_evict_from_cache()
 1669     - MEDIUM: pools: move the cache into the pool header
 1670     - MINOR: pool: remove the size field from pool_cache_head
 1671     - MINOR: pools: rename CONFIG_HAP_LOCAL_POOLS to CONFIG_HAP_POOLS
 1672     - MINOR: pools: enable the fault injector in all allocation modes
 1673     - MINOR: pools: make the basic pool_refill_alloc()/pool_free() update needed_avg
 1674     - MEDIUM: pools: unify pool_refill_alloc() across all models
 1675     - CLEANUP: pools: re-merge pool_refill_alloc() and __pool_refill_alloc()
 1676     - MINOR: pools: call pool_alloc_nocache() out of the pool's lock
 1677     - CLEANUP: pools: move the lock to the only __pool_get_first() that needs it
 1678     - CLEANUP: pools: rename __pool_get_first() to pool_get_from_shared_cache()
 1679     - CLEANUP: pools: rename pool_*_{from,to}_cache() to *_local_cache()
 1680     - CLEANUP: pools: rename __pool_free() to pool_put_to_shared_cache()
 1681     - MINOR: tools: add statistical_prng_range() to get a random number over a range
 1682     - MINOR: pools: use cheaper randoms for fault injections
 1683     - MINOR: pools: move the fault injector to __pool_alloc()
 1684     - MINOR: pools: split the OS-based allocator in two
 1685     - MINOR: pools: always use atomic ops to maintain counters
 1686     - MINOR: pools: move pool_free_area() out of the lock in the locked version
 1687     - MINOR: pools: factor the release code into pool_put_to_os()
 1688     - MEDIUM: pools: make CONFIG_HAP_POOLS control both local and shared pools
 1689     - MINOR: pools: create unified pool_{get_from,put_to}_cache()
 1690     - MINOR: pools: evict excess objects using pool_evict_from_local_cache()
 1691     - MEDIUM: pools: make pool_put_to_cache() always call pool_put_to_local_cache()
 1692     - CLEANUP: pools: make the local cache allocator fall back to the shared cache
 1693     - CLEANUP: pools: merge pool_{get_from,put_to}_local_caches with generic ones
 1694     - CLEANUP: pools: uninline pool_put_to_cache()
 1695     - CLEANUP: pools: declare dummy pool functions to remove some ifdefs
 1696     - BUILD: pools: fix build with DEBUG_FAIL_ALLOC
 1697     - BUG/MINOR: server: make srv_alloc_lb() allocate lb_nodes for consistent hash
 1698     - CONTRIB: mod_defender: import the minimal number of includes
 1699     - CONTRIB: mod_defender: make the code build with the embedded includes
 1700     - CONTRIB: modsecurity: import the minimal number of includes
 1701     - CONTRIB: modsecurity: make the code build with the embedded includes
 1702     - CLEANUP: sample: Improve local variables in sample_conv_json_query
 1703     - CLEANUP: sample: Explicitly handle all possible enum values from mjson
 1704     - CLEANUP: sample: Use explicit return for successful `json_query`s
 1705     - CLEANUP: lists/tree-wide: rename some list operations to avoid some confusion
 1706     - CONTRIB: move spoa_example out of the tree
 1707     - BUG/MINOR: server: free srv.lb_nodes in free_server
 1708     - BUG/MINOR: logs: free logsrv.conf.file on exit
 1709     - BUG/MEDIUM: server: ensure thread-safety of server runtime creation
 1710     - MINOR: server: add log on dynamic server creation
 1711     - MINOR: server: implement delete server cli command
 1712     - CONTRIB: move spoa_server out of the tree
 1713     - CONTRIB: move modsecurity out of the tree
 1714     - BUG/MINOR: server: fix potential null gcc error in delete server
 1715     - BUG/MAJOR: mux-h2: Properly detect too large frames when decoding headers
 1716     - BUG/MEDIUM: mux-h2: Fix dfl calculation when merging CONTINUATION frames
 1717     - BUG/MINOR: uri_normalizer: Use delim parameter when building the sorted query in uri_normalizer_query_sort
 1718     - CLEANUP: uri_normalizer: Remove trailing whitespace
 1719     - MINOR: uri_normalizer: Add a `strip-dot` normalizer
 1720     - CONTRIB: move mod_defender out of the tree
 1721     - CLEANUP: contrib: remove the last references to the now dead contrib/ directory
 1722     - BUG/MEDIUM: config: fix cpu-map notation with both process and threads
 1723     - MINOR: config: add a diag for invalid cpu-map statement
 1724     - BUG/MINOR: mworker/init: don't reset nb_oldpids in non-mworker cases
 1725     - BUG/MINOR: mworker: don't use oldpids[] anymore for reload
 1726     - BUILD: makefile: fix the "make clean" target on strict bourne shells
 1727     - IMPORT: slz: import slz into the tree
 1728     - BUILD: compression: switch SLZ from out-of-tree to in-tree
 1729     - CI: github: do not build libslz any more
 1730     - CLEANUP: compression: remove calls to SLZ init functions
 1731     - BUG/MEDIUM: mux-h2: Properly handle shutdowns when received with data
 1732     - MINOR: cpuset: define a platform-independent cpuset type
 1733     - MINOR: cfgparse: use hap_cpuset for parse_cpu_set
 1734     - MEDIUM: config: use platform independent type hap_cpuset for cpu-map
 1735     - MINOR: thread: implement the detection of forced cpu affinity
 1736     - MINOR: cfgparse: support the comma separator on parse_cpu_set
 1737     - MEDIUM: cfgparse: detect numa and set affinity if needed
 1738     - MINOR: global: add option to disable numa detection
 1739     - BUG/MINOR: haproxy: fix compilation on macOS
 1740     - BUG/MINOR: cpuset: fix compilation on platform without cpu affinity
 1741     - MINOR: time: avoid unneeded updates to now_offset
 1742     - MINOR: time: avoid overwriting the same values of global_now
 1743     - CLEANUP: time: use __tv_to_ms() in tv_update_date() instead of open-coding
 1744     - MINOR: time: avoid u64 needlessly expensive computations for the 32-bit now_ms
 1745     - BUG/MINOR: peers: remove useless table check if initial resync is finished
 1746     - BUG/MEDIUM: peers: re-work connection to new process during reload.
 1747     - BUG/MEDIUM: peers: re-work refcnt on table to protect against flush
 1748     - BUG/MEDIUM: config: fix missing initialization in numa_detect_topology()
 1749 
 1750 2021/04/09 : 2.4-dev16
 1751     - CLEANUP: dev/flags: remove useless test in the stdin number parser
 1752     - MINOR: No longer rely on deprecated sample fetches for predefined ACLs
 1753     - MINOR: acl: Add HTTP_2.0 predefined macro
 1754     - BUG/MINOR: hlua: Detect end of request when reading data for an HTTP applet
 1755     - BUG/MINOR: tools: fix parsing "us" unit for timers
 1756     - MINOR: server/bind: add support of new prefixes for addresses.
 1757     - MINOR: log: register config file and line number on log servers.
 1758     - MEDIUM: log: support tcp or stream addresses on log lines.
 1759     - BUG/MEDIUM: log: fix config parse error logging on stdout/stderr or any raw fd
 1760     - CLEANUP: fd: remove FD_POLL_DATA and FD_POLL_STICKY
 1761     - MEDIUM: fd: prepare FD_POLL_* to move to bits 8-15
 1762     - MEDIUM: fd: merge fdtab[].ev and state for FD_EV_* and FD_POLL_* into state
 1763     - MINOR: fd: move .linger_risk into fdtab[].state
 1764     - MINOR: fd: move .cloned into fdtab[].state
 1765     - MINOR: fd: move .initialized into fdtab[].state
 1766     - MINOR: fd: move .et_possible into fdtab[].state
 1767     - MINOR: fd: move .exported into fdtab[].state
 1768     - MINOR: fd: implement an exclusive syscall bit to remove the ugly "log" lock
 1769     - MINOR: cli/show-fd: slightly reorganize the FD status flags
 1770     - MINOR: atomic/arm64: detect and use builtins for the double-word CAS
 1771     - CLEANUP: atomic: add an explicit _FETCH variant for add/sub/and/or
 1772     - CLEANUP: atomic: make all standard add/or/and/sub operations return void
 1773     - CLEANUP: atomic: add a fetch-and-xxx variant for common operations
 1774     - CLEANUP: atomic: add HA_ATOMIC_INC/DEC for unit increments
 1775     - CLEANUP: atomic/tree-wide: replace single increments/decrements with inc/dec
 1776     - CLEANUP: atomic: use the __atomic variant of BTS/BTR on modern compilers
 1777     - MINOR: atomic: implement native BTS/BTR for x86
 1778     - MINOR: ist: Add `istappend(struct ist, char)`
 1779     - MINOR: ist: Add `istshift(struct ist*)`
 1780     - MINOR: ist: Add `istsplit(struct ist*, char)`
 1781     - BUG/MAJOR: fd: switch temp values to uint in fd_stop_both()
 1782     - MINOR: opentracing: register config file and line number on log servers
 1783     - MEDIUM: resolvers: add support of tcp address on nameserver line.
 1784     - MINOR: ist: Rename istappend() to __istappend()
 1785     - CLEANUP: htx: Make http_get_stline take a `const struct`
 1786     - CLEANUP: ist: Remove unused `count` argument from `ist2str*`
 1787     - CLEANUP: Remove useless malloc() casts
 1788 
 1789 2021/04/02 : 2.4-dev15
 1790     - BUG/MINOR: payload: Wait for more data if buffer is empty in payload/payload_lv
 1791     - BUG/MINOR: stats: Apply proper styles in HTML status page.
 1792     - BUG/MEDIUM: time: make sure to always initialize the global tick
 1793     - BUG/MINOR: tcp: fix silent-drop workaround for IPv6
 1794     - BUILD: tcp: use IPPROTO_IPV6 instead of SOL_IPV6 on FreeBSD/MacOS
 1795     - CLEANUP: socket: replace SOL_IP/IPV6/TCP with IPPROTO_IP/IPV6/TCP
 1796     - BUG/MINOR: http_fetch: make hdr_ip() resistant to empty fields
 1797     - BUG/MINOR: mux-h2: Don't emit log twice if an error occurred on the preface
 1798     - MINOR: stream: Don't trigger errors on destructive HTTP upgrades
 1799     - MINOR: frontend: Create HTTP txn for HTX streams
 1800     - MINOR: stream: Be sure to set HTTP analysers when creating an HTX stream
 1801     - BUG/MINOR: stream: Properly handle TCP>H1>H2 upgrades in http_wait_for_request
 1802     - BUG/MINOR: config: Add warning for http-after-response rules in TCP mode
 1803     - MINOR: muxes: Add a flag to notify a mux does not support any upgrade
 1804     - MINOR: mux-h1: Don't perform implicit HTTP/2 upgrade if not supported by mux
 1805     - MINOR: mux-pt: Don't perform implicit HTTP upgrade if not supported by mux
 1806     - MEDIUM: mux-h1: Expose h1 in the list of supported mux protocols
 1807     - MEDIUM: mux-pt: Expose passthrough in the list of supported mux protocols
 1808     - MINOR: muxes: Show muxes flags when the mux list is displayed
 1809     - DOC: config: Improve documentation about proto/check-proto keywords
 1810     - MINOR: stream: Use stream type instead of proxy mode when appropriate
 1811     - MINOR: filters/http-ana: Decide to filter HTTP headers in HTTP analysers
 1812     - MINOR: http-ana: Simplify creation/destruction of HTTP transactions
 1813     - MINOR: stream: Handle stream HTTP upgrade in a dedicated function
 1814     - MEDIUM: Add tcp-request switch-mode action to perform HTTP upgrade
 1815     - MINOR: config/proxy: Don't warn for HTTP rules in TCP if 'switch-mode http' set
 1816     - MINOR: config/proxy: Warn if a TCP proxy without backend is upgradable to HTTP
 1817     - DOC: config: Add documentation about TCP to HTTP upgrades
 1818     - REGTESTS: Add script to tests TCP to HTTP upgrades
 1819     - BUG/MINOR: payload/htx: Ingore L6 sample fetches for HTX streams/checks
 1820     - MINOR: htx: Make internal.strm.is_htx an internal sample fetch
 1821     - MINOR: action: Use a generic function to check validity of an action rule list
 1822     - MINOR: payload/config: Warn if a L6 sample fetch is used from an HTTP proxy
 1823     - MEDIUM: http-rules: Add wait-for-body action on request and response side
 1824     - REGTESTS: Add script to tests the wait-for-body HTTP action
 1825     - BUG/MINOR: http-fetch: Fix test on message state to capture the version
 1826     - CLEANUP: vars: always pre-initialize smp in vars_parse_cli_get_var()
 1827     - MINOR: global: define diagnostic mode of execution
 1828     - MINOR: cfgparse: diag for multiple nbthread statements
 1829     - MINOR: server: diag for 0 weight server
 1830     - MINOR: diag: create cfgdiag module
 1831     - MINOR: diag: diag if servers use the same cookie value
 1832     - MINOR: config: diag if global section after non-global
 1833     - TESTS: slightly reorganize the code in the tests/ directory
 1834     - TESTS: move tests/*.cfg to tests/config
 1835     - REGTESTS: ssl: "set ssl cert" and multi-certificates bundle
 1836     - REGTESTS: ssl: mark set_ssl_cert_bundle.vtc as broken
 1837     - CONTRIB: halog: fix issue with array of type char
 1838     - CONTRIB: tcploop: add a shutr command
 1839     - CONTRIB: debug: add the show-fd-to-flags script
 1840     - CONTRIB: debug: split poll from flags
 1841     - CONTRIB: move some dev-specific tools to dev/
 1842     - BUILD: makefile: always build the flags utility
 1843     - DEV: flags: replace the unneeded makefile with a README
 1844     - BUILD: makefile: integrate the hpack tools
 1845     - CONTRIB: merge ip6range with iprange
 1846     - CONTRIB: move some admin-related sub-projects to admin/
 1847     - CONTRIB: move halog to admin/
 1848     - ADMIN: halog: automatically enable USE_MEMCHR on the right glibc version
 1849     - BUILD: makefile: build halog with the correct flags
 1850     - BUILD: makefile: add a "USE_PROMEX" variable to ease building prometheus-exporter
 1851     - CONTRIB: move prometheus-exporter to addons/promex
 1852     - DOC: add a few words about USE_* and the addons directory
 1853     - CONTRIB: move 51Degrees to addons/51degrees
 1854     - CONTRIB: move src/da.c and contrib/deviceatlas to addons/deviceatlas
 1855     - CONTRIB: move src/wurfl.c and contrib/wurfl to addons/wurfl
 1856     - CONTRIB: move contrib/opentracing to addons/ot
 1857     - BUG/MINOR: opentracing: initialization after establishing daemon mode
 1858     - DOC: clarify that compression works for HTTP/2
 1859 
 1860 2021/03/27 : 2.4-dev14
 1861     - MEDIUM: quic: Fix build.
 1862     - MEDIUM: quic: Fix build.
 1863     - CI: codespell: whitelist "Dragan Dosen"
 1864     - CLEANUP: assorted typo fixes in the code and comments
 1865     - CI: github actions: update LibreSSL to 3.2.5
 1866     - REGTESTS: revert workaround for a crash with recent libressl on http-reuse sni
 1867     - CLEANUP: mark defproxy as const on parse tune.fail-alloc
 1868     - REGTESTS: remove unneeded experimental-mode in cli add server test
 1869     - REGTESTS: wait for proper return of enable server in cli add server test
 1870     - MINOR: compression: use pool_alloc(), not pool_alloc_dirty()
 1871     - MINOR: spoe: use pool_alloc(), not pool_alloc_dirty()
 1872     - MINOR: fcgi-app: use pool_alloc(), not pool_alloc_dirty()
 1873     - MINOR: cache: use pool_alloc(), not pool_alloc_dirty()
 1874     - MINOR: ssl: use pool_alloc(), not pool_alloc_dirty()
 1875     - MINOR: opentracing: use pool_alloc(), not pool_alloc_dirty()
 1876     - MINOR: dynbuf: make b_alloc() always check if the buffer is allocated
 1877     - CLEANUP: compression: do not test for buffer before calling b_alloc()
 1878     - CLEANUP: l7-retries: do not test the buffer before calling b_alloc()
 1879     - MINOR: channel: simplify the channel's buffer allocation
 1880     - MEDIUM: dynbuf: remove last usages of b_alloc_margin()
 1881     - CLEANUP: dynbuf: remove b_alloc_margin()
 1882     - CLEANUP: dynbuf: remove the unused b_alloc_fast() function
 1883     - CLEANUP: pools: remove the unused pool_get_first() function
 1884     - MINOR: pools: make the pool allocator support a few flags
 1885     - MINOR: pools: add pool_zalloc() to return a zeroed area
 1886     - CLEANUP: connection: use pool_zalloc() in conn_alloc_hash_node()
 1887     - CLEANUP: filters: use pool_zalloc() in flt_stream_add_filter()
 1888     - CLEANUP: spoe: use pool_zalloc() instead of pool_alloc+memset
 1889     - CLEANUP: frontend: use pool_zalloc() in frontend_accept()
 1890     - CLEANUP: mailers: use pool_zalloc() in enqueue_one_email_alert()
 1891     - CLEANUP: resolvers: use pool_zalloc() in resolv_link_resolution()
 1892     - CLEANUP: ssl: use pool_zalloc() in ssl_init_keylog()
 1893     - CLEANUP: tcpcheck: use pool_zalloc() instead of pool_alloc+memset
 1894     - CLEANUP: quic: use pool_zalloc() instead of pool_alloc+memset
 1895     - MINOR: time: also provide a global, monotonic global_now_ms timer
 1896     - BUG/MEDIUM: freq_ctr/threads: use the global_now_ms variable
 1897     - MINOR: tools: introduce new option PA_O_DEFAULT_DGRAM on str2sa_range.
 1898     - BUILD: tools: fix build error with new PA_O_DEFAULT_DGRAM
 1899     - BUG/MINOR: ssl: Prevent disk access when using "add ssl crt-list"
 1900     - CLEANUP: ssl: remove unused definitions
 1901     - BUILD: ssl: guard ecdh functions with SSL_CTX_set_tmp_ecdh macro
 1902     - MINOR: lua: Slightly improve function dumping the lua traceback
 1903     - BUG/MEDIUM: debug/lua: Use internal hlua function to dump the lua traceback
 1904     - BUG/MEDIUM: lua: Always init the lua stack before referencing the context
 1905     - MINOR: fd: make fd_clr_running() return the remaining running mask
 1906     - MINOR: fd: remove the unneeded running bit from fd_insert()
 1907     - BUG/MEDIUM: fd: do not wait on FD removal in fd_delete()
 1908     - CLEANUP: fd: remove unused fd_set_running_excl()
 1909     - CLEANUP: fd: slightly simplify up _fd_delete_orphan()
 1910     - BUG/MEDIUM: fd: Take the fd_mig_lock when closing if no DWCAS is available.
 1911     - BUG/MEDIUM: release lock on idle conn killing on reached pool high count
 1912     - BUG/MEDIUM: thread: Fix a deadlock if an isolated thread is marked as harmless
 1913     - MINOR: tools: make url2ipv4 return the exact number of bytes parsed
 1914     - BUG/MINOR: http_fetch: make hdr_ip() reject trailing characters
 1915     - BUG/MEDIUM: mux-h1: make h1_shutw_conn() idempotent
 1916     - BUG/MINOR: ssl: Fix update of default certificate
 1917     - BUG/MINOR: ssl: Prevent removal of crt-list line if the instance is a default one
 1918     - BUILD: ssl: introduce fine guard for ssl random extraction functions
 1919     - REORG: global: move initcall register code in a dedicated file
 1920     - REORG: global: move free acl/action in their related source files
 1921     - REORG: split proxy allocation functions
 1922     - MINOR: proxy: implement a free_proxy function
 1923     - MINOR: proxy: define cap PR_CAP_LUA
 1924     - MINOR: lua: properly allocate the lua Socket proxy
 1925     - MINOR: lua: properly allocate the lua Socket servers
 1926     - MINOR: vars: make get_vars() allow the session to be null
 1927     - MINOR: vars: make the var() sample fetch keyword depend on nothing
 1928     - CLEANUP: sample: remove duplicate "stopping" sample fetch keyword
 1929     - MINOR: sample: make smp_resolve_args() return an allocate error message
 1930     - MINOR: sample: add a new SMP_SRC_CONST sample capability
 1931     - MINOR: sample: mark the truly constant sample fetch keywords as such
 1932     - MINOR: sample: add a new CFG_PARSER context for samples
 1933     - MINOR: action: add a new ACT_F_CFG_PARSER origin designation
 1934     - MEDIUM: vars: add support for a "set-var" global directive
 1935     - REGTESTS: add a basic reg-test for some "set-var" commands
 1936     - MINOR: sample: add a new CLI_PARSER context for samples
 1937     - MINOR: action: add a new ACT_F_CLI_PARSER origin designation
 1938     - MINOR: vars/cli: add a "get var" CLI command to retrieve global variables
 1939     - MEDIUM: cli: add a new experimental "set var" command
 1940     - MINOR: compat: add short aliases for a few very commonly used types
 1941     - BUILD: ssl: use EVP_CIPH_GCM_MODE macro instead of HA_OPENSSL_VERSION
 1942     - MEDIUM: backend: use a trylock to grab a connection on high FD counts as well
 1943 
 1944 2021/03/19 : 2.4-dev13
 1945     - BUG/MEDIUM: cli: fix "help" crashing since recent spelling fixes
 1946     - BUG/MINOR: cfgparse: use the GLOBAL not LISTEN keywords list for spell checking
 1947     - MINOR: tools: improve word fingerprinting by counting presence
 1948     - MINOR: tools: do not sum squares of differences for word fingerprints
 1949     - MINOR: cli: improve fuzzy matching to work on all remaining words at once
 1950     - MINOR: cli: sort the suggestions by order of relevance
 1951     - MINOR: cli: limit spelling suggestions to 5
 1952     - MINOR: cfgparse/proxy: also support spelling fixes on options
 1953     - BUG/MINOR: resolvers: Add missing case-insensitive comparisons of DNS hostnames
 1954     - MINOR: time: export the global_now variable
 1955     - BUG/MINOR: freq_ctr/threads: make use of the last updated global time
 1956     - MINOR: freq_ctr/threads: relax when failing to update a sliding window value
 1957     - MINOR/BUG: mworker/cli: do not use the unix_bind prefix for the master CLI socket
 1958     - MINOR: mworker/cli: alert the user if we enabled a master CLI but not the master-worker mode
 1959     - MINOR: cli: implement experimental-mode
 1960     - REORG: server: add a free server function
 1961     - MINOR: cfgparse: always alloc idle conns task
 1962     - REORG: server: move keywords in srv_kws
 1963     - MINOR: server: remove fastinter from mistyped kw list
 1964     - REORG: server: split parse_server
 1965     - REORG: server: move alert traces in parse_server
 1966     - REORG: server: rename internal functions from parse_server
 1967     - REORG: server: attach servers in parse_server
 1968     - REORG: server: use flags for parse_server
 1969     - MINOR: server: prepare parsing for dynamic servers
 1970     - MINOR: stats: export function to allocate extra proxy counters
 1971     - MEDIUM: server: implement 'add server' cli command
 1972     - REGTESTS: implement test for 'add server' cli
 1973     - MINOR: server: enable standard options for dynamic servers
 1974     - MINOR: server: support keyword proto in 'add server' cli
 1975     - BUG/MINOR: protocol: add missing support of dgram unix socket.
 1976     - CLEANUP: Fix a typo in fix_is_valid description
 1977     - MINOR: raw_sock: Add a close method.
 1978     - MEDIUM: connections: Introduce a new XPRT method, start().
 1979     - MEDIUM: connections: Implement a start() method for xprt_handshake.
 1980     - MEDIUM: connections: Implement a start() method in ssl_sock.
 1981     - MINOR: muxes: garbage collect the reset() method.
 1982     - CLEANUP: tcp-rules: Fix a typo in error messages about expect-netscaler-cip
 1983     - MEDIUM: lua: Use a per-thread counter to track some non-reentrant parts of lua
 1984     - BUG/MEDIUM: debug/lua: Don't dump the lua stack if not dumpable
 1985 
 1986 2021/03/13 : 2.4-dev12
 1987     - CLEANUP: connection: Use `VAR_ARRAY` in `struct tlv` definition
 1988     - CLEANUP: connection: Remove useless test for NULL before calling `pool_free()`
 1989     - CLEANUP: connection: Use istptr / istlen for proxy_unique_id
 1990     - MINOR: connection: Use a `struct ist` to store proxy_authority
 1991     - CLEANUP: connection: Consistently use `struct ist` to process all TLV types
 1992     - BUILD: task: fix build at -O0 with threads disabled
 1993     - BUILD: bug: refine HA_LINK_ERROR() to only be used on gcc and derivatives
 1994     - CLEANUP: config: make the cfg_keyword parsers take a const for the defproxy
 1995     - BUILD: connection: do not use VAR_ARRAY in struct tlv
 1996     - BUG/MEDIUM: session: NULL dereference possible when accessing the listener
 1997     - MINOR: build: force CC to set a return code when probing options
 1998     - CLEANUP: stream: rename a few remaining occurrences of "stream *sess"
 1999     - BUG/MEDIUM: resolvers: handle huge responses over tcp servers.
 2000     - CLEANUP: config: also address the cfg_keyword API change in the compression code
 2001     - BUG/MEDIUM: ssl: properly remove the TASK_HEAVY flag at end of handshake
 2002     - BUG/MINOR: sample: Rename SenderComID/TargetComID to SenderCompID/TargetCompID
 2003     - MINOR: task: give the scheduler a bit more flexibility in the runqueue size
 2004     - OPTIM: task: automatically adjust the default runqueue-depth to the threads
 2005     - BUG/MINOR: connection: Missing QUIC initialization
 2006     - BUG/MEDIUM: stick-tables: fix ref counter in table entry using multiple http tracksc.
 2007     - BUILD: atomic/arm64: force the register pairs to use in __ha_cas_dw()
 2008     - BUG/MEDIUM: filters: Set CF_FL_ANALYZE on channels when filters are attached
 2009     - BUG/MINOR: tcpcheck: Update .health threshold of agent inside an agent-check
 2010     - BUG/MINOR: proxy/session: Be sure to have a listener to increment its counters
 2011     - BUG/MINOR: tcpcheck: Fix double free on error path when parsing tcp/http-check
 2012     - BUG/MINOR: server-state: properly handle the case where the base is not set
 2013     - BUG/MINOR: server-state: use the argument, not the global state
 2014     - CLEANUP: tcp-rules: add missing actions in the tcp-request error message
 2015     - CLEANUP: vars: make the error message clearer on missing arguments for set-var
 2016     - CLEANUP: http-rules: remove the unexpected comma before the list of action keywords
 2017     - CLEANUP: actions: the keyword must always be const from the rule
 2018     - MINOR: tools: add simple word fingerprinting to find similar-looking words
 2019     - MINOR: cfgparse: add cfg_find_best_match() to suggest an existing word
 2020     - MINOR: cfgparse: suggest correct spelling for unknown words in proxy sections
 2021     - MINOR: cfgparse: suggest correct spelling for unknown words in global section
 2022     - MINOR: cfgparse/server: try to fix spelling mistakes on server lines
 2023     - MINOR: cfgparse/bind: suggest correct spelling for unknown bind keywords
 2024     - MINOR: actions: add a function to suggest an action ressembling a given word
 2025     - MINOR: http-rules: suggest approaching action names on mismatch
 2026     - MINOR: tcp-rules: suggest approaching action names on mismatch
 2027     - BUG/MINOR: cfgparse/server: increment the extra keyword counter one at a time
 2028     - Revert "BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record"
 2029     - BUG/MINOR: resolvers: Consider server to have no IP on DNS resolution error
 2030     - BUG/MINOR: resolvers: Reset server address on DNS error only on status change
 2031     - BUG/MINOR: resolvers: Unlink DNS resolution to set RMAINT on SRV resolution
 2032     - BUG/MEDIUM: resolvers: Don't set an address-less server as UP
 2033     - BUG/MEDIUM: resolvers: Fix the loop looking for an existing ADD item
 2034     - MINOR: resolvers: new function find_srvrq_answer_record()
 2035     - BUG/MINOR; resolvers: Ignore DNS resolution for expired SRV item
 2036     - BUG/MEDIUM: resolvers: Trigger a DNS resolution if an ADD item is obsolete
 2037     - MINOR: resolvers: Use a function to remove answers attached to a resolution
 2038     - MINOR: resolvers: Purge answer items when a SRV resolution triggers an error
 2039     - MINOR: resolvers: Add function to change the srv status based on SRV resolution
 2040     - MINOR: resolvers: Directly call srvrq_update_srv_state() when possible
 2041     - BUG/MEDIUM: resolvers: Don't release resolution from a requester callbacks
 2042     - BUG/MEDIUM: resolvers: Skip DNS resolution at startup if SRV resolution is set
 2043     - MINOR: resolvers: Use milliseconds for cached items in resolver responses
 2044     - MINOR: resolvers: Don't try to match immediatly renewed ADD items
 2045     - CLEANUP: resolvers: Use ha_free() in srvrq_resolution_error_cb()
 2046     - CLEANUP: resolvers: Perform unsafe loop on requester list when possible
 2047     - BUG/MINOR: cli: make sure "help", "prompt", "quit" are enabled at master level
 2048     - CLEANUP: cli: fix misleading comment and better indent the access level flags
 2049     - MINOR: cli: set the ACCESS_MASTER* bits on the master bind_conf
 2050     - MINOR: cli: test the appctx level for master access instead of comparing pointers
 2051     - MINOR: cli: print the error message in the parser function itself
 2052     - MINOR: cli: filter the list of commands to the matching part
 2053     - MEDIUM: cli: apply spelling fixes for known commands before listing them
 2054     - MINOR: tools: add the ability to update a word fingerprint
 2055     - MINOR: cli: apply the fuzzy matching on the whole command instead of words
 2056     - CLEANUP: cli: rename MAX_STATS_ARGS to MAX_CLI_ARGS
 2057     - CLEANUP: cli: rename the last few "stats_" to "cli_"
 2058     - CLEANUP: task: make sure tasklet handlers always indicate their statuses
 2059     - CLEANUP: assorted typo fixes in the code and comments
 2060 
 2061 2021/03/05 : 2.4-dev11
 2062     - CI: codespell: skip Makefile for spell check
 2063     - CLEANUP: assorted typo fixes in the code and comments
 2064     - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule
 2065     - BUG/MINOR: connection: Use the client's dst family for adressless servers
 2066     - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1
 2067     - CLEANUP: Use ist2(const void*, size_t) whenever possible
 2068     - CLEANUP: Use IST_NULL whenever possible
 2069     - BUILD: proxy: Missing header inclusion for quic_transport_params_init()
 2070     - BUILD: quic: Implicit conversion between SSL related enums.
 2071     - DOC: spoe: Add a note about fragmentation support in HAProxy
 2072     - MINOR: contrib: add support for heartbeat control messages.
 2073     - MINOR: contrib: Enhance peers dissector heuristic.
 2074     - BUG/MINOR: mux-h2: Fix typo in scheme adjustment
 2075     - CLEANUP: Reapply the ist2() replacement patch
 2076     - CLEANUP: Use istadv(const struct ist, const size_t) whenever possible
 2077     - CLEANUP: Use isttest(const struct ist) whenever possible
 2078     - Revert "CI: Pin VTest to a known good commit"
 2079     - CLEANUP: backend: fix a wrong comment
 2080     - BUG/MINOR: backend: free allocated bind_addr if reuse conn
 2081     - MINOR: backend: handle reuse for conns with no server as target
 2082     - REGTESTS: test http-reuse if no server target
 2083     - BUG/MINOR: hlua: Don't strip last non-LWS char in hlua_pushstrippedstring()
 2084     - BUG/MINOR: server-state: Don't load server-state file for disabled backends
 2085     - CLEANUP: dns: Use DISGUISE() on a never-failing ring_attach() call
 2086     - CLEANUP: dns: Remove useless test on ns->dgram in dns_connect_nameserver()
 2087     - DOC: fix originalto except clause on destination address
 2088     - CLEANUP: Use the ist() macro whenever possible
 2089     - CLEANUP: Replace for loop with only a condition by while
 2090     - REORG: atomic: reimplement pl_cpu_relax() from atomic-ops.h
 2091     - BUG/MINOR: mt-list: always perform a cpu_relax call on failure
 2092     - MINOR: atomic: add armv8.1-a atomics variant for cas-dw
 2093     - MINOR: atomic: implement a more efficient arm64 __ha_cas_dw() using pairs
 2094     - BUG/MINOR: ssl: don't truncate the file descriptor to 16 bits in debug mode
 2095     - MEDIUM: pools: add CONFIG_HAP_NO_GLOBAL_POOLS and CONFIG_HAP_GLOBAL_POOLS
 2096     - MINOR: pools: double the local pool cache size to 1 MB
 2097     - MINOR: stream: use ABORT_NOW() and not abort() in stream_dump_and_crash()
 2098     - CLEANUP: stream: explain why we queue the stream at the head of the server list
 2099     - MEDIUM: backend: use a trylock when trying to grab an idle connection
 2100     - REORG: tools: promote the debug PRNG to more general use as a statistical one
 2101     - OPTIM: lb-random: use a cheaper PRNG to pick a server
 2102     - MINOR: task: stop abusing the nice field to detect a tasklet
 2103     - MINOR: task: move the nice field to the struct task only
 2104     - MEDIUM: task: extend the state field to 32 bits
 2105     - MINOR: task: add an application specific flag to the state: TASK_F_USR1
 2106     - MEDIUM: muxes: mark idle conns tasklets with TASK_F_USR1
 2107     - MINOR: xprt: add new xprt_set_idle and xprt_set_used methods
 2108     - MEDIUM: ssl: implement xprt_set_used and xprt_set_idle to relax context checks
 2109     - MINOR: server: don't read curr_used_conns multiple times
 2110     - CLEANUP: global: reorder some fields to respect cache lines
 2111     - CLEANUP: sockpair: silence a coverity check about fcntl()
 2112     - CLEANUP: lua: set a dummy file name and line number on the dummy servers
 2113     - MINOR: server: add a global list of all known servers
 2114     - MINOR: cfgparse: finish to set up servers outside of the proxy setup loop
 2115     - MINOR: server: allocate a per-thread struct for the per-thread connections stuff
 2116     - MINOR: server: move actconns to the per-thread structure
 2117     - CLEANUP: server: reorder some fields in the server struct to respect cache lines
 2118     - MINOR: backend: add a BUG_ON if conn mux NULL in connect_server
 2119     - BUG/MINOR: backend: fix condition for reuse on mode HTTP
 2120     - BUILD: Fix build when using clang without optimizing.
 2121     - CLEANUP: assorted typo fixes in the code and comments
 2122 
 2123 2021/02/26 : 2.4-dev10
 2124     - BUILD: SSL: introduce fine guard for RAND_keep_random_devices_open
 2125     - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes
 2126     - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert"
 2127     - BUG/MINOR: sample: secure convs that accept base64 string and var name as args
 2128     - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe
 2129     - CLEANUP: vars: make smp_fetch_var() to reuse vars_get_by_desc()
 2130     - DOC: muxes: add a diagram of the exchanges between muxes and outer world
 2131     - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop
 2132     - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe
 2133     - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal
 2134     - MINOR: stream: add an "epoch" to figure which streams appeared when
 2135     - MINOR: cli/streams: make "show sess" dump all streams till the new epoch
 2136     - MINOR: streams: use one list per stream instead of a global one
 2137     - MEDIUM: streams: do not use the streams lock anymore
 2138     - BUILD: dns: avoid a build warning when threads are disabled (dss unused)
 2139     - MEDIUM: task: remove the tasks_run_queue counter and have one per thread
 2140     - MINOR: tasks: do not maintain the rqueue_size counter anymore
 2141     - CLEANUP: tasks: use a less confusing name for task_list_size
 2142     - CLEANUP: task: move the tree root detection from __task_wakeup() to task_wakeup()
 2143     - MINOR: task: limit the remote thread wakeup to the global runqueue only
 2144     - MINOR: task: move the allocated tasks counter to the per-thread struct
 2145     - CLEANUP: task: split the large tasklet_wakeup_on() function in two
 2146     - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl()
 2147     - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned
 2148     - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record
 2149     - BUG/MINOR: resolvers: new callback to properly handle SRV record errors
 2150     - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records
 2151     - BUG/MEDIUM: resolvers: Reset address for unresolved servers
 2152     - DOC: Update the module list in MAINTAINERS file
 2153     - MINOR: htx: Add function to reserve the max possible size for an HTX DATA block
 2154     - DOC: Update the HTX API documentation
 2155     - DOC: Update the filters guide
 2156     - BUG/MEDIUM: contrib/prometheus-exporter: fix segfault in listener name dump
 2157     - MINOR: task: split the counts of local and global tasks picked
 2158     - MINOR: task: do not use __task_unlink_rq() from process_runnable_tasks()
 2159     - MINOR: task: don't decrement then increment the local run queue
 2160     - CLEANUP: task: re-merge __task_unlink_rq() with task_unlink_rq()
 2161     - MINOR: task: make grq_total atomic to move it outside of the grq_lock
 2162     - MINOR: tasks: also compute the tasklet latency when DEBUG_TASK is set
 2163     - MINOR: task: make tasklet wakeup latency measurements more accurate
 2164     - MINOR: server: Be more strict on the server-state line parsing
 2165     - MINOR: server: Only fill one array when parsing a server-state line
 2166     - MEDIUM: server: Refactor apply_server_state() to make it more readable
 2167     - CLEANUP: server: Rename state_line node to node instead of name_name
 2168     - CLEANUP: server: Rename state_line structure into server_state_line
 2169     - CLEANUP: server: Use a local eb-tree to store lines of the global server-state file
 2170     - MINOR: server: Be more strict when reading the version of a server-state file
 2171     - MEDIUM: server: Store parsed params of a server-state line in the tree
 2172     - MINOR: server: Remove cached line from global server-state tree when found
 2173     - MINOR: server: Move loading state of servers in a dedicated function
 2174     - MEDIUM: server: Use a tree to store local server-state lines
 2175     - MINOR: server: Parse and store server-state lines in a dedicated function
 2176     - MEDIUM: server: Don't load server-state file if a line is corrupted
 2177     - REORG: server: Export and rename some functions updating server info
 2178     - REORG: server-state: Move functions to deal with server-state in its own file
 2179     - MINOR: server-state: Don't load server-state file for serverless proxies
 2180     - CLEANUP: muxes: Remove useless if condition in show_fd function
 2181     - BUG/MINOR: stats: fix compare of no-maint url suffix
 2182     - MINOR: task: limit the number of subsequent heavy tasks with flag TASK_HEAVY
 2183     - MINOR: ssl: mark the SSL handshake tasklet as heavy
 2184     - CLEANUP: server: rename srv_cleanup_{idle,toremove}_connections()
 2185     - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup()
 2186     - MINOR: task: add one extra tasklet class: TL_HEAVY
 2187     - MINOR: task: place the heavy elements in TL_HEAVY
 2188     - MINOR: task: only limit TL_HEAVY tasks but not others
 2189     - BUG/MINOR: http-ana: Only consider dst address to process originalto option
 2190     - MINOR: tools: Add net_addr structure describing a network addess
 2191     - MINOR: tools: Add function to compare an address to a network address
 2192     - MEDIUM: http-ana: Add IPv6 support for forwardfor and orignialto options
 2193     - CLEANUP: hlua: Use net_addr structure internally to parse and compare addresses
 2194     - REGTESTS: Add script to test except param for fowardedfor/originalto options
 2195     - DOC: scheduler: add a diagram showing the different queues and their usages
 2196     - CLEANUP: tree-wide: replace free(x);x=NULL with ha_free(&x)
 2197     - CLEANUP: config: replace a few free() with ha_free()
 2198     - CLEANUP: vars: always zero the pointers after a free()
 2199     - CLEANUP: ssl: remove a useless "if" before freeing an error message
 2200     - CLEANUP: ssl: make ssl_sock_free_srv_ctx() zero the pointers after free
 2201     - CLEANUP: ssl: use realloc() instead of free()+malloc()
 2202 
 2203 2021/02/20 : 2.4-dev9
 2204     - BUG/MINOR: server: Remove RMAINT from admin state when loading server state
 2205     - CLEANUP: check: fix get_check_status_info declaration
 2206     - CLEANUP: contrib/prometheus-exporter: align for with srv status case
 2207     - MEDIUM: stats: allow to select one field in `stats_fill_li_stats`
 2208     - MINOR: stats: add helper to get status string
 2209     - MEDIUM: contrib/prometheus-exporter: add listen stats
 2210     - BUG/MINOR: dns: add test on result getting value from buffer into ring.
 2211     - BUG/MINOR: dns: dns_connect_server must return -1 unsupported nameserver's type
 2212     - BUG/MINOR: dns: missing test writing in output channel in session handler
 2213     - BUG/MINOR: dns: fix ring attach control on dns_session_new
 2214     - BUG/MEDIUM: dns: fix multiple double close on fd in dns.c
 2215     - BUG/MAJOR: connection: prevent double free if conn selected for removal
 2216     - BUG/MINOR: session: atomically increment the tracked sessions counter
 2217     - REGTESTS: fix http_reuse_conn_hash proxy test
 2218     - BUG/MINOR: backend: do not call smp_make_safe for sni conn hash
 2219     - MINOR: connection: remove pointers for prehash in conn_hash_params
 2220     - BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
 2221     - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust()
 2222     - DEBUG: thread: add 5 extra lock labels for statistics and debugging
 2223     - OPTIM: server: switch the actconn list to an mt-list
 2224     - Revert "MINOR: threads: change lock_t to an unsigned int"
 2225     - MINOR: lb/api: let callers of take_conn/drop_conn tell if they have the lock
 2226     - OPTIM: lb-first: do not take the server lock on take_conn/drop_conn
 2227     - OPTIM: lb-leastconn: do not take the server lock on take_conn/drop_conn
 2228     - OPTIM: lb-leastconn: do not unlink the server if it did not change
 2229     - MINOR: tasks: add DEBUG_TASK to report caller info in a task
 2230     - MINOR: tasks/debug: add some extra controls of use-after-free in DEBUG_TASK
 2231     - BUG/MINOR: sample: Always consider zero size string samples as unsafe
 2232     - MINOR: cli: add missing agent commands for set server
 2233     - BUILD/MEDIUM: da Adding pcre2 support.
 2234     - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions
 2235     - REGTESTS: reorder reuse conn proxy protocol test
 2236     - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared
 2237     - MINOR: tasks: refine the default run queue depth
 2238     - MINOR: listener: refine the default MAX_ACCEPT from 64 to 4
 2239     - MINOR: mux_h2: do not try to remove front conn from idle trees
 2240     - REGTESTS: workaround for a crash with recent libressl on http-reuse sni
 2241     - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ().
 2242     - MINOR: connection: allocate dynamically hash node for backend conns
 2243     - DOC: DeviceAtlas documentation typo fix.
 2244     - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer
 2245     - BUG/MINOR: http-rules: Always replace the response status on a return action
 2246     - BUG/MINOR: server: Init params before parsing a new server-state line
 2247     - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line
 2248     - MEDIUM: server: Don't introduce a new server-state file version
 2249     - DOC: contrib/prometheus-exporter: remove htx reference
 2250     - REGTESTS: contrib/prometheus-exporter: test NaN values
 2251     - REGTESTS: contrib/prometheus-exporter: test well known labels
 2252     - CI: github actions: switch to stable LibreSSL release
 2253     - BUG/MINOR: server: Fix test on number of fields allowed in a server-state line
 2254     - MINOR: dynbuf: make the buffer wait queue per thread
 2255     - MINOR: dynbuf: use regular lists instead of mt_lists for buffer_wait
 2256     - MINOR: dynbuf: pass offer_buffers() the number of buffers instead of a threshold
 2257     - MINOR: sched: have one runqueue ticks counter per thread
 2258 
 2259 2021/02/13 : 2.4-dev8
 2260     - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro
 2261     - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro
 2262     - BUG/MINOR: mux-h1: Don't emit extra CRLF for empty chunked messages
 2263     - MINOR: contrib/prometheus-exporter: use stats desc when possible followup
 2264     - MEDIUM: contrib/prometheus-exporter: export base stick table stats
 2265     - CLEANUP: assorted typo fixes in the code and comments
 2266     - CLEANUP: check: fix some typo in comments
 2267     - CLEANUP: tools: typo in `strl2irc` mention
 2268     - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro
 2269     - MEDIUM: ssl: add a rwlock for SSL server session cache
 2270     - BUG/MINOR: intops: fix mul32hi()'s off-by-one
 2271     - BUG/MINOR: freq_ctr: fix a wrong delay calculation in next_event_delay()
 2272     - MINOR: stick-tables/counters: add http_fail_cnt and http_fail_rate data types
 2273     - MINOR: ssl: add SSL_SERVER_LOCK label in threads.h
 2274     - BUG/MINOR: mux-h1: Don't increment HTTP error counter for 408/500/501 errors
 2275     - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors
 2276     - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state
 2277     - BUG/MINOR: mux-h1: Fix data skipping for bodyless responses
 2278     - BUG/MINOR: mux-h1: Don't blindly skip EOT block for non-chunked messages
 2279     - BUG/MEDIUM: mux-h2: Add EOT block when EOM flag is set on an empty HTX message
 2280     - MINOR: mux-h1: Be sure EOM flag is set when processing end of outgoing message
 2281     - REGTESTS: Add a script to test payload skipping for bodyless HTTP responses
 2282     - BUG/MINOR: server: re-align state file fields number
 2283     - CLEANUP: muxes: Remove useless calls to b_realign_if_empty()
 2284     - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints()
 2285     - CLEANUP: remove unused variable assigned found by Coverity
 2286     - CLEANUP: queue: Remove useless tests on p or pp in pendconn_process_next_strm()
 2287     - BUG/MINOR: backend: hold correctly lock when killing idle conn
 2288     - MEDIUM: connection: protect idle conn lists with locks
 2289     - MEDIUM: connection: replace idle conn lists by eb trees
 2290     - MINOR: backend: search conn in idle/safe trees after available
 2291     - MINOR: backend: search conn in idle tree after safe on always reuse
 2292     - MINOR: connection: prepare hash calcul for server conns
 2293     - MINOR: connection: use the srv pointer for the srv conn hash
 2294     - MINOR: backend: compare conn hash for session conn reuse
 2295     - MINOR: connection: use sni as parameter for srv conn hash
 2296     - MINOR: reg-tests: test http-reuse with sni
 2297     - MINOR: backend: rewrite alloc of stream target address
 2298     - MINOR: connection: use dst addr as parameter for srv conn hash
 2299     - MINOR: reg-test: test http-reuse with specific dst addr
 2300     - MINOR: backend: rewrite alloc of connection src address
 2301     - MINOR: connection: use src addr as parameter for srv conn hash
 2302     - MINOR: connection: use proxy protocol as parameter for srv conn hash
 2303     - MINOR: reg-tests: test http-reuse with proxy protocol
 2304     - MINOR: doc: update http reuse for new eligilible connections
 2305     - BUG/MINOR: backend: fix compilation without ssl
 2306     - REGTESTS: adjust http_reuse_conn_hash requirements
 2307     - REGTESTS: deactivate a failed test on CI in http_reuse_conn_hash
 2308     - REGTESTS: fix sni used in http_reuse_conn_hash for libressl 3.3.0
 2309     - CI: cirrus: update FreeBSD image to 12.2
 2310     - MEDIUM: cli: add check-addr command
 2311     - MEDIUM: cli: add agent-port command
 2312     - MEDIUM: server: add server-states version 2
 2313     - MEDIUM: server: support {check,agent}_addr, agent_port in server state
 2314     - MINOR: server: enhance error precision when applying server state
 2315     - BUG/MINOR: server: Fix server-state-file-name directive
 2316     - CLEANUP: deinit: release global and per-proxy server-state variables on deinit
 2317     - BUG/MEDIUM: config: don't pick unset values from last defaults section
 2318     - BUG/MINOR: stats: revert the change on ST_CONVDONE
 2319     - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines
 2320     - BUG/MINOR: http-htx: defpx must be a const in proxy_dup_default_conf_errors()
 2321     - BUG/MINOR: tcpheck: the source list must be a const in dup_tcpcheck_var()
 2322     - BUILD: proxy: add missing compression-t.h to proxy-t.h
 2323     - REORG: move init_default_instance() to proxy.c and pass it the defproxy pointer
 2324     - REORG: proxy: centralize the proxy allocation code into alloc_new_proxy()
 2325     - MEDIUM: proxy: only take defaults when a default proxy is passed.
 2326     - MINOR: proxy: move the defproxy freeing code to proxy.c
 2327     - MINOR: proxy: always properly reset the just freed default instance pointers
 2328     - BUG/MINOR: extcheck: proxy_parse_extcheck() must take a const for the defproxy
 2329     - BUG/MINOR: tcpcheck: proxy_parse_*check*() must take a const for the defproxy
 2330     - BUG/MINOR: server: parse_server() must take a const for the defproxy
 2331     - MINOR: cfgparse: move defproxy to cfgparse-listen as a static
 2332     - MINOR: proxy: add a new capability PR_CAP_DEF
 2333     - MINOR: cfgparse: check PR_CAP_DEF instead of comparing poiner against defproxy
 2334     - MINOR: cfgparse: use a pointer to the current default proxy
 2335     - MINOR: proxy: also store the name for a defaults section
 2336     - MINOR: proxy: support storing defaults sections into their own tree
 2337     - MEDIUM: proxy: store the default proxies in a tree by name
 2338     - MEDIUM: cfgparse: allow a proxy to designate the defaults section to use
 2339     - MINOR: http: add baseq sample fetch
 2340     - CLEANUP: tcpcheck: Remove a useless test on port variable
 2341     - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
 2342     - CLEANUP: server: Remove useless "filepath" variable in apply_server_state()
 2343     - MINOR: peers/cli: do not dump the peers dictionaries by default on "show peers"
 2344     - MINOR: cfgparse: implement a simple if/elif/else/endif macro block handler
 2345     - DOC: tune: explain the origin of block size for ssl.cachesize
 2346     - MINOR: tcp: add support for defer-accept on FreeBSD.
 2347     - MINOR: ring: adds new ring_init function.
 2348     - CLEANUP: channel: fix comment in ci_putblk.
 2349     - BUG/MINOR: dns: add missing sent counter and parent id to dns counters.
 2350     - BUG/MINOR: resolvers: fix attribute packed struct for dns
 2351     - MINOR: resolvers: renames some resolvers internal types and removes dns prefix
 2352     - MINOR: resolvers: renames type dns_resolvers to resolvers.
 2353     - MINOR: resolvers: renames some resolvers specific types to not use dns prefix
 2354     - MINOR: resolvers: renames some dns prefixed types using resolv prefix.
 2355     - MINOR: resolvers: renames resolvers DNS_RESP_* errcodes RSLV_RESP_*
 2356     - MINOR: resolvers: renames resolvers DNS_UPD_* returncodes to RSLV_UPD_*
 2357     - MINOR: resolvers: rework prototype suffixes to split resolving and dns.
 2358     - MEDIUM: resolvers: move resolvers section parsing from cfgparse.c to dns.c
 2359     - MINOR: resolvers: replace nameserver's resolver ref by generic parent pointer
 2360     - MINOR: resolvers: rework dns stats prototype because specific to resolvers
 2361     - MEDIUM: resolvers: split resolving and dns message exchange layers.
 2362     - MEDIUM: resolvers/dns: split dns.c into dns.c and resolvers.c
 2363     - MEDIUM: dns: adds code to support pipelined DNS requests over TCP.
 2364     - MEDIUM: resolvers: add supports of TCP nameservers in resolvers.
 2365 
 2366 2021/02/05 : 2.4-dev7
 2367     - BUG/MINOR: stats: Continue to fill frontend stats on unimplemented metric
 2368     - BUILD: ssl: guard Client Hello callbacks with HAVE_SSL_CLIENT_HELLO_CB macro instead of openssl version
 2369     - BUG/MINOR: stats: Init the metric variable when frontend stats are filled
 2370     - MINOR: contrib/prometheus-exporter: better output of Not-a-Number
 2371     - CLEANUP: stats: improve field selection for frontend http fields
 2372     - CLEANUP: assorted typo fixes in the code and comments
 2373     - DOC: Improve documentation of the various hdr() fetches
 2374     - MEDIUM: stats: allow to select one field in `stats_fill_be_stats`
 2375     - MINOR: contrib/prometheus-exporter: use fill_be_stats for backend dump
 2376     - MEDIUM: stats: allow to select one field in `stats_fill_sv_stats`
 2377     - MINOR: contrib/prometheus-exporter: use fill_sv_stats for server dump
 2378     - MINOR: abort() on my_unreachable() when DEBUG_USE_ABORT is set.
 2379     - BUG/MEDIUM: filters/htx: Fix data forwarding when payload length is unknown
 2380     - BUG/MINOR: config: fix leak on proxy.conn_src.bind_hdr_name
 2381     - MINOR: reg-tests: add http-reuse test
 2382     - CLEANUP: srv: fix comment for pool-max-conn
 2383     - CLEANUP: backend: remove an obsolete comment on conn_backend_get
 2384     - REORG: backend: simplify conn_backend_get
 2385     - MINOR: ssl: Server ssl context prepare function refactoring
 2386     - MINOR: ssl: Certificate chain loading refactorization
 2387     - MEDIUM: ssl: Load client certificates in a ckch for backend servers
 2388     - MEDIUM: ssl: Enable backend certificate hot update
 2389     - MINOR: ssl: Remove client_crt member of the server's ssl context
 2390     - CLEANUP: ssl/cli: rework free in cli_io_handler_commit_cert()
 2391     - CLEANUP: ssl: remove SSL_CTX function parameter
 2392     - CLEANUP: ssl: make load_srv_{ckchs,cert} match their bind counterpart
 2393     - BUILD: Include stdlib.h in compiler.h if DEBUG_USE_ABORT is set
 2394     - CI: Fix DEBUG_STRICT definition for Coverity
 2395     - BUG/MINOR: stats: Remove a break preventing ST_F_QCUR to be set for servers
 2396     - BUG/MINOR: stats: Add a break after filling ST_F_MODE field for servers
 2397     - CLEANUP: ssl: remove dead code in ckch_inst_new_load_srv_store()
 2398     - BUG/MINOR: ssl: init tmp chunk correctly in ssl_sock_load_sctl_from_file()
 2399     - BUG/MEDIUM: session: only retrieve ready idle conn from session
 2400     - BUG/MEDIUM: backend: never reuse a connection for tcp mode
 2401     - REGTESTS: set_ssl_server_cert.vtc: remove the abort command
 2402     - REGTESTS: set_ssl_server_cert.vtc: check the Sha1 Fingerprint
 2403     - REGTESTS: set_ssl_server_cert.vtc: check the sha1 from the server
 2404     - MEDIUM: stream-int: Take care of EOS if the SI wake callback function
 2405     - MINOR: mux-h1: Try to wake up data layer first before calling its wake callback
 2406     - MINOR: mux-h1: Wake up H1C after its creation if input buffer is not empty
 2407     - MEDIUM: mux-h1: Add ST_READY state for the H1 connections
 2408     - MINOR: stream: Add a function to validate TCP to H1 upgrades
 2409     - MEDIUM: http-ana: Do nothing in wait-for-request analyzer if not htx
 2410     - BUG/MEDIUM: stream: Don't immediatly ack the TCP to H1 upgrades
 2411     - BUG/MAJOR: mux-h1: Properly handle TCP to H1 upgrades
 2412     - MINOR: htx/http-ana: Save info about Upgrade option in the Connection header
 2413     - MEDIUM: http-ana: Refuse invalid 101-switching-protocols responses
 2414     - BUG/MINOR: h2/mux-h2: Reject 101 responses with a PROTOCOL_ERROR h2s error
 2415     - MINOR: mux-h1/mux-fcgi: Don't set TUNNEL mode if payload length is unknown
 2416     - MINOR: mux-h1: Split H1C_F_WAIT_OPPOSITE flag to separate input/output sides
 2417     - MINOR: mux-h2: Add 2 flags to help to properly handle tunnel mode
 2418     - MEDIUM: mux-h2: Block client data on server side waiting tunnel establishment
 2419     - MEDIUM: mux-h2: Close streams when processing data for an aborted tunnel
 2420     - MEDIUM: mux-h1: Properly handle tunnel establishments and aborts
 2421     - BUG/MAJOR: mux-h1/mux-h2/htx: Fix HTTP tunnel management at the mux level
 2422     - MINOR: htx: Rename HTX_FL_EOI flag into HTX_FL_EOM
 2423     - REGTESTS: Don't run http_msg_full_on_eom script on the 2.4 anymore
 2424     - MINOR: htx: Add a function to know if a block is the only one in a message
 2425     - MAJOR: htx: Remove the EOM block type and use HTX_FL_EOM instead
 2426     - MINOR: mux-h1: Add a flag on H1 streams with a response known to be bodyless
 2427     - MEDIUM: mux-h1: Don't emit any payload for bodyless responses
 2428     - MINOR: mux-h1: Don't emit C-L and T-E headers for 204 and 1xx responses
 2429     - MINOR: mux-h1: Don't add Connection close/keep-alive header for 1xx messages
 2430     - MINOR: h2/mux-h2: Add flags to notify the response is known to have no body
 2431     - MEDIUM: mux-h2: Don't emit DATA frame for bodyless responses
 2432     - MEDIUM: http-ana: Deal with L7 retries in HTTP analysers
 2433     - MINOR: h1: reject websocket handshake if missing key
 2434     - MEDIUM: h1: generate WebSocket key on response if needed
 2435     - MINOR: mux_h2: define H2_SF_EXT_CONNECT_SENT stream flag
 2436     - MEDIUM: h2: parse Extended CONNECT reponse to htx
 2437     - MEDIUM: mux_h2: generate Extended CONNECT from htx upgrade
 2438     - MEDIUM: h1: add a WebSocket key on handshake if needed
 2439     - MEDIUM: mux_h2: generate Extended CONNECT response
 2440     - MEDIUM: h2: parse Extended CONNECT request to htx
 2441     - MEDIUM: h2: send connect protocol h2 settings
 2442     - MINOR: vtc: add test for h1/h2 protocol upgrade translation
 2443     - MINOR: vtc: add websocket test
 2444     - REGTESTS: Fix required versions for several scripts
 2445     - REGTEST: Don't use the websocket to validate http-check
 2446     - MINOR: mux-h1/trace: add traces at level ERROR for all kind of errors
 2447     - MINOR: mux-fcgi/trace: add traces at level ERROR for all kind of errors
 2448     - MINOR: h1: Raise the chunk size limit up to (2^52 - 1)
 2449     - BUG/MEDIUM: listener: do not accept connections faster than we can process them
 2450     - REGTESTS: set_ssl_server_cert.vtc: set as broken
 2451     - Revert "BUG/MEDIUM: listener: do not accept connections faster than we can process them"
 2452     - BUG/MINOR: backend: check available list allocation for reuse
 2453     - CI: Fix the coverity builds
 2454     - DOC: management: fix "show resolvers" alphabetical ordering
 2455     - MINOR: tools: add print_time_short() to print a condensed duration value
 2456     - MINOR: activity: make profiling more manageable
 2457     - MINOR: activity: declare a new structure to collect per-function activity
 2458     - MEDIUM: tasks/activity: collect per-task statistics when profiling is enabled
 2459     - MINOR: activity: also report collected tasks stats in "show profiling"
 2460     - MINOR: activity: flush scheduler stats on "set profiling tasks on"
 2461     - MINOR: activity: add a new "show tasks" command to list currently active tasks
 2462     - MINOR: listener: export accept_queue_process
 2463     - MINOR: session: export session_expire_embryonic()
 2464     - MINOR: muxes: export the timeout and shutr task handlers
 2465     - MINOR: checks: export a few functions that appear often in trace dumps
 2466     - MINOR: peers: export process_peer_sync() to improve traces
 2467     - MINOR: stick-tables: export process_table_expire()
 2468     - MINOR: mux-h1: Remove first useless test on count in h1_process_output()
 2469     - BUG/MINOR: stick-table: Always call smp_fetch_src() with a valid arg list
 2470     - MINOR: http-fetch: Don't check if argument list is set in sample fetches
 2471     - MINOR: http-conv: Don't check if argument list is set in sample converters
 2472     - MINOR: sample: Don't check if argument list is set in sample fetches
 2473     - MINOR: ssl-sample: Don't check if argument list is set in sample fetches
 2474     - MINOR: mux-h2: Don't tests the start-line when sending HEADERS frame
 2475     - MINOR: mux-h2: Slightly improve request HEADERS frames sending
 2476     - MINOR: contrib/prometheus-exporter: declare states for objects
 2477     - MAJOR: contrib/prometheus-exporter: move ftd/bkd/srv states to labels
 2478     - MEDIUM: contrib/prometheus-exporter: Use dynamic labels instead of static ones
 2479     - MINOR: listener: export manage_global_listener_queue()
 2480     - BUG/MINOR: activity: take care of late wakeups in "show tasks"
 2481     - REGTESTS: set_ssl_server_cert.vtc: remove SSL caching and set as working
 2482     - REGTESTS: set_ssl_server_cert: cleanup the SSL caching option
 2483     - MINOR: checks: Add function to get the result code corresponding to a status
 2484     - MAJOR: contrib/prometheus-exporter: move health check status to labels
 2485     - MINOR: contrib/prometheus-exporter: improve service status description field
 2486     - MINOR: stats: improve pending connections description
 2487     - MINOR: stats: improve max stats descriptions
 2488     - MINOR: contrib/prometheus-exporter: use stats desc when possible
 2489     - MINOR: contrib/prometheus-exporter: add uweight field
 2490     - MINOR: contrib/prometheus-exporter: add recv logs_logs_total field
 2491     - CLEANUP: contrib/prometheus-exporter: remove unused includes
 2492     - CLEANUP: contrib/prometheus-exporter: align and reorder fields
 2493     - CLEANUP: contrib/prometheus-exporter: remove description in README
 2494     - DOC: contrib/prometheus-exporter: Add missing metrics in README
 2495     - BUG/MINOR: contrib/prometheus-exporter: Add missing label for ST_F_HRSP_1XX
 2496     - BUG/MINOR: contrib/prometheus-exporter: Restart labels dump at the right pos
 2497     - BUG/MEDIUM: ssl/cli: abort ssl cert is freeing the old store
 2498     - BUG/MEDIUM: ssl: check a connection's status before computing a handshake
 2499     - BUG/MINOR: mux_h2: fix incorrect stat titles
 2500     - MINOR: ssl/cli: flush the server session cache upon 'commit ssl cert'
 2501     - BUG/MINOR: cli: fix set server addr/port coherency with health checks
 2502     - MINOR: server: Don't set the check port during the update from a state file
 2503     - MINOR: dns: Don't set the check port during a server dns resolution
 2504     - MEDIUM: check: remove checkport checkaddr flag
 2505     - MEDIUM: server: adding support for check_port in server state
 2506     - BUG/MINOR: check: consitent way to set agentaddr
 2507     - MEDIUM: check: align agentaddr and agentport behaviour
 2508     - DOC: server: Add missing params in comment of the server state line parsing
 2509     - BUG/MINOR: xxhash: make sure armv6 uses memcpy()
 2510     - REGTESTS: mark http-check-send.vtc as 2.4-only
 2511     - REGTESTS: mark sample_fetches/hashes.vtc as 2.4-only
 2512     - BUG/MINOR: ssl: do not try to use early data if not configured
 2513     - REGTESTS: unbreak http-check-send.vtc
 2514     - MINOR: cli/show_fd: report local and report ports when known
 2515     - BUILD: Makefile: move REGTESTST_TYPE default setting
 2516     - BUG/MEDIUM: mux-h2: handle remaining read0 cases
 2517     - CLEANUP: http-htx: Set buffer area to NULL instead of malloc(0)
 2518     - BUG/MINOR: sock: Unclosed fd in case of connection allocation failure
 2519     - BUG/MEDIUM: mux-h2: do not quit the demux loop before setting END_REACHED
 2520 
 2521 2021/01/22 : 2.4-dev6
 2522     - MINOR: converter: adding support for url_enc
 2523     - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
 2524     - BUILD: ssl: guard EVP_PKEY_get_default_digest_nid with ASN1_PKEY_CTRL_DEFAULT_MD_NID
 2525     - BUILD: ssl: guard openssl specific with SSL_READ_EARLY_DATA_SUCCESS
 2526     - BUILD: Makefile: exclude broken tests by default
 2527     - CLEANUP: cfgparse: replace "realloc" with "my_realloc2" to fix to memory leak on error
 2528     - BUG/MINOR: hlua: Fix memory leak in hlua_alloc
 2529     - MINOR: contrib/prometheus-exporter: export build_info
 2530     - DOC: fix some spelling issues over multiple files
 2531     - CLEANUP: Fix spelling errors in comments
 2532     - SCRIPTS: announce-release: fix typo in help message
 2533     - CI: github: add a few more words to the codespell ignore list
 2534     - DOC: Add maintainers for the Prometheus exporter
 2535     - BUG/MINOR: sample: fix concat() converter's corruption with non-string variables
 2536     - BUG/MINOR: server: Memory leak of proxy.used_server_addr during deinit
 2537     - CLEANUP: sample: remove uneeded check in json validation
 2538     - MINOR: reg-tests: add a way to add service dependency
 2539     - BUG/MINOR: sample: check alloc_trash_chunk return value in concat()
 2540     - BUG/MINOR: reg-tests: fix service dependency script
 2541     - MINOR: reg-tests: add base prometheus test
 2542     - Revert "BUG/MINOR: dns: SRV records ignores duplicated AR records"
 2543     - BUG/MINOR: sample: Memory leak of sample_expr structure in case of error
 2544     - BUG/MINOR: check: Don't perform any check on servers defined in a frontend
 2545     - BUG/MINOR: init: enforce strict-limits when using master-worker
 2546     - MINOR: contrib/prometheus-exporter: avoid connection close header
 2547     - MINOR: contrib/prometheus-exporter: use fill_info for process dump
 2548     - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable
 2549     - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities
 2550     - MINOR: server: Forbid server definitions in frontend sections
 2551     - BUG/MINOR: threads: Fixes the number of possible cpus report for Mac.
 2552     - CLEANUP: pattern: rename pat_ref_commit() to pat_ref_commit_elt()
 2553     - MINOR: pattern: add the missing generation ID manipulation functions
 2554     - MINOR: peers: Add traces for peer control messages.
 2555     - BUG/MINOR: dns: SRV records ignores duplicated AR records (v2)
 2556     - BUILD: peers: fix build warning about unused variable
 2557     - BUG/MEDIUM: stats: add missing INF_BUILD_INFO definition
 2558     - MINOR: cache: Do not store responses with an unknown encoding
 2559     - BUG/MINOR: peers: Possible appctx pointer dereference.
 2560     - MINOR: build: discard echoing in help target
 2561     - MINOR: cache: Remove the `hash` part of the accept-encoding secondary key
 2562     - CLEANUP: cache: Use proper data types in secondary_key_cmp()
 2563     - CLEANUP: Rename accept_encoding_hash_cmp to accept_encoding_bitmap_cmp
 2564     - BUG/MINOR: peers: Wrong "new_conn" value for "show peers" CLI command.
 2565     - MINOR: contrib: Make the wireshark peers dissector compile for more distribs.
 2566     - BUG/MINOR: mux_h2: missing space between "st" and ".flg" in the "show fd" helper
 2567     - CLEANUP: tools: make resolve_sym_name() take a const pointer
 2568     - CLEANUP: cli: make "show fd" use a const connection to access other fields
 2569     - MINOR: cli: make "show fd" also report the xprt and xprt_ctx
 2570     - MINOR: xprt: add a new show_fd() helper to complete some "show fd" dumps.
 2571     - MINOR: ssl: provide a "show fd" helper to report important SSL information
 2572     - MINOR: xprt/mux: export all *_io_cb functions so that "show fd" resolves them
 2573     - MINOR: mux-h2: make the "show fd" helper also decode the h2s subscriber when known
 2574     - MINOR: mux-h1: make the "show fd" helper also decode the h1s subscriber when known
 2575     - MINOR: mux-fcgi: make the "show fd" helper also decode the fstrm subscriber when known
 2576     - CI: Pin VTest to a known good commit
 2577     - MINOR: cli: give the show_fd helpers the ability to report a suspicious entry
 2578     - MINOR: cli/show_fd: report some easily detectable suspicious states
 2579     - MINOR: ssl/show_fd: report some FDs as suspicious when possible
 2580     - MINOR: mux-h2/show_fd: report as suspicious an entry with too many calls
 2581     - MINOR: mux-h1/show_fd: report as suspicious an entry with too many calls
 2582     - BUG/MINOR: mworker: define _GNU_SOURCE for strsignal()
 2583     - BUG/MEDIUM: tcpcheck: Don't destroy connection in the wake callback context
 2584     - BUG/MEDIUM: mux-h2: Xfer rxbuf to the upper layer when creating a front stream
 2585     - MINOR: http: Add HTTP 501-not-implemented error message
 2586     - MINOR: muxes: Add exit status for errors about not implemented features
 2587     - MINOR: mux-h1: Be prepared to return 501-not-implemented error during parsing
 2588     - MEDIUM: mux-h1: Return a 501-not-implemented for upgrade requests with a body
 2589     - DOC: Remove space after comma in converter signature
 2590     - DOC: Rename '<var name>' to '<var>' in converter signature
 2591     - MINOR: stats: duplicate 3 fields in bytes in info
 2592     - MINOR: stats: add new start time field
 2593     - MINOR: contrib/prometheus-exporter: merge info description from stats
 2594     - MEDIUM: stats: allow to select one field in `stats_fill_fe_stats`
 2595     - MINOR: contrib/prometheus-exporter: use fill_fe_stats for frontend dump
 2596     - MINOR: contrib/prometheus-exporter: Don't needlessly set empty label for metrics
 2597     - MINOR: contrib/prometheus-exporter: Split the PROMEX_FL_STATS_METRIC flag
 2598     - MINOR: contrib/prometheus-exporter: Add promex_metric struct defining a metric
 2599     - MEDIUM: contrib/prometheus-exporter: Rework matrices defining Promex metrics
 2600     - BUG/MINOR: stream: Don't update counters when TCP to H2 upgrades are performed
 2601     - BUG/MEDIUM: mux-h2: fix read0 handling on partial frames
 2602     - MINOR: debug: always export the my_backtrace function
 2603     - MINOR: debug: extract the backtrace dumping code to its own function
 2604     - MINOR: debug: create ha_backtrace_to_stderr() to dump an instant backtrace
 2605     - MEDIUM: debug: now always print a backtrace on CRASH_NOW() and friends
 2606     - MINOR: debug: let ha_dump_backtrace() dump a bit further for some callers
 2607     - BUILD: debug: fix build warning by consuming the write() result
 2608     - MINOR: lua: remove unused variable
 2609     - BUILD/MINOR: lua: define _GNU_SOURCE for LLONG_MAX
 2610 
 2611 2021/01/06 : 2.4-dev5
 2612     - BUG/MEDIUM: mux_h2: Add missing braces in h2_snd_buf()around trace+wakeup
 2613     - BUILD: hpack: hpack-tbl-t.h uses VAR_ARRAY but does not include compiler.h
 2614     - MINOR: time: increase the minimum wakeup interval to 60s
 2615     - MINOR: check: do not ignore a connection header for http-check send
 2616     - REGTESTS: complete http-check test
 2617     - CI: travis-ci: drop coverity scan builds
 2618     - MINOR: atomic: don't use ; to separate instruction on aarch64.
 2619     - IMPORT: xxhash: update to v0.8.0 that introduces stable XXH3 variant
 2620     - MEDIUM: xxhash: use the XXH3 functions to generate 64-bit hashes
 2621     - MEDIUM: xxhash: use the XXH_INLINE_ALL macro to inline all functions
 2622     - CLEANUP: xxhash: remove the unused src/xxhash.c
 2623     - MINOR: sample: add the xxh3 converter
 2624     - REGTESTS: add tests for the xxh3 converter
 2625     - MINOR: protocol: Create proto_quic QUIC protocol layer.
 2626     - MINOR: connection: Attach a "quic_conn" struct to "connection" struct.
 2627     - MINOR: quic: Redefine control layer callbacks which are QUIC specific.
 2628     - MINOR: ssl_sock: Initialize BIO and SSL objects outside of ssl_sock_init()
 2629     - MINOR: connection: Add a new xprt to connection.
 2630     - MINOR: ssl: Export definitions required by QUIC.
 2631     - MINOR: cfgparse: Do not modify the QUIC xprt when parsing "ssl".
 2632     - MINOR: tools: Add support for QUIC addresses parsing.
 2633     - MINOR: quic: Add definitions for QUIC protocol.
 2634     - MINOR: quic: Import C source code files for QUIC protocol.
 2635     - MINOR: listener: Add QUIC info to listeners and receivers.
 2636     - MINOR: server: Add QUIC definitions to servers.
 2637     - MINOR: ssl: SSL CTX initialization modifications for QUIC.
 2638     - MINOR: ssl: QUIC transport parameters parsing.
 2639     - MINOR: quic: QUIC socket management finalization.
 2640     - MINOR: cfgparse: QUIC default server transport parameters init.
 2641     - MINOR: quic: Enable the compilation of QUIC modules.
 2642     - MAJOR: quic: Make usage of ebtrees to store QUIC ACK ranges.
 2643     - MINOR: quic: Attempt to make trace more readable
 2644     - MINOR: quic: Make usage of the congestion control window.
 2645     - MINOR: quic: Flag RX packet as ack-eliciting from the generic parser.
 2646     - MINOR: quic: Code reordering to help in reviewing/modifying.
 2647     - MINOR: quic: Add traces to congestion avoidance NewReno callback.
 2648     - MINOR: quic: Display the SSL alert in ->ssl_send_alert() callback.
 2649     - MINOR: quic: Update the initial salt to that of draft-29.
 2650     - MINOR: quic: Add traces for in flght ack-eliciting packet counter.
 2651     - MINOR: quic: make a packet build fails when qc_build_frm() fails.
 2652     - MINOR: quic: Add traces for quic_packet_encrypt().
 2653     - MINOR: cache: Refactoring of secondary_key building functions
 2654     - MINOR: cache: Avoid storing responses whose secondary key was not correctly calculated
 2655     - BUG/MINOR: cache: Manage multiple headers in accept-encoding normalization
 2656     - MINOR: cache: Add specific secondary key comparison mechanism
 2657     - MINOR: http: Add helper functions to trim spaces and tabs
 2658     - MEDIUM: cache: Manage a subset of encodings in accept-encoding normalizer
 2659     - REGTESTS: cache: Simplify vary.vtc file
 2660     - REGTESTS: cache: Add a specific test for the accept-encoding normalizer
 2661     - MINOR: cache: Remove redundant test in http_action_req_cache_use
 2662     - MINOR: cache: Replace the "process-vary" option's expected values
 2663     - CI: GitHub Actions: enable daily Coverity scan
 2664     - BUG/MEDIUM: cache: Fix hash collision in `accept-encoding` handling for `Vary`
 2665     - MEDIUM: stick-tables: Add srvkey option to stick-table
 2666     - REGTESTS: add test for stickiness using "srvkey addr"
 2667     - BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11
 2668     - BUG/MINOR: sink: Return an allocation failure in __sink_new if strdup() fails
 2669     - BUG/MINOR: lua: Fix memory leak error cases in hlua_config_prepend_path
 2670     - MINOR: lua: Use consistent error message 'memory allocation failed'
 2671     - CLEANUP: Compare the return value of `XXXcmp()` functions with zero
 2672     - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on include/
 2673     - CLEANUP: Apply the coccinelle patch for `XXXcmp()` on contrib/
 2674     - MINOR: qpack: Add static header table definitions for QPACK.
 2675     - CLEANUP: qpack: Wrong comment about the draft for QPACK static header table.
 2676     - CLEANUP: quic: Remove useless QUIC event trace definitions.
 2677     - BUG/MINOR: quic: Possible CRYPTO frame building errors.
 2678     - MINOR: quic: Pass quic_conn struct to frame parsers.
 2679     - BUG/MINOR: quic: Wrong STREAM frames parsing.
 2680     - MINOR: quic: Drop packets with STREAM frames with wrong direction.
 2681     - CLEANUP: ssl: Remove useless loop in tlskeys_list_get_next()
 2682     - CLEANUP: ssl: Remove useless local variable in tlskeys_list_get_next()
 2683     - MINOR: ssl: make tlskeys_list_get_next() take a list element
 2684     - Revert "BUILD: Makefile: disable -Warray-bounds until it's fixed in gcc 11"
 2685     - BUG/MINOR: cfgparse: Fail if the strdup() for `rule->be.name` for `use_backend` fails
 2686     - CLEANUP: mworker: remove duplicate pointer tests in cfg_parse_program()
 2687     - CLEANUP: Reduce scope of `header_name` in http_action_store_cache()
 2688     - CLEANUP: Reduce scope of `hdr_age` in http_action_store_cache()
 2689     - CLEANUP: spoe: fix typo on `var_check_arg` comment
 2690     - BUG/MINOR: tcpcheck: Report a L7OK if the last evaluated rule is a send rule
 2691     - CI: github actions: build several popular "contrib" tools
 2692     - DOC: Improve the message printed when running `make` w/o `TARGET`
 2693     - BUG/MEDIUM: server: srv_set_addr_desc() crashes when a server has no address
 2694     - REGTESTS: add unresolvable servers to srvkey-addr
 2695     - BUG/MINOR: stats: Make stat_l variable used to dump a stat line thread local
 2696     - BUG/MINOR: quic: NULL pointer dereferences when building post handshake frames.
 2697     - SCRIPTS: improve announce-release to support different tag and versions
 2698     - SCRIPTS: make announce release support preparing announces before tag exists
 2699     - CLEANUP: assorted typo fixes in the code and comments
 2700     - BUG/MINOR: srv: do not init address if backend is disabled
 2701     - BUG/MINOR: srv: do not cleanup idle conns if pool max is null
 2702     - CLEANUP: assorted typo fixes in the code and comments
 2703     - CLEANUP: few extra typo and fixes over last one ("ot" -> "to")
 2704 
 2705 2020/12/21 : 2.4-dev4
 2706     - BUG/MEDIUM: lb-leastconn: Reposition a server using the right eweight
 2707     - BUG/MEDIUM: mux-h1: Fix a deadlock when a 408 error is pending for a client
 2708     - BUG/MEDIUM: ssl/crt-list: bad behavior with "commit ssl cert"
 2709     - BUG/MAJOR: cache: Crash because of disabled entry not removed from the tree
 2710     - BUILD: SSL: fine guard for SSL_CTX_add_server_custom_ext call
 2711     - MEDIUM: cache: Add a secondary entry counter and insertion limitation
 2712     - MEDIUM: cache: Avoid going over duplicates lists too often
 2713     - MINOR: cache: Add a max-secondary-entries cache option
 2714     - CI: cirrus: drop CentOS 6 builds
 2715     - BUILD: Makefile: have "make clean" destroy .o/.a/.s in contrib subdirs as well
 2716     - MINOR: vars: replace static functions with global ones
 2717     - MINOR: opentracing: add ARGC_OT enum
 2718     - CONTRIB: opentracing: add the OpenTracing filter
 2719     - DOC: opentracing: add the OpenTracing filter section
 2720     - REGTESTS: make use of HAPROXY_ARGS and pass -dM by default
 2721     - BUG/MINOR: http: Establish a tunnel for all 2xx responses to a CONNECT
 2722     - BUG/MINOR: mux-h1: Don't set CS_FL_EOI too early for protocol upgrade requests
 2723     - BUG/MEDIUM: http-ana: Never for sending data in TUNNEL mode
 2724     - CLEANUP: mux-h2: Rename h2s_frt_make_resp_data() to be generic
 2725     - CLEANUP: mux-h2: Rename h2c_frt_handle_data() to be generic
 2726     - BUG/MEDIUM: mux-h1: Handle h1_process() failures on a pipelined request
 2727     - CLEANUP: debug: mark the RNG's seed as unsigned
 2728     - CONTRIB: halog: fix build issue caused by %L printf format
 2729     - CONTRIB: halog: mark the has_zero* functions unused
 2730     - CONTRIB: halog: fix signed/unsigned build warnings on counts and timestamps
 2731     - CONTRIB: debug: address "poll" utility build on non-linux platforms
 2732     - BUILD: plock: remove dead code that causes a warning in gcc 11
 2733     - BUILD: ssl: fine guard for SSL_CTX_get0_privatekey call
 2734     - BUG/MINOR: dns: SRV records ignores duplicated AR records
 2735     - DOC: fix "smp_size" vs "sample_size" in "log" directive arguments
 2736     - CLEANUP: assorted typo fixes in the code and comments
 2737     - DOC: assorted typo fixes in the documentation
 2738     - CI: codespell: whitelist "te" and "nd" words
 2739 
 2740 2020/12/11 : 2.4-dev3
 2741     - MINOR: log: Logging HTTP path only with %HPO
 2742     - BUG/MINOR: mux-h2/stats: make stream/connection proto errors more accurate
 2743     - MINOR: traces: add a new level "error" below the "user" level
 2744     - MINOR: mux-h2/trace: add traces at level ERROR for protocol errors
 2745     - BUG/MINOR: mux-h2/stats: not all GOAWAY frames are errors
 2746     - BUG/MINOR: lua: missing "\n" in error message
 2747     - BUG/MINOR: lua: lua-load doesn't check its parameters
 2748     - BUG/MINOR: lua: Post init register function are not executed beyond the first one
 2749     - BUG/MINOR: lua: Some lua init operation are processed unsafe
 2750     - MINOR: actions: Export actions lookup functions
 2751     - MINOR: actions: add a function returning a service pointer from its name
 2752     - MINOR: cli: add a function to look up a CLI service description
 2753     - BUG/MINOR: lua: warn when registering action, conv, sf, cli or applet multiple times
 2754     - MINOR: cache: Improve accept_encoding_normalizer
 2755     - MINOR: cache: Add entry to the tree as soon as possible
 2756     - BUG/MINOR: trace: Wrong displayed trace level
 2757     - BUG/MAJOR: ring: tcp forward on ring can break the reader counter.
 2758     - MINOR: lua: simplify hlua_alloc() to only rely on realloc()
 2759     - MEDIUM: lua-thread: use atomics for memory accounting
 2760     - MINOR: lua-thread: remove struct hlua from function hlua_prepend_path()
 2761     - MEDIUM: lua-thread: make hlua_post_init() no longer use the runtime execution function
 2762     - MINOR: lua-thread: hlua_ctx_renew() is never called with main gL lua state
 2763     - MINOR: lua-thread: Use NULL context for main lua state
 2764     - MINOR: lua-thread: Stop usage of struct hlua for the global lua state
 2765     - MINOR: lua-thread: Replace embedded struct hlua_function by a pointer
 2766     - MINOR: lua-thread: Split hlua_init() function in two parts
 2767     - MINOR: lua-thread: make hlua_ctx_init() get L from its caller
 2768     - MINOR: lua-thread: Split hlua_load function in two parts
 2769     - MINOR: lua-thread: Split hlua_post_init() function in two parts
 2770     - MINOR: lua-thread: Add the "thread" core variable
 2771     - MEDIUM: lua-thread: No longer use locked context in initialization parts
 2772     - MEDIUM: lua-thread: Apply lock only if the parent state is the main thread
 2773     - MINOR: lua-thread: Replace global gL var with an array of states
 2774     - MINOR: lua-thread: Replace "struct hlua_function" allocation by dedicated function
 2775     - MINOR: lua-thread: Replace state_from by state_id
 2776     - MINOR: lua-thread: Store each function reference and init reference in array
 2777     - MEDIUM: lua-thread: Add the lua-load-per-thread directive
 2778     - MINOR: lua-thread: Add verbosity in errors
 2779     - REGTESTS: add a test for the threaded Lua code
 2780     - BUILD/MINOR: haproxy DragonFlyBSD affinity build update.
 2781     - DOC/MINOR: Fix formatting in Management Guide
 2782     - MINOR: cache: Do not store stale entry
 2783     - MINOR: cache: Add extra "cache-control" value checks
 2784     - MEDIUM: cache: Remove cache entry in case of POST on the same resource
 2785     - MINOR: cache: Consider invalid Age values as stale
 2786     - BUG/MEDIUM: lua-thread: some parts must be initialized once
 2787     - BUG/MINOR: lua-thread: close all states on deinit
 2788     - BUG/MINOR: listener: use sockaddr_in6 for IPv6
 2789     - BUG/MINOR: mux-h1: Handle keep-alive timeout for idle frontend connections
 2790     - MINOR: session: Add the idle duration field into the session
 2791     - MINOR: mux-h1: Update session idle duration when data are received
 2792     - MINOR: mux-h1: Reset session dates and durations info when the CS is detached
 2793     - MINOR: logs: Use session idle duration when no stream is provided
 2794     - MINOR: stream: Always get idle duration from the session
 2795     - MINOR: stream: Don't retrieve anymore timing info from the mux csinfo
 2796     - MINOR: mux-h1: Don't provide anymore timing info using cs_info structure
 2797     - MINOR: muxes: Remove get_cs_info callback function now useless
 2798     - MINOR: stream: Pass an optional input buffer when a stream is created
 2799     - MINOR: mux-h1: Add a flag to disable reads to wait opposite side
 2800     - MEDIUM: mux-h1: Use a h1c flag to block reads when splicing is in-progress
 2801     - MINOR: mux-h1: Introduce H1C_F_IS_BACK flag on the H1 connection
 2802     - MINOR: mux-h1: Separate parsing and formatting errors at H1 stream level
 2803     - MINOR: mux-h1: Split front/back h1 stream creation in 2 functions
 2804     - MINOR: mux-h1: Add a rxbuf into the H1 stream
 2805     - MINOR: mux-h1: Don't set CS flags in internal parsing functions
 2806     - MINOR: mux-h1: Add embryonic and attached states on the H1 connection
 2807     - MINOR: mux-h1: rework the h1_timeout_task() function
 2808     - MINOR: mux-h1: Reset more H1C flags when a H1 stream is destroyed
 2809     - MINOR: mux-h1: Disable reads if an error was reported on the H1 stream
 2810     - MINOR: mux-h1: Rework how shutdowns are handled
 2811     - MINOR: mux-h1: Rework h1_refresh_timeout to be easier to read
 2812     - MINOR: mux-h1: Process next request for IDLE connection only
 2813     - MINOR: mux-h1: Add a idle expiration date on the H1 connection
 2814     - MINOR: stick-tables: Add functions to update some values of a tracked counter
 2815     - MINOR: session: Add functions to increase http values of tracked counters
 2816     - MINOR: mux: Add a ctl parameter to get the exit status of the multiplexers
 2817     - MINOR: logs: Get the multiplexer exist status when no stream is provided
 2818     - MINOR: mux-h1: Add functions to send HTTP errors from the mux
 2819     - MAJOR: mux-h1: Create the client stream as later as possible
 2820     - DOC: config: Add notes about errors emitted by H1 mux
 2821     - CLEANUP: mux-h1: Rename H1C_F_CS_* flags and reorder H1C flags
 2822     - MINOR: http-ana: Remove useless update of t_idle duration of the stream
 2823     - CLEANUP: htx: Remove HTX_FL_UPGRADE unsued flag
 2824     - MEDIUM: http-ana: Don't process partial or empty request anymore
 2825     - CLEANUP: http-ana: Remove TX_WAIT_NEXT_RQ unsued flag
 2826     - CLEANUP: connection: Remove CS_FL_READ_PARTIAL flag
 2827     - REGTESTS: Fix proxy_protocol_tlv_validation
 2828     - MINOR: http-ana: Properly set message flags from the start-line flags
 2829     - MINOR: h1-htx/http-ana: Set BODYLESS flag on message in TUNNEL state
 2830     - MINOR: protocol: add a ->set_port() helper to address families
 2831     - MINOR: listener: automatically set the port when creating listeners
 2832     - MINOR: listener: now use a generic add_listener() function
 2833     - MEDIUM: ssl: fatal error with bundle + openssl < 1.1.1
 2834     - BUG/MEDIUM: stream: Xfer the input buffer to a fully created stream
 2835     - BUG/MINOR: stream: Don't use input buffer after the ownership xfer
 2836     - MINOR: protocol: remove the redundant ->sock_domain field
 2837     - MINOR: protocol: export protocol definitions
 2838     - CLEANUP: protocol: group protocol struct members by usage
 2839     - MINOR: protocol: add a set of ctrl_init/ctrl_close methods for setup/teardown
 2840     - MINOR: connection: use the control layer's init/close
 2841     - MINOR: udp: export udp_suspend_receiver() and udp_resume_receiver()
 2842     - BUG/MAJOR: spoa/python: Fixing return None
 2843     - DOC: spoa/python: Fixing typo in IP related error messages
 2844     - DOC: spoa/python: Rephrasing memory related error messages
 2845     - DOC: spoa/python: Fixing typos in comments
 2846     - BUG/MINOR: spoa/python: Cleanup references for failed Module Addobject operations
 2847     - BUG/MINOR: spoa/python: Cleanup ipaddress objects if initialization fails
 2848     - BUG/MEDIUM: spoa/python: Fixing PyObject_Call positional arguments
 2849     - BUG/MEDIUM: spoa/python: Fixing references to None
 2850     - DOC: email change of the DeviceAtlas maintainer
 2851     - MINOR: cache: Dump secondary entries in "show cache"
 2852     - CLEANUP: connection: use fd_stop_both() instead of conn_stop_polling()
 2853     - MINOR: stream-int: don't touch polling anymore on shutdown
 2854     - MINOR: connection: implement cs_drain_and_close()
 2855     - MINOR: mux-pt: take care of CS_SHR_DRAIN in shutr()
 2856     - MINOR: checks: use cs_drain_and_close() instead of draining the connection
 2857     - MINOR: checks: don't call conn_cond_update_polling() anymore
 2858     - CLEANUP: connection: open-code conn_cond_update_polling() and update the comment
 2859     - CLEANUP: connection: remove the unused conn_{stop,cond_update}_polling()
 2860     - BUG/MINOR: http-check: Use right condition to consider HTX message as full
 2861     - BUG/MINOR: tcpcheck: Don't rearm the check timeout on each read
 2862     - MINOR: tcpcheck: Only wait for more payload data on HTTP expect rules
 2863     - BUG/MINOR: tools: make parse_time_err() more strict on the timer validity
 2864     - BUG/MINOR: tools: Reject size format not starting by a digit
 2865     - MINOR: action: define enum for timeout type of the set-timeout rule
 2866     - MINOR: stream: prepare the hot refresh of timeouts
 2867     - MEDIUM: stream: support a dynamic server timeout
 2868     - MEDIUM: stream: support a dynamic tunnel timeout
 2869     - MEDIUM: http_act: define set-timeout server/tunnel action
 2870     - MINOR: frontend: add client timeout sample fetch
 2871     - MINOR: backend: add timeout sample fetches
 2872     - MINOR: stream: add sample fetches
 2873     - MINOR: stream: add timeout sample fetches
 2874     - REGTESTS: add regtest for http-request set-timeout
 2875     - CLEANUP: remove the unused fd_stop_send() in conn_xprt_shutw{,_hard}()
 2876     - CLEANUP: connection: remove the unneeded fd_stop_{recv,send} on read0/shutw
 2877     - MINOR: connection: remove sock-specific code from conn_sock_send()
 2878     - REORG: connection: move the socket iocb (conn_fd_handler) to sock.c
 2879     - MINOR: protocol: add a ->drain() function at the connection control layer
 2880     - MINOR: connection: make conn_sock_drain() use the control layer's ->drain()
 2881     - MINOR: protocol: add a pair of check_events/ignore_events functions at the ctrl layer
 2882     - MEDIUM: connection: make use of the control layer check_events/ignore_events
 2883 
 2884 2020/12/01 : 2.4-dev2
 2885     - BUILD: Make DEBUG part of .build_opts
 2886     - BUILD: Show the value of DEBUG= in haproxy -vv
 2887     - CI: Set DEBUG=-DDEBUG_STRICT=1 in GitHub Actions
 2888     - MINOR: stream: Add level 7 retries on http error 401, 403
 2889     - CLEANUP: remove unused function "ssl_sock_is_ckch_valid"
 2890     - BUILD: SSL: add BoringSSL guarding to "RAND_keep_random_devices_open"
 2891     - BUILD: SSL: do not "update" BoringSSL version equivalent anymore
 2892     - BUG/MEDIUM: http_act: Restore init of log-format list
 2893     - DOC: better describes how to configure a fallback crt
 2894     - BUG/MAJOR: filters: Always keep all offsets up to date during data filtering
 2895     - MINOR: cache: Prepare helper functions for Vary support
 2896     - MEDIUM: cache: Add the Vary header support
 2897     - MINOR: cache: Add a process-vary option that can enable/disable Vary processing
 2898     - BUG/CRITICAL: cache: Fix trivial crash by sending accept-encoding header
 2899     - BUG/MAJOR: peers: fix partial message decoding
 2900     - DOC: cache: Add new caching limitation information
 2901     - DOC: cache: Add information about Vary support
 2902     - DOC: better document the config file format and escaping/quoting rules
 2903     - DOC: Clarify %HP description in log-format
 2904     - CI: github actions: update LibreSSL to 3.3.0
 2905     - CI: github actions: enable 51degrees feature
 2906     - MINOR: fd/threads: silence a build warning with threads disabled
 2907     - BUG/MINOR: tcpcheck: Don't forget to reset tcp-check flags on new kind of check
 2908     - MINOR: tcpcheck: Don't handle anymore in-progress send rules in tcpcheck_main
 2909     - BUG/MAJOR: tcpcheck: Allocate input and output buffers from the buffer pool
 2910     - MINOR: tcpcheck: Don't handle anymore in-progress connect rules in tcpcheck_main
 2911     - MINOR: config: Deprecate and ignore tune.chksize global option
 2912     - MINOR: config: Add a warning if tune.chksize is used
 2913     - REORG: tcpcheck: Move check option parsing functions based on tcp-check
 2914     - MINOR: check: Always increment check health counter on CONPASS
 2915     - MINOR: tcpcheck: Add support of L7OKC on expect rules error-status argument
 2916     - DOC: config: Make disable-on-404 option clearer on transition conditions
 2917     - DOC: config: Move req.hdrs and req.hdrs_bin in L7 samples fetches section
 2918     - BUG/MINOR: http-fetch: Fix smp_fetch_body() when called from a health-check
 2919     - MINOR: plock: use an ARMv8 instruction barrier for the pause instruction
 2920     - MINOR: debug: add "debug dev sched" to stress the scheduler.
 2921     - MINOR: debug: add a trivial PRNG for scheduler stress-tests
 2922     - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
 2923     - MINOR: task: remove tasklet_insert_into_tasklet_list()
 2924     - MINOR: task: perform atomic counter increments only once per wakeup
 2925     - MINOR: task: remove __tasklet_remove_from_tasklet_list()
 2926     - BUG/MEDIUM: task: close a possible data race condition on a tasklet's list link
 2927     - BUG/MEDIUM: local log format regression.
 2928 
 2929 2020/11/21 : 2.4-dev1
 2930     - MINOR: ist: Add istend() function to return a pointer to the end of the string
 2931     - MINOR: sample: Add converters to parse FIX messages
 2932     - REGTEST: converter: Add a regtest for fix converters
 2933     - MINOR: sample: Add converts to parses MQTT messages
 2934     - REGTEST: converter: Add a regtest for MQTT converters
 2935     - MINOR: compat: automatically include malloc.h on glibc
 2936     - MEDIUM: pools: call malloc_trim() from pool_gc()
 2937     - MEDIUM: pattern: call malloc_trim() on pat_ref_reload()
 2938     - MINOR: pattern: move the update revision to the pat_ref, not the expression
 2939     - CLEANUP: pattern: delete the back refs at once during pat_ref_reload()
 2940     - MINOR: pattern: new sflag PAT_SF_REGFREE indicates regex_free() is needed
 2941     - MINOR: pattern: make the delete and prune functions more generic
 2942     - MEDIUM: pattern: link all final elements from the reference
 2943     - MEDIUM: pattern: change the pat_del_* functions to delete from the references
 2944     - MINOR: pattern: remerge the list and tree deletion functions
 2945     - MINOR: pattern: perform a single call to pat_delete_gen() under the expression
 2946     - CLEANUP: acl: don't reference the generic pattern deletion function anymore
 2947     - CLEANUP: pattern: remove pat_delete_fcts[] and pattern_head->delete()
 2948     - MINOR: pattern: introduce pat_ref_delete_by_ptr() to delete a valid reference
 2949     - MINOR: pattern: store a generation number in the reference patterns
 2950     - MEDIUM: pattern: only match patterns that match the current generation
 2951     - MINOR: pattern: add pat_ref_commit() to commit a previously inserted element
 2952     - MINOR: pattern: implement pat_ref_load() to load a pattern at a given generation
 2953     - MINOR: pattern: add pat_ref_purge_older() to purge old entries
 2954     - MEDIUM: pattern: make pat_ref_prune() rely on pat_ref_purge_older()
 2955     - MINOR: pattern: during reload, delete elements frem the ref, not the expression
 2956     - MINOR: pattern: prepare removal of a pattern from the list head
 2957     - MEDIUM: pattern: turn the pattern chaining to single-linked list
 2958     - CLEANUP: cfgparse: remove duplicate registration for transparent build options
 2959     - BUG/MINOR: ssl: don't report 1024 bits DH param load error when it's higher
 2960     - MINOR: http-htx: Add understandable errors for the errorfiles parsing
 2961     - MINOR: ssl: instantiate stats module
 2962     - MINOR: ssl: count client hello for stats
 2963     - MINOR: ssl: add counters for ssl sessions
 2964     - DOC: config: Fix a typo on ssl_c_chain_der
 2965     - MINOR: server: remove idle lock in srv_cleanup_connections
 2966     - BUILD: ssl: silence build warning on uninitialised counters
 2967     - BUILD: http-htx: fix build warning regarding long type in printf
 2968     - REGTEST: ssl: test wildcard and multi-type + exclusions
 2969     - BUG/MEDIUM: ssl/crt-list: correctly insert crt-list line if crt already loaded
 2970     - CI: Expand use of GitHub Actions for CI
 2971     - REGTEST: ssl: mark reg-tests/ssl/ssl_crt-list_filters.vtc as broken
 2972     - BUG/MINOR: pattern: a sample marked as const could be written
 2973     - BUG/MINOR: lua: set buffer size during map lookups
 2974     - MEDIUM: cache: Change caching conditions
 2975     - BUG/MINOR: stats: free dynamically stats fields/lines on shutdown
 2976     - BUG/MEDIUM: stats: prevent crash if counters not alloc with dummy one
 2977     - MINOR: peers: Add traces to peer_treat_updatemsg().
 2978     - BUG/MINOR: peers: Do not ignore a protocol error for dictionary entries.
 2979     - BUG/MINOR: peers: Missing TX cache entries reset.
 2980     - BUG/MEDIUM: peers: fix decoding of multi-byte length in stick-table messages
 2981     - BUG/MINOR: http-fetch: Extract cookie value even when no cookie name
 2982     - BUG/MINOR: http-fetch: Fix calls w/o parentheses of the cookie sample fetches
 2983     - BUG/MEDIUM: check: reuse srv proto only if using same mode
 2984     - MINOR: check: report error on incompatible proto
 2985     - MINOR: check: report error on incompatible connect proto
 2986     - BUG/MINOR: http-htx: Handle warnings when parsing http-error and http-errors
 2987     - BUG/MAJOR: spoe: Be sure to remove all references on a released spoe applet
 2988     - MINOR: spoe: Don't close connection in sync mode on processing timeout
 2989     - BUG/MINOR: tcpcheck: Don't warn on unused rules if check option is after
 2990     - MINOR: init: Fix the prototype for per-thread free callbacks
 2991     - MINOR: config/mux-h2: Return ERR_ flags from init_h2() instead of a status
 2992     - CLEANUP: config: Return ERR_NONE from config callbacks instead of 0
 2993     - MINOR: cfgparse: tighten the scope of newnameserver variable, free it on error.
 2994     - REGTEST: make ssl_client_samples and ssl_server_samples require to 2.2
 2995     - REGTESTS: Add sample_fetches/cook.vtc
 2996     - BUG/MEDIUM: filters: Forward all filtered data at the end of http filtering
 2997     - BUG/MINOR: http-ana: Don't wait for the body of CONNECT requests
 2998     - CLEANUP: flt-trace: Remove unused random-parsing option
 2999     - MINOR: flt-trace: Add an option to inhibits trace messages
 3000     - MINOR: flt-trace: Use a bitfield for the trace options
 3001     - REGTESTS: Add a script to test the random forwarding with several filters
 3002     - REGTESTS: mark the abns test as broken again
 3003     - REGTESTS: converter: add url_dec test
 3004     - CI: Stop hijacking the hosts file
 3005     - CI: Make the h2spec workflow more consistent with the VTest workflow
 3006     - CI: travis-ci: remove amd64, osx builds
 3007     - CI: travis-ci: arm64 are not allowed to fail anymore
 3008     - DOC: add missing 3.10 in the summary
 3009     - MINOR: ssl: remove client hello counters
 3010     - MEDIUM: stats: add counters for failed handshake
 3011     - MINOR: ssl: create common ssl_ctx init
 3012     - MEDIUM: cli/ssl: configure ssl on server at runtime
 3013     - REGTEST: server/cli_set_ssl.vtc requires OpenSSL
 3014     - DOC: coding-style: update a few rules about pointers
 3015     - BUG/MINOR: ssl: segv on startup when AKID but no keyid
 3016     - BUILD: ssl: use SSL_MODE_ASYNC macro instead of OPENSSL_VERSION
 3017     - BUG/MEDIUM: http-ana: Don't eval http-after-response ruleset on empty messages
 3018     - BUG/MEDIUM: ssl/crt-list: bundle support broken in crt-list
 3019     - BUG/MEDIUM: ssl: error when no certificate are found
 3020     - BUG/MINOR: ssl/crt-list: load bundle in crt-list only if activated
 3021     - BUG/MEDIUM: ssl/crt-list: fix error when no file found
 3022     - CI: Github Actions: enable prometheus exporter
 3023     - CI: Github Actions: remove LibreSSL-3.0.2 builds
 3024     - CI: Github Actions: enable BoringSSL builds
 3025     - CI: travis-ci: remove builds migrated to GH actions
 3026     - BUILD: makefile: enable crypt(3) for OpenBSD
 3027     - CI: Github Action: run "apt-get update" before packages restore
 3028     - BUILD: SSL: guard TLS13 ciphersuites with HAVE_SSL_CTX_SET_CIPHERSUITES
 3029     - CI: Pass the github.event_name to matrix.py
 3030     - CI: Clean up Windows CI
 3031     - DOC: clarify how to create a fallback crt
 3032     - CLEANUP: connection: do not use conn->owner when the session is known
 3033     - BUG/MAJOR: connection: reset conn->owner when detaching from session list
 3034     - REGTESTS: mark proxy_protocol_random_fail as broken
 3035     - BUG/MINOR: http_htx: Fix searching headers by substring
 3036     - MINOR: http_act: Add -m flag for del-header name matching method
 3037 
 3038 2020/11/05 : 2.4-dev0
 3039     - MINOR: version: it's development again.
 3040     - DOC: mention in INSTALL that it's development again
 3041 
 3042 2020/11/05 : 2.3.0
 3043     - CLEANUP: pattern: remove unused entry "tree" in pattern.val
 3044     - BUILD: ssl: use SSL_CTRL_GET_RAW_CIPHERLIST instead of OpenSSL versions
 3045     - BUG/MEDIUM: filters: Don't try to init filters for disabled proxies
 3046     - BUG/MINOR: proxy/server: Skip per-proxy/server post-check for disabled proxies
 3047     - BUG/MINOR: checks: Report a socket error before any connection attempt
 3048     - BUG/MINOR: server: Set server without addr but with dns in RMAINT on startup
 3049     - MINOR: server: Copy configuration file and line for server templates
 3050     - BUG/MEDIUM: mux-pt: Release the tasklet during an HTTP upgrade
 3051     - BUILD: ssl: use HAVE_OPENSSL_KEYLOG instead of OpenSSL versions
 3052     - MINOR: debug: don't count free(NULL) in memstats
 3053     - BUG/MINOR: filters: Skip disabled proxies during startup only
 3054     - MINOR: mux_h2: capitalize frame type in stats
 3055     - MINOR: mux_h2: add stat for total count of connections/streams
 3056     - MINOR: stats: do not display empty stat module title on html
 3057     - BUG/MEDIUM: stick-table: limit the time spent purging old entries
 3058     - BUG/MEDIUM: listener: only enable a listening listener if needed
 3059     - BUG/MEDIUM: listener: never suspend inherited sockets
 3060     - BUG/MEDIUM: listener: make the master also keep workers' inherited FDs
 3061     - MINOR: fd: add fd_want_recv_safe()
 3062     - MEDIUM: listeners: make use of fd_want_recv_safe() to enable early receivers
 3063     - REGTESTS: mark abns_socket as working now
 3064     - CLEANUP: mux-h2: Remove the h1 parser state from the h2 stream
 3065     - MINOR: sock: add a check against cross worker<->master socket activities
 3066     - CI: github actions: limit OpenSSL no-deprecated builds to "default,bug,devel" reg-tests
 3067     - BUG/MEDIUM: server: make it possible to kill last idle connections
 3068     - MINOR: mworker/cli: the master CLI use its own applet
 3069     - MINOR: ssl: define SSL_CTX_set1_curves_list to itself on BoringSSL
 3070     - BUILD: ssl: use feature macros for detecting ec curves manipulation support
 3071     - DOC: Add dns as an available domain to show stat
 3072     - BUILD: makefile: usual reorder of objects for faster builds
 3073     - DOC: update INSTALL to mention that TCC is supported
 3074     - DOC: mention in INSTALL that haproxy 2.3 is a stable version
 3075     - MINOR: version: mention that it's stable now
 3076 
 3077 2020/10/31 : 2.3-dev9
 3078     - CLEANUP: http_ana: remove unused assignation of `att_beg`
 3079     - BUG/MEDIUM: ssl: OCSP must work with BoringSSL
 3080     - BUG/MINOR: log: fix memory leak on logsrv parse error
 3081     - BUG/MINOR: log: fix risk of null deref on error path
 3082     - BUILD: ssl: more elegant OpenSSL early data support check
 3083     - CI: github actions: update h2spec to 2.6.0
 3084     - BUG/MINOR: cache: Check the return value of http_replace_res_status
 3085     - MINOR: cache: Store the "Last-Modified" date in the cache_entry
 3086     - MINOR: cache: Process the If-Modified-Since header in conditional requests
 3087     - MINOR: cache: Create res.cache_hit and res.cache_name sample fetches
 3088     - MINOR: mux-h2: register a stats module
 3089     - MINOR: mux-h2: add counters instance to h2c
 3090     - MINOR: mux-h2: add stats for received frame types
 3091     - MINOR: mux-h2: report detected error on stats
 3092     - MINOR: mux-h2: count open connections/streams on stats
 3093     - BUG/MINOR: server: fix srv downtime calcul on starting
 3094     - BUG/MINOR: server: fix down_time report for stats
 3095     - BUG/MINOR: lua: initialize sample before using it
 3096     - MINOR: cache: Add Expires header value parsing
 3097     - MINOR: ist: Add a case insensitive istmatch function
 3098     - BUG/MINOR: cache: Manage multiple values in cache-control header value
 3099     - BUG/MINOR: cache: Inverted variables in http_calc_maxage function
 3100     - MINOR: pattern: make pat_ref_append() return the newly added element
 3101     - MINOR: pattern: make pat_ref_add() rely on pat_ref_append()
 3102     - MINOR: pattern: export pat_ref_push()
 3103     - CLEANUP: pattern: use calloc() rather than malloc for structures
 3104     - CLEANUP: pattern: fix spelling/grammatical/copy-paste in comments
 3105 
 3106 2020/10/24 : 2.3-dev8
 3107     - MINOR: backend: replace the lbprm lock with an rwlock
 3108     - MINOR: lb/map: use seek lock and read locks where appropriate
 3109     - MINOR: lb/leastconn: only take a read lock in fwlc_get_next_server()
 3110     - MINOR: lb/first: use a read lock in fas_get_next_server()
 3111     - MINOR: lb/chash: use a read lock in chash_get_server_hash()
 3112     - BUG/MINOR: disable dynamic OCSP load with BoringSSL
 3113     - BUILD: ssl: make BoringSSL use its own version numbers
 3114     - CLEANUP: threads: don't register an initcall when not debugging
 3115     - MINOR: threads: change lock_t to an unsigned int
 3116     - CLEANUP: tree-wide: reorder a few structures to plug some holes around locks
 3117     - CLEANUP: task: remove the unused and mishandled global_rqueue_size
 3118     - BUG/MEDIUM: connection: Never cleanup server lists when freeing private conns
 3119     - MEDIUM: config: report that "nbproc" is deprecated
 3120     - BUG/MINOR: listener: close before free in `listener_accept`
 3121     - MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension
 3122     - BUG/MINOR: queue: properly report redistributed connections
 3123     - CONTRIB: tcploop: remove unused local variables in tcp_pause()
 3124     - BUILD: makefile: add entries to build common debugging tools
 3125     - BUG/MEDIUM: server: support changing the slowstart value from state-file
 3126     - MINOR: http: Add `enum etag_type http_get_etag_type(const struct ist)`
 3127     - MINOR: http: Add etag comparison function
 3128     - MEDIUM: cache: Store the ETag information in the cache_entry
 3129     - MEDIUM: cache: Add support for 'If-None-Match' request header
 3130     - REGTEST: cache: Add if-none-match test case
 3131     - CLEANUP: compression: Make use of http_get_etag_type()
 3132     - BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests
 3133     - BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible
 3134     - MINOR: threads/debug: only report used lock stats
 3135     - MINOR: threads/debug: only report lock stats for used operations
 3136     - MINOR: proxy; replace the spinlock with an rwlock
 3137     - MINOR: server: read-lock the cookie during srv_set_dyncookie()
 3138     - MINOR: proxy/cli: only take a read lock in "show errors"
 3139     - OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued
 3140     - MINOR: queue: split __pendconn_unlink() in per-srv and per-prx
 3141     - MINOR: queue: reduce the locked area in pendconn_add()
 3142     - OPTIM: queue: make the nbpend counters atomic
 3143     - OPTIM: queue: decrement the nbpend and totpend counters outside of the lock
 3144     - MINOR: leastconn: take the queue length into account when queuing servers
 3145     - MEDIUM: fwlc: re-enable per-server queuing up to maxqueue
 3146     - Revert "OPTIM: queue: don't call pendconn_unlink() when the pendconn is not queued"
 3147     - MINOR: stats: support the "up" output modifier for "show stat"
 3148     - MINOR: stats: also support a "no-maint" show stat modifier
 3149     - MINOR: stats: indicate the number of servers in a backend's status
 3150     - MEDIUM: ssl: ssl-load-extra-del-ext work only with .crt
 3151     - REGTEST: ssl: test "set ssl cert" with separate key / crt
 3152     - DOC: management: apply the "show stat" modifiers to "show stat", not "show info"
 3153     - MINOR: stats: report server's user-configured weight next to effective weight
 3154     - CI: travis-ci: switch to Ubuntu 20.04
 3155     - CONTRIB: release-estimator: Add release estimating tool
 3156     - BUG/MEDIUM: queue: fix unsafe proxy pointer when counting nbpend
 3157     - BUG/MINOR: extcheck: add missing checks on extchk_setenv()
 3158 
 3159 2020/10/17 : 2.3-dev7
 3160     - CI: travis-ci: replace not defined SSL_LIB, SSL_INC for BotringSSL builds
 3161     - BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited
 3162     - BUG/MINOR: mux-h2: do not stop outgoing connections on stopping
 3163     - MINOR: fd: report an error message when failing initial allocations
 3164     - MINOR: proto-tcp: make use of connect(AF_UNSPEC) for the pause
 3165     - MINOR: sock: add sock_accept_conn() to test a listening socket
 3166     - MINOR: protocol: make proto_tcp & proto_uxst report listening sockets
 3167     - MINOR: sockpair: implement the .rx_listening function
 3168     - CLEANUP: tcp: make use of sock_accept_conn() where relevant
 3169     - CLEANUP: unix: make use of sock_accept_conn() where relevant
 3170     - BUG/MINOR: listener: detect and handle shared sockets stopped in other processes
 3171     - CONTRIB: tcploop: implement a disconnect operation 'D'
 3172     - CLEANUP: protocol: intitialize all of the sockaddr when disconnecting
 3173     - BUG/MEDIUM: deinit: check fdtab before fdtab[fd].owner
 3174     - BUG/MINOR: connection: fix loop iter on connection takeover
 3175     - BUG/MEDIUM: connection: fix srv idle count on conn takeover
 3176     - MINOR: connection: improve list api usage
 3177     - MINOR: mux/connection: add a new mux flag for HOL risk
 3178     - MINOR: connection: don't check priv flag on free
 3179     - MEDIUM: backend: add new conn to session if mux marked as HOL blocking
 3180     - MEDIUM: backend: add reused conn to sess if mux marked as HOL blocking
 3181     - MEDIUM: h2: remove conn from session on detach
 3182     - MEDIUM: fcgi: remove conn from session on detach
 3183     - DOC: Describe reuse safe for HOL handling
 3184     - MEDIUM: proxy: remove obsolete "mode health"
 3185     - MEDIUM: proxy: remove obsolete "monitor-net"
 3186     - CLEANUP: protocol: remove the ->drain() function
 3187     - CLEANUP: fd: finally get rid of fd_done_recv()
 3188     - MINOR: connection: make sockaddr_alloc() take the address to be copied
 3189     - MEDIUM: listener: allocate the connection before queuing a new connection
 3190     - MINOR: session: simplify error path in session_accept_fd()
 3191     - MINOR: connection: add new error codes for accept_conn()
 3192     - MINOR: sock: rename sock_accept_conn() to sock_accepting_conn()
 3193     - MINOR: protocol: add a new function accept_conn()
 3194     - MINOR: sock: implement sock_accept_conn() to accept a connection
 3195     - MINOR: sockpair: implement sockpair_accept_conn() to accept a connection
 3196     - MEDIUM: listener: use protocol->accept_conn() to accept a connection
 3197     - MEDIUM: listener: remove the second pass of fd manipulation at the end
 3198     - MINOR: protocol: add a default I/O callback and put it into the receiver
 3199     - MINOR: log: set the UDP receiver's I/O handler in the receiver
 3200     - MINOR: protocol: register the receiver's I/O handler and not the protocol's
 3201     - CLEANUP: protocol: remove the now unused <handler> field of proto_fam->bind()
 3202     - DOC: improve the documentation for "option nolinger"
 3203     - BUG/MEDIUM: proxy: properly stop backends
 3204     - BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once
 3205     - MINOR: threads: augment rwlock debugging stats to report seek lock stats
 3206     - MINOR: threads: add the transitions to/from the seek state
 3207     - MEDIUM: task: use an upgradable seek lock when scanning the wait queue
 3208     - BUILD: listener: avoir a build warning when threads are disabled
 3209     - BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions.
 3210     - MINOR: ssl: add volatile flags to ssl samples
 3211     - MEDIUM: backend: reuse connection if using a static sni
 3212     - BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided
 3213     - BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages
 3214     - BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn
 3215     - DOC: fix typo in MAX_SESS_STKCTR
 3216 
 3217 2020/10/10 : 2.3-dev6
 3218     - REGTESTS: use "command" instead of "which" for better POSIX compatibility
 3219     - BUILD: makefile: Update feature flags for OpenBSD
 3220     - DOC: agent-check: fix typo in "fail" word expected reply
 3221     - DOC: crt: advise to move away from cert bundle
 3222     - BUG/MINOR: ssl/crt-list: exit on warning out of crtlist_parse_line()
 3223     - REGTEST: fix host part in balance-uri-path-only.vtc
 3224     - REGTEST: make ssl_client_samples and ssl_server_samples requiret to 2.3
 3225     - REGTEST: the iif converter test requires 2.3
 3226     - REGTEST: make agent-check.vtc require 1.8
 3227     - REGTEST: make abns_socket.vtc require 1.8
 3228     - REGTEST: make map_regm_with_backref require 1.7
 3229     - BUILD: makefile: Update feature flags for FreeBSD
 3230     - OPTIM: backend/random: never queue on the server, always on the backend
 3231     - OPTIM: backend: skip LB when we know the backend is full
 3232     - BUILD: makefile: Fix building with closefrom() support enabled
 3233     - BUILD: makefile: add an EXTRAVERSION variable to ease local naming
 3234     - MINOR: tools: support for word expansion of environment in parse_line
 3235     - BUILD: tools: fix minor build issue on isspace()
 3236     - BUILD: makefile: Enable closefrom() support on Solaris
 3237     - CLEANUP: ssl: Use structured format for error line report during crt-list parsing
 3238     - MINOR: ssl: Add error if a crt-list might be truncated
 3239     - MINOR: ssl: remove uneeded check in crtlist_parse_file
 3240     - BUG/MINOR: Fix several leaks of 'log_tag' in init().
 3241     - DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules
 3242     - MEDIUM: tcp-rules: Warn if a track-sc* content rule doesn't depend on content
 3243     - BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call
 3244     - DOC: ssl: new "cert bundle" behavior
 3245     - BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe
 3246     - CLEANUP: ssl: "bundle" is not an OpenSSL wording
 3247     - MINOR: counters: fix a typo in comment
 3248     - BUG/MINOR: stats: fix validity of the json schema
 3249     - REORG: stats: export some functions
 3250     - MINOR: stats: add stats size as a parameter for csv/json dump
 3251     - MINOR: stats: hide px/sv/li fields in applet struct
 3252     - REORG: stats: extract proxy json dump
 3253     - REORG: stats: extract proxies dump loop in a function
 3254     - MINOR: hlua: Display debug messages on stderr only in debug mode
 3255     - MINOR: stats: define the concept of domain for statistics
 3256     - MINOR: stats: define additional flag px cap on domain
 3257     - MEDIUM: stats: add delimiter for static proxy stats on csv
 3258     - MEDIUM: stats: define an API to register stat modules
 3259     - MEDIUM: stats: add abstract type to store counters
 3260     - MEDIUM: stats: integrate static proxies stats in new stats
 3261     - MINOR: stats: support clear counters for dynamic stats
 3262     - MINOR: stats: display extra proxy stats on the html page
 3263     - MINOR: stats: add config "stats show modules"
 3264     - MINOR: dns/stats: integrate dns counters in stats
 3265     - MINOR: stats: remove for loop declaration
 3266     - DOC: ssl: fix typo about ocsp files
 3267     - BUG/MINOR: peers: Inconsistency when dumping peer status codes.
 3268     - DOC: update INSTALL with supported OpenBSD / FreeBSD versions
 3269     - BUG/MINOR: proto_tcp: Report warning messages when listeners are bound
 3270     - CLEANUP: cache: Fix leak of cconf->c.name during config check
 3271     - CLEANUP: ssl: Release cached SSL sessions on deinit
 3272     - BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read
 3273     - BUG/MINOR: mux-h1: Always set the session on frontend h1 stream
 3274     - MINOR: mux-h1: Don't wakeup the H1C when output buffer become available
 3275     - CLEANUP: sock-unix: Remove an unreachable goto clause
 3276     - BUG/MINOR: proxy: inc req counter on new syslog messages.
 3277     - BUG/MEDIUM: log: old processes with log foward section don't die on soft stop.
 3278     - MINOR: stats: inc req counter on listeners.
 3279     - MINOR: channel: new getword and getchar functions on channel.
 3280     - MEDIUM: log: syslog TCP support on log forward section.
 3281     - BUG/MINOR: proxy/log: frontend/backend and log forward names must differ
 3282     - DOC: re-work log forward bind statement documentation.
 3283     - DOC: fix a confusing typo on a regsub example
 3284     - BUILD: Add a DragonFlyBSD target
 3285     - BUG/MINOR: makefile: fix a tiny typo in the target list
 3286     - BUILD: makefile: Update feature flags for NetBSD
 3287     - CI: travis-ci: help Coverity to detect BUG_ON() as a real stop
 3288     - DOC: Add missing stats fields in the management doc
 3289     - BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams
 3290     - BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams
 3291     - DOC: Fix typos in configuration.txt
 3292     - BUG/MINOR: http: Fix content-length of the default 500 error
 3293     - BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses
 3294     - REGTESTS: mark abns_socket as broken
 3295     - MEDIUM: fd: always wake up one thread when enabling a foreing FD
 3296     - MEDIUM: listeners: don't bounce listeners management between queues
 3297     - MEDIUM: init: stop disabled proxies after initializing fdtab
 3298     - MEDIUM: listeners: make unbind_listener() converge if needed
 3299     - MEDIUM: deinit: close all receivers/listeners before scanning proxies
 3300     - MEDIUM: listeners: remove the now unused ZOMBIE state
 3301     - MINOR: listeners: do not uselessly try to close zombie listeners in soft_stop()
 3302     - CLEANUP: proxy: remove the first_to_listen hack in zombify_proxy()
 3303     - MINOR: listeners: introduce listener_set_state()
 3304     - MINOR: proxy: maintain per-state counters of listeners
 3305     - MEDIUM: proxy: remove the unused PR_STFULL state
 3306     - MEDIUM: proxy: remove the PR_STERROR state
 3307     - MEDIUM: proxy: remove state PR_STPAUSED
 3308     - MINOR: startup: don't rely on PR_STNEW to check for listeners
 3309     - CLEANUP: peers: don't use the PR_ST* states to mark enabled/disabled
 3310     - MEDIUM: proxy: replace proxy->state with proxy->disabled
 3311     - MEDIUM: proxy: remove start_proxies()
 3312     - MEDIUM: proxy: merge zombify_proxy() with stop_proxy()
 3313     - MINOR: listeners: check the current listener state in pause_listener()
 3314     - MINOR: listeners: check the current listener earlier state in resume_listener()
 3315     - MEDIUM: listener/proxy: make the listeners notify about proxy pause/resume
 3316     - MINOR: protocol: introduce protocol_{pause,resume}_all()
 3317     - MAJOR: signals: use protocol_pause_all() and protocol_resume_all()
 3318     - CLEANUP: proxy: remove the now unused pause_proxies() and resume_proxies()
 3319     - MEDIUM: proto_tcp: make the pause() more robust in multi-process
 3320     - BUG/MEDIUM: listeners: correctly report pause() errors
 3321     - MINOR: listeners: move fd_stop_recv() to the receiver's socket code
 3322     - CLEANUP: protocol: remove the ->disable_all method
 3323     - CLEANUP: listeners: remove unused disable_listener and disable_all_listeners
 3324     - MINOR: listeners: export enable_listener()
 3325     - MINOR: protocol: directly call enable_listener() from protocol_enable_all()
 3326     - CLEANUP: protocol: remove the ->enable_all method
 3327     - CLEANUP: listeners: remove the now unused enable_all_listeners()
 3328     - MINOR: protocol: rename the ->listeners field to ->receivers
 3329     - MINOR: protocol: replace ->pause(listener) with ->rx_suspend(receiver)
 3330     - MINOR: protocol: implement an ->rx_resume() method
 3331     - MINOR: listener: use the protocol's ->rx_resume() method when available
 3332     - MINOR: sock: provide a set of generic enable/disable functions
 3333     - MINOR: protocol: add a new pair of rx_enable/rx_disable methods
 3334     - MINOR: protocol: add a new pair of enable/disable methods for listeners
 3335     - MEDIUM: listeners: now use the listener's ->enable/disable
 3336     - MINOR: listeners: split delete_listener() in two versions
 3337     - MINOR: listeners: count unstoppable jobs on creation, not deletion
 3338     - MINOR: listeners: add a new stop_listener() function
 3339     - MEDIUM: proxy: make stop_proxy() now use stop_listener()
 3340     - MEDIUM: proxy: add mode PR_MODE_PEERS to flag peers frontends
 3341     - MEDIUM: proxy: centralize proxy status update and reporting
 3342     - MINOR: protocol: add protocol_stop_now() to instant-stop listeners
 3343     - MEDIUM: proxy: make soft_stop() stop most listeners using protocol_stop_now()
 3344     - MEDIUM: udp: implement udp_suspend() and udp_resume()
 3345     - MINOR: listener: add a few BUG_ON() statements to detect inconsistencies
 3346     - MEDIUM: listeners: always close master vs worker listeners
 3347     - BROKEN/MEDIUM: listeners: rework the unbind logic to make it idempotent
 3348     - MEDIUM: listener: let do_unbind_listener() decide whether to close or not
 3349     - CLEANUP: listeners: remove the do_close argument to unbind_listener()
 3350     - MINOR: listeners: move the LI_O_MWORKER flag to the receiver
 3351     - MEDIUM: receivers: add an rx_unbind() method in the protocols
 3352     - MINOR: listeners: split do_unbind_listener() in two
 3353     - MEDIUM: listeners: implement protocol level ->suspend/resume() calls
 3354     - MEDIUM: config: mark "grace" as deprecated
 3355     - MEDIUM: config: remove the deprecated and dangerous global "debug" directive
 3356     - BUG/MINOR: proxy: respect the proper format string in sig_pause/sig_listen
 3357     - MINOR: peers: heartbeat, collisions and handshake information for "show peers" command.
 3358     - BUILD: makefile: Enable getaddrinfo() on OS/X
 3359 
 3360 2020/09/25 : 2.3-dev5
 3361     - DOC: Fix typo in iif() example
 3362     - CLEANUP: Update .gitignore
 3363     - BUILD: introduce possibility to define ABORT_NOW() conditionally
 3364     - CI: travis-ci: help Coverity to recognize abort()
 3365     - BUG/MINOR: Fix type passed of sizeof() for calloc()
 3366     - CLEANUP: Do not use a fixed type for 'sizeof' in 'calloc'
 3367     - CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions
 3368     - BUILD: connection: fix build on clang after the VAR_ARRAY cleanup
 3369     - BUG/MINOR: ssl: verifyhost is case sensitive
 3370     - BUILD: makefile: change default value of CC from gcc to cc
 3371     - CI: travis-ci: split asan step out of running tests
 3372     - BUG/MINOR: server: report correct error message for invalid port on "socks4"
 3373     - BUG/MEDIUM: ssl: Don't call ssl_sock_io_cb() directly.
 3374     - BUG/MINOR: ssl/crt-list: crt-list could end without a \n
 3375     - BUG/MINOR: log-forward: fail on unknown keywords
 3376     - MEDIUM: log-forward: use "dgram-bind" instead of "bind" for the listener
 3377     - BUG/MEDIUM: log-forward: always quit on parsing errors
 3378     - MEDIUM: ssl: remove bundle support in crt-list and directories
 3379     - MEDIUM: ssl/cli: remove support for multi certificates bundle
 3380     - MINOR: ssl: crtlist_dup_ssl_conf() duplicates a ssl_bind_conf
 3381     - MINOR: ssl: crtlist_entry_dup() duplicates a crtlist_entry
 3382     - MEDIUM: ssl: emulates the multi-cert bundles in the crtlist
 3383     - MEDIUM: ssl: emulate multi-cert bundles loading in standard loading
 3384     - CLEANUP: ssl: remove test on "multi" variable in ckch functions
 3385     - CLEANUP: ssl/cli: remove test on 'multi' variable in CLI functions
 3386     - CLEANUP: ssl: remove utility functions for bundle
 3387     - DOC: explain bundle emulation in configuration.txt
 3388     - BUILD: fix build with openssl < 1.0.2 since bundle removal
 3389     - BUG/MINOR: log: gracefully handle the "udp@" address format for log servers
 3390     - BUG/MINOR: dns: gracefully handle the "udp@" address format for nameservers
 3391     - MINOR: listener: create a new struct "settings" in bind_conf
 3392     - MINOR: listener: move bind_proc and bind_thread to struct settings
 3393     - MINOR: listener: move the interface to the struct settings
 3394     - MINOR: listener: move the network namespace to the struct settings
 3395     - REORG: listener: create a new struct receiver
 3396     - REORG: listener: move the listening address to a struct receiver
 3397     - REORG: listener: move the receiving FD to struct receiver
 3398     - REORG: listener: move the listener's proto to the receiver
 3399     - MINOR: listener: make sock_find_compatible_fd() check the socket type
 3400     - REORG: listener: move the receiver part to a new file
 3401     - MINOR: receiver: link the receiver to its settings
 3402     - MINOR: receiver: link the receiver to its owner
 3403     - MINOR: listener: prefer to retrieve the socket's settings via the receiver
 3404     - MINOR: receiver: add a receiver-specific flag to indicate the socket is bound
 3405     - MINOR: listener: move the INHERITED flag down to the receiver
 3406     - MINOR: receiver: move the FOREIGN and V6ONLY options from listener to settings
 3407     - MINOR: sock: make sock_find_compatible_fd() only take a receiver
 3408     - MINOR: protocol: rename the ->bind field to ->listen
 3409     - MINOR: protocol: add a new ->bind() entry to bind the receiver
 3410     - MEDIUM: sock_inet: implement sock_inet_bind_receiver()
 3411     - MEDIUM: tcp: make use of sock_inet_bind_receiver()
 3412     - MEDIUM: udp: make use of sock_inet_bind_receiver()
 3413     - MEDIUM: sock_unix: implement sock_unix_bind_receiver()
 3414     - MEDIUM: uxst: make use of sock_unix_bind_receiver()
 3415     - MEDIUM: sockpair: implement sockpair_bind_receiver()
 3416     - MEDIUM: proto_sockpair: make use of sockpair_bind_receiver()
 3417     - MEDIUM: protocol: explicitly start the receiver before the listener
 3418     - MEDIUM: protocol: do not call proto->bind() anymore from bind_listener()
 3419     - MINOR: protocol: add a new proto_fam structure for protocol families
 3420     - MINOR: protocol: retrieve the family-specific fields from the family
 3421     - CLEANUP: protocol: remove family-specific fields from struct protocol
 3422     - MINOR: protocol: add a real family for existing FDs
 3423     - CLEANUP: tools: make str2sa_range() less awful for fd@ and sockpair@
 3424     - MINOR: tools: make str2sa_range() take more options than just resolve
 3425     - MINOR: tools: add several PA_O_PORT_* flags in str2sa_range() callers
 3426     - MEDIUM: tools: make str2sa_range() validate callers' port specifications
 3427     - MEDIUM: config: remove all checks for missing/invalid ports/ranges
 3428     - MINOR: tools: add several PA_O_* flags in str2sa_range() callers
 3429     - MINOR: listener: remove the inherited arg to create_listener()
 3430     - MINOR: tools: make str2sa_range() optionally return the fd
 3431     - MINOR: log: detect LOG_TARGET_FD from the fd and not from the syntax
 3432     - MEDIUM: tools: make str2sa_range() resolve pre-bound listeners
 3433     - MINOR: config: do not test an inherited socket again
 3434     - MEDIUM: tools: make str2sa_range() check for the sockpair's FD usability
 3435     - MINOR: tools: start to distinguish stream and dgram in str2sa_range()
 3436     - MEDIUM: tools: make str2sa_range() only report AF_CUST_UDP on listeners
 3437     - MINOR: tools: remove the central test for "udp" in str2sa_range()
 3438     - MINOR: cfgparse: add str2receiver() to parse dgram receivers
 3439     - MINOR: log-forward: use str2receiver() to parse the dgram-bind address
 3440     - MEDIUM: config: make str2listener() not accept datagram sockets anymore
 3441     - MINOR: listener: pass the chosen protocol to create_listeners()
 3442     - MINOR: tools: make str2sa_range() directly return the protocol
 3443     - MEDIUM: tools: make str2sa_range() check that the protocol has ->connect()
 3444     - MINOR: protocol: add the control layer type in the protocol struct
 3445     - MEDIUM: protocol: store the socket and control type in the protocol array
 3446     - MEDIUM: tools: make str2sa_range() use protocol_lookup()
 3447     - MEDIUM: proto_udp: replace last AF_CUST_UDP* with AF_INET*
 3448     - MINOR: tools: drop listener detection hack from str2sa_range()
 3449     - BUILD: sock_unix: add missing errno.h
 3450     - MINOR: sock_inet: report the errno string in binding errors
 3451     - MINOR: sock_unix: report the errno string in binding errors
 3452     - BUILD: sock_inet: include errno.h
 3453     - MINOR: h2/trace: also display the remaining frame length in traces
 3454     - BUG/MINOR: h2/trace: do not display "stream error" after a frame ACK
 3455     - BUG/MEDIUM: h2: report frame bits only for handled types
 3456     - BUG/MINOR: http-fetch: Don't set the sample type during the htx prefetch
 3457     - BUG/MINOR: Fix memory leaks cfg_parse_peers
 3458     - BUG/MINOR: config: Fix memory leak on config parse listen
 3459     - MINOR: backend: make the "whole" option of balance uri take only one bit
 3460     - MINOR: backend: add a new "path-only" option to "balance uri"
 3461     - REGTESTS: add a few load balancing tests
 3462     - BUG/MEDIUM: listeners: do not pause foreign listeners
 3463     - BUG/MINOR: listeners: properly close listener FDs
 3464     - BUILD: trace: include tools.h
 3465 
 3466 2020/09/11 : 2.3-dev4
 3467     - MINOR: hlua: Add error message relative to the Channel manipulation and HTTP mode
 3468     - BUG/MEDIUM: ssl: crt-list negative filters don't work
 3469     - DOC: overhauling github issue templates
 3470     - MEDIUM: cfgparse: Emit hard error on truncated lines
 3471     - DOC: cache: Use '<name>' instead of '<id>' in error message
 3472     - MINOR: cache: Reject duplicate cache names
 3473     - REGTEST: remove stray leading spaces in converteers_ref_cnt_never_dec.vtc
 3474     - MINOR: stats: prevent favicon.ico requests for stats page
 3475     - BUILD: tools: include auxv a bit later
 3476     - BUILD: task: work around a bogus warning in gcc 4.7/4.8 at -O1
 3477     - MEDIUM: ssl: Support certificate chaining for certificate generation
 3478     - MINOR: ssl: Support SAN extension for certificate generation
 3479     - MINOR: tcp: don't try to set/clear v6only on inherited sockets
 3480     - BUG/MINOR: reload: detect the OS's v6only status before choosing an old socket
 3481     - MINOR: reload: determine the foreing binding status from the socket
 3482     - MEDIUM: reload: stop passing listener options along with FDs
 3483     - BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards
 3484     - MEDIUM: fd: replace usages of fd_remove() with fd_stop_both()
 3485     - CLEANUP: fd: remove fd_remove() and rename fd_dodelete() to fd_delete()
 3486     - MINOR: fd: add a new "exported" flag and use it for all regular listeners
 3487     - MEDIUM: reload: pass all exportable FDs, not just listeners
 3488     - DOC: add description of pidfile in master-worker mode
 3489     - BUG/MINOR: reload: do not fail when no socket is sent
 3490     - REORG: tcp: move TCP actions from proto_tcp.c to tcp_act.c
 3491     - CLEANUP: tcp: stop exporting smp_fetch_src()
 3492     - REORG: tcp: move TCP sample fetches from proto_tcp.c to tcp_sample.c
 3493     - REORG: tcp: move TCP bind/server keywords from proto_tcp.c to cfgparse-tcp.c
 3494     - REORG: unix: move UNIX bind/server keywords from proto_uxst.c to cfgparse-unix.c
 3495     - REORG: sock: start to move some generic socket code to sock.c
 3496     - MINOR: sock: introduce sock_inet and sock_unix
 3497     - MINOR: tcp/udp/unix: make use of proto->addrcmp() to compare addresses
 3498     - MINOR: sock_inet: implement sock_inet_get_dst()
 3499     - REORG: inet: replace tcp_is_foreign() with sock_inet_is_foreign()
 3500     - REORG: sock_inet: move v6only_default from proto_tcp.c to sock_inet.c
 3501     - REORG: sock_inet: move default_tcp_maxseg from proto_tcp.c
 3502     - REORG: listener: move xfer_sock_list to sock.{c,h}.
 3503     - MINOR: sock: add interface and namespace length to xfer_sock_list
 3504     - MINOR: sock: implement sock_find_compatible_fd()
 3505     - MINOR: sock_inet: move the IPv4/v6 transparent mode code to sock_inet
 3506     - REORG: sock: move get_old_sockets() from haproxy.c
 3507     - MINOR: sock: do not use LI_O_* in xfer_sock_list anymore
 3508     - MINOR: sock: distinguish dgram from stream types when retrieving old sockets
 3509     - BUILD: sock_unix: fix build issue with isdigit()
 3510     - BUG/MEDIUM: http-ana: Don't wait to send 1xx responses received from servers
 3511     - MINOR: http-htx: Add an option to eval query-string when the path is replaced
 3512     - BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action
 3513     - MINOR: http-htx: Handle an optional reason when replacing the response status
 3514     - MINOR: contrib/spoa-server: allow MAX_FRAME_SIZE override
 3515     - BUG/MAJOR: contrib/spoa-server: Fix unhandled python call leading to memory leak
 3516     - BUG/MINOR: contrib/spoa-server: Ensure ip address references are freed
 3517     - BUG/MINOR: contrib/spoa-server: Do not free reference to NULL
 3518     - BUG/MINOR: contrib/spoa-server: Updating references to free in case of failure
 3519     - BUG/MEDIUM: contrib/spoa-server: Fix ipv4_address used instead of ipv6_address
 3520     - CLEANUP: http: silence a cppcheck warning in get_http_auth()
 3521     - REGTEST: increase some short timeouts to make tests more reliable
 3522     - BUG/MINOR: threads: work around a libgcc_s issue with chrooting
 3523     - BUILD: thread: limit the libgcc_s workaround to glibc only
 3524     - MINOR: protocol: do not call proto->bind_all() anymore
 3525     - MINOR: protocol: do not call proto->unbind_all() anymore
 3526     - CLEANUP: protocol: remove all ->bind_all() and ->unbind_all() functions
 3527     - MAJOR: init: start all listeners via protocols and not via proxies anymore
 3528     - BUG/MINOR: startup: haproxy -s cause 100% cpu
 3529     - Revert "BUG/MINOR: http-rules: Replace path and query-string in "replace-path" action"
 3530     - BUG/MEDIUM: doc: Fix replace-path action description
 3531     - MINOR: http-rules: Add set-pathq and replace-pathq actions
 3532     - MINOR: http-fetch: Add pathq sample fetch
 3533     - REGTEST: Add a test for request path manipulations, with and without the QS
 3534     - MINOR: Commit .gitattributes
 3535     - CLEANUP: Update .gitignore
 3536     - BUG/MEDIUM: dns: Don't store additional records in a linked-list
 3537     - BUG/MEDIUM: dns: Be sure to renew IP address for already known servers
 3538     - MINOR: server: Improve log message sent when server address is updated
 3539     - DOC: ssl-load-extra-files only applies to certificates on bind lines
 3540     - BUG/MINOR: auth: report valid crypto(3) support depending on build options
 3541     - BUG/MEDIUM: mux-h1: always apply the timeout on half-closed connections
 3542     - BUILD: threads: better workaround for late loading of libgcc_s
 3543     - BUILD: compiler: reserve the gcc version checks to the gcc compiler
 3544     - BUILD: compiler: workaround a glibc madness around __attribute__()
 3545     - BUILD: intops: on x86_64, the bswap instruction is called bswapq
 3546     - BUILD: trace: always have an argument before variadic args in macros
 3547     - BUILD: traces: don't pass an empty argument for missing ones
 3548     - BUG/MINOR: haproxy: Free uri_auth->scope during deinit
 3549     - CLEANUP: Free old_argv on deinit
 3550     - CLEANUP: haproxy: Free post_proxy_check_list in deinit()
 3551     - CLEANUP: haproxy: Free per_thread_*_list in deinit()
 3552     - CLEANUP: haproxy: Free post_check_list in deinit()
 3553     - BUG/MEDIUM: pattern: Renew the pattern expression revision when it is pruned
 3554     - REORG: tools: move PARSE_OPT_* from tools.h to tools-t.h
 3555     - MINOR: sample: Add iif(<true>,<false>) converter
 3556 
 3557 2020/08/14 : 2.3-dev3
 3558     - SCRIPTS: git-show-backports: make -m most only show the left branch
 3559     - SCRIPTS: git-show-backports: emit the shell command to backport a commit
 3560     - BUILD: Makefile: require SSL_LIB, SSL_INC to be explicitly set
 3561     - CI: travis-ci: specify SLZ_LIB, SLZ_INC for travis builds
 3562     - BUG/MEDIUM: mux-h1: Refresh H1 connection timeout after a synchronous send
 3563     - CLEANUP: dns: typo in reported error message
 3564     - BUG/MAJOR: dns: disabled servers through SRV records never recover
 3565     - BUG/MINOR: spoa-server: fix size_t format printing
 3566     - DOC: spoa-server: fix false friends `actually`
 3567     - BUG/MINOR: ssl: fix memory leak at OCSP loading
 3568     - BUG/MEDIUM: ssl: memory leak of ocsp data at SSL_CTX_free()
 3569     - BUG/MEDIUM: map/lua: Return an error if a map is loaded during runtime
 3570     - MINOR: arg: Add an argument type to keep a reference on opaque data
 3571     - BUG/MINOR: converters: Store the sink in an arg pointer for debug() converter
 3572     - BUG/MINOR: lua: Duplicate map name to load it when a new Map object is created
 3573     - BUG/MINOR: arg: Fix leaks during arguments validation for fetches/converters
 3574     - BUG/MINOR: lua: Check argument type to convert it to IPv4/IPv6 arg validation
 3575     - BUG/MINOR: lua: Check argument type to convert it to IP mask in arg validation
 3576     - MINOR: hlua: Don't needlessly copy lua strings in trash during args validation
 3577     - BUG/MINOR: lua: Duplicate lua strings in sample fetches/converters arg array
 3578     - MEDIUM: lua: Don't filter exported fetches and converters
 3579     - MINOR: lua: Add support for userlist as fetches and converters arguments
 3580     - MINOR: lua: Add support for regex as fetches and converters arguments
 3581     - MINOR: arg: Use chunk_destroy() to release string arguments
 3582     - BUG/MINOR: snapshots: leak of snapshots on deinit()
 3583     - CLEANUP: ssl: ssl_sock_crt2der semicolon and spaces
 3584     - MINOR: ssl: add ssl_{c,s}_chain_der fetch methods
 3585     - CLEANUP: fix all duplicated semicolons
 3586     - BUG/MEDIUM: ssl: fix the ssl-skip-self-issued-ca option
 3587     - BUG/MINOR: ssl: ssl-skip-self-issued-ca requires >= 1.0.2
 3588     - BUG/MINOR: stats: use strncmp() instead of memcmp() on health states
 3589     - BUILD: makefile: don't disable -Wstringop-overflow anymore
 3590     - BUG/MINOR: ssl: double free w/ smp_fetch_ssl_x_chain_der()
 3591     - BUG/MEDIUM: htx: smp_prefetch_htx() must always validate the direction
 3592     - BUG/MEDIUM: ssl: never generates the chain from the verify store
 3593     - OPTIM: regex: PCRE2 use JIT match when JIT optimisation occured.
 3594     - BUG/MEDIUM: ssl: does not look for all SNIs before chosing a certificate
 3595     - CLEANUP: ssl: remove poorly readable nested ternary
 3596 
 3597 2020/07/31 : 2.3-dev2
 3598     - DOC: ssl: req_ssl_sni needs implicit TLS
 3599     - BUG/MEDIUM: arg: empty args list must be dropped
 3600     - BUG/MEDIUM: resolve: fix init resolving for ring and peers section.
 3601     - BUG/MAJOR: tasks: don't requeue global tasks into the local queue
 3602     - MINOR: tasks/debug: make the thread affinity BUG_ON check a bit stricter
 3603     - MINOR: tasks/debug: add a few BUG_ON() to detect use of wrong timer queue
 3604     - MINOR: tasks/debug: add a BUG_ON() check to detect requeued task on free
 3605     - BUG/MAJOR: dns: Make the do-resolve action thread-safe
 3606     - BUG/MEDIUM: dns: Release answer items when a DNS resolution is freed
 3607     - MEDIUM: htx: Add a flag on a HTX message when no more data are expected
 3608     - BUG/MEDIUM: stream-int: Don't set MSG_MORE flag if no more data are expected
 3609     - BUG/MEDIUM: http-ana: Only set CF_EXPECT_MORE flag on data filtering
 3610     - CLEANUP: dns: remove 45 "return" statements from dns_validate_dns_response()
 3611     - BUG/MINOR: htx: add two missing HTX_FL_EOI and remove an unexpected one
 3612     - BUG/MINOR: mux-fcgi: Don't url-decode the QUERY_STRING parameter anymore
 3613     - BUILD: tools: fix build with static only toolchains
 3614     - DOC: Use gender neutral language
 3615     - BUG/MINOR: debug: Don't dump the lua stack if it is not initialized
 3616     - BUG/MAJOR: dns: fix null pointer dereference in snr_update_srv_status
 3617     - BUG/MAJOR: dns: don't treat Authority records as an error
 3618     - CI : travis-ci : prepare for using stock OpenSSL
 3619     - CI: travis-ci : switch to stock openssl when openssl-1.1.1 is used
 3620     - MEDIUM: lua: Add support for the Lua 5.4
 3621     - BUG/MEDIUM: dns: Don't yield in do-resolve action on a final evaluation
 3622     - BUG/MINOR: lua: Abort execution of actions that yield on a final evaluation
 3623     - MINOR: tcp-rules: Return an internal error if an action yields on a final eval
 3624     - BUG/MINOR: tcp-rules: Preserve the right filter analyser on content eval abort
 3625     - BUG/MINOR: tcp-rules: Set the inspect-delay when a tcp-response action yields
 3626     - MEDIUM: tcp-rules: Use a dedicated expiration date for tcp ruleset
 3627     - MEDIUM: lua: Set the analyse expiration date with smaller wake_time only
 3628     - BUG/MEDIUM: connection: Be sure to always install a mux for sync connect
 3629     - MINOR: connection: Preinstall the mux for non-ssl connect
 3630     - MINOR: stream-int: Be sure to have a mux to do sends and receives
 3631     - BUG/MINOR: lua: Fix a possible null pointer deref on lua ctx
 3632     - SCRIPTS: announce-release: add the link to the wiki in the announce messages
 3633     - CI: travis-ci: use better name for Coverity scan job
 3634     - CI: travis-ci: use proper linking flags for SLZ build
 3635     - BUG/MEDIUM: backend: always attach the transport before installing the mux
 3636     - BUG/MEDIUM: tcp-checks: always attach the transport before installing the mux
 3637     - MINOR: connection: avoid a useless recvfrom() on outgoing connections
 3638     - MINOR: mux-h1: do not even try to receive if the connection is not fully set up
 3639     - MINOR: mux-h1: do not try to receive on backend before sending a request
 3640     - CLEANUP: assorted typo fixes in the code and comments
 3641     - BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp()
 3642 
 3643 2020/07/17 : 2.3-dev1
 3644     - MINOR: config: make strict limits enabled by default
 3645     - BUG/MINOR: acl: Fix freeing of expr->smp in prune_acl_expr
 3646     - BUG/MINOR: sample: Fix freeing of conv_exprs in release_sample_expr
 3647     - BUG/MINOR: haproxy: Free proxy->format_unique_id during deinit
 3648     - BUG/MINOR: haproxy: Add missing free of server->(hostname|resolvers_id)
 3649     - BUG/MINOR: haproxy: Free proxy->unique_id_header during deinit
 3650     - BUG/MINOR: haproxy: Free srule->file during deinit
 3651     - BUG/MINOR: haproxy: Free srule->expr during deinit
 3652     - BUG/MINOR: sample: Free str.area in smp_check_const_bool
 3653     - BUG/MINOR: sample: Free str.area in smp_check_const_meth
 3654     - CLEANUP: haproxy: Free proxy_deinit_list in deinit()
 3655     - CLEANUP: haproxy: Free post_deinit_list in deinit()
 3656     - CLEANUP: haproxy: Free server_deinit_list in deinit()
 3657     - CLEANUP: haproxy: Free post_server_check_list in deinit()
 3658     - CLEANUP: Add static void vars_deinit()
 3659     - CLEANUP: Add static void hlua_deinit()
 3660     - CLEANUP: contrib/prometheus-exporter: typo fixes for ssl reuse metric
 3661     - BUG/MEDIUM: lists: add missing store barrier on MT_LIST_BEHEAD()
 3662     - BUG/MEDIUM: lists: add missing store barrier in MT_LIST_ADD/MT_LIST_ADDQ
 3663     - MINOR: tcp: Support TCP keepalive parameters customization
 3664     - BUILD: tcp: condition TCP keepalive settings to platforms providing them
 3665     - MINOR: lists: rename some MT_LIST operations to clarify them
 3666     - MINOR: buffer: use MT_LIST_ADDQ() for buffer_wait lists additions
 3667     - MINOR: connection: use MT_LIST_ADDQ() to add connections to idle lists
 3668     - MINOR: tasks: use MT_LIST_ADDQ() when killing tasks.
 3669     - CONTRIB: da: fix memory leak in dummy function da_atlas_open()
 3670     - CI: travis-ci: speed up osx build by running brew scripted, switch to latest osx image
 3671     - BUG/MEDIUM: mux-h2: Don't add private connections in available connection list
 3672     - BUG/MEDIUM: mux-fcgi: Don't add private connections in available connection list
 3673     - MINOR: connection: Set the SNI on server connections before installing the mux
 3674     - MINOR: connection: Set new connection as private on reuse never
 3675     - MINOR: connection: Add a wrapper to mark a connection as private
 3676     - MEDIUM: connection: Add private connections synchronously in session server list
 3677     - MINOR: connection: Use a dedicated function to look for a session's connection
 3678     - MINOR: connection: Set the conncetion target during its initialisation
 3679     - MINOR: session: Take care to decrement idle_conns counter in session_unown_conn
 3680     - MINOR: server: Factorize code to deal with reuse of server idle connections
 3681     - MINOR: server: Factorize code to deal with connections removed from an idle list
 3682     - CLEANUP: connection: remove unused field idle_time from the connection struct
 3683     - BUG/MEDIUM: mux-h1: Continue to process request when switching in tunnel mode
 3684     - MINOR: raw_sock: Report the number of bytes emitted using the splicing
 3685     - MINOR: contrib/prometheus-exporter: Add missing global and per-server metrics
 3686     - MINOR: backend: Add sample fetches to get the server's weight
 3687     - BUG/MINOR: mux-fcgi: Handle empty STDERR record
 3688     - BUG/MINOR: mux-fcgi: Set conn state to RECORD_P when skipping the record padding
 3689     - BUG/MINOR: mux-fcgi: Set flags on the right stream field for empty FCGI_STDOUT
 3690     - BUG/MINOR: backend: fix potential null deref on srv_conn
 3691     - BUG/MEDIUM: log: issue mixing sampled to not sampled log servers.
 3692     - MEDIUM: udp: adds minimal proto udp support for message listeners.
 3693     - MEDIUM: log/sink: re-work and merge of build message API.
 3694     - MINOR: log: adds syslog udp message handler and parsing.
 3695     - MEDIUM: log: adds log forwarding section.
 3696     - MINOR: log: adds counters on received syslog messages.
 3697     - BUG/MEDIUM: fcgi-app: fix memory leak in fcgi_flt_http_headers
 3698     - BUG/MEDIUM: server: resolve state file handle leak on reload
 3699     - BUG/MEDIUM: server: fix possibly uninitialized state file on close
 3700     - BUG/MEDIUM: channel: Be aware of SHUTW_NOW flag when output data are peeked
 3701     - BUILD: config: address build warning on raspbian+rpi4
 3702     - BUG/MAJOR: tasks: make sure to always lock the shared wait queue if needed
 3703     - BUILD: config: fix again bugs gcc warnings on calloc
 3704 
 3705 2020/07/07 : 2.3-dev0
 3706     - [RELEASE] Released version 2.3-dev0
 3707     - MINOR: version: back to development, update status message
 3708 
 3709 2020/07/07 : 2.3-dev0
 3710     - exact copy of 2.2.0
 3711 
 3712 2020/07/07 : 2.2.0
 3713     - BUILD: mux-h2: fix typo breaking build when using DEBUG_LOCK
 3714     - CLEANUP: makefile: update the outdated list of DEBUG_xxx options
 3715     - BUILD: tools: make resolve_sym_name() return a const
 3716     - CLEANUP: auth: fix useless self-include of auth-t.h
 3717     - BUILD: tree-wide: cast arguments to tolower/toupper to unsigned char
 3718     - CLEANUP: assorted typo fixes in the code and comments
 3719     - WIP/MINOR: ssl: add sample fetches for keylog in frontend
 3720     - DOC: fix tune.ssl.keylog sample fetches array
 3721     - BUG/MINOR: ssl: check conn in keylog sample fetch
 3722     - DOC: configuration: various typo fixes
 3723     - MINOR: log: Remove unused case statement during the log-format string parsing
 3724     - BUG/MINOR: mux-h1: Fix the splicing in TUNNEL mode
 3725     - BUG/MINOR: mux-h1: Don't read data from a pipe if the mux is unable to receive
 3726     - BUG/MINOR: mux-h1: Disable splicing only if input data was processed
 3727     - BUG/MEDIUM: mux-h1: Disable splicing for the conn-stream if read0 is received
 3728     - MINOR: mux-h1: Improve traces about the splicing
 3729     - BUG/MINOR: backend: Remove CO_FL_SESS_IDLE if a client remains on the last server
 3730     - BUG/MEDIUM: connection: Don't consider new private connections as available
 3731     - BUG/MINOR: connection: See new connection as available only on reuse always
 3732     - DOC: configuration: remove obsolete mentions of H2 being converted to HTTP/1.x
 3733     - CLEANUP: ssl: remove unrelevant comment in smp_fetch_ssl_x_keylog()
 3734     - DOC: update INSTALL with new compiler versions
 3735     - DOC: minor update to coding style file
 3736     - MINOR: version: mention that it's an LTS release now
 3737 
 3738 2020/07/04 : 2.2-dev12
 3739     - BUG/MINOR: mux_h2: don't lose the leaving trace in h2_io_cb()
 3740     - MINOR: cli: make "show sess" stop at the last known session
 3741     - CLEANUP: buffers: remove unused buffer_wq_lock lock
 3742     - BUG/MEDIUM: buffers: always allocate from the local cache first
 3743     - MINOR: connection: align toremove_{lock,connections} and cleanup into idle_conns
 3744     - CONTRIB: debug: add missing flags SI_FL_L7_RETRY & SI_FL_D_L7_RETRY
 3745     - BUG/MEDIUM: connections: Don't increase curr_used_conns for shared connections.
 3746     - BUG/MEDIUM: checks: Increment the server's curr_used_conns
 3747     - REORG: buffer: rename buffer.c to dynbuf.c
 3748     - REORG: includes: create tinfo.h for the thread_info struct
 3749     - CLEANUP: pool: only include the type files from types
 3750     - MINOR: pools: move the LRU cache heads to thread_info
 3751     - BUG/MINOR: debug: fix "show fd" null-deref when built with DEBUG_FD
 3752     - MINOR: stats: add 3 new output values for the per-server idle conn state
 3753     - MINOR: activity: add per-thread statistics on FD takeover
 3754     - BUG/MINOR: server: start cleaning idle connections from various points
 3755     - MEDIUM: server: improve estimate of the need for idle connections
 3756     - MINOR: stats: add the estimated need of concurrent connections per server
 3757     - BUG/MINOR: threads: Don't forget to init each thread toremove_lock.
 3758     - BUG/MEDIUM: lists: Lock the element while we check if it is in a list.
 3759     - Revert "BUG/MEDIUM: lists: Lock the element while we check if it is in a list."
 3760     - BUG/MINOR: haproxy: don't wake already stopping threads on exit
 3761     - BUG/MINOR: server: always count one idle slot for current thread
 3762     - MEDIUM: server: use the two thresholds for the connection release algorithm
 3763     - BUG/MINOR: http-rules: Fix ACLs parsing for http deny rules
 3764     - BUG/MINOR: sched: properly cover for a rare MT_LIST_ADDQ() race
 3765     - MINOR: mux-h1: avoid taking the toremove_lock in on dying tasks
 3766     - MINOR: mux-h2: avoid taking the toremove_lock in on dying tasks
 3767     - MINOR: mux-fcgi: avoid taking the toremove_lock in on dying tasks
 3768     - MINOR: pools: increase MAX_BASE_POOLS to 64
 3769     - DOC: ssl: add "allow-0rtt" and "ciphersuites" in crt-list
 3770     - BUG/MEDIUM: pattern: Add a trailing \0 to match strings only if possible
 3771     - BUG/MEDIUM: log-format: fix possible endless loop in parse_logformat_string()
 3772     - BUG/MINOR: proxy: fix dump_server_state()'s misuse of the trash
 3773     - BUG/MINOR: proxy: always initialize the trash in show servers state
 3774     - MINOR: cli/proxy: add a new "show servers conn" command
 3775     - MINOR: server: skip servers with no idle conns earlier
 3776     - BUG/MINOR: server: fix the connection release logic regarding nearly full conditions
 3777     - MEDIUM: server: add a new pool-low-conn server setting
 3778     - BUG/MEDIUM: backend: always search in the safe list after failing on the idle one
 3779     - MINOR: backend: don't always takeover from the same threads
 3780     - MINOR: sched: make sched->task_list_size atomic
 3781     - MEDIUM: sched: create a new TASK_KILLED task flag
 3782     - MEDIUM: sched: implement task_kill() to kill a task
 3783     - MEDIUM: mux-h1: use task_kill() during h1_takeover() instead of task_wakeup()
 3784     - MEDIUM: mux-h2: use task_kill() during h2_takeover() instead of task_wakeup()
 3785     - MEDIUM: mux-fcgi: use task_kill() during fcgi_takeover() instead of task_wakeup()
 3786     - MINOR: list: Add MT_LIST_DEL_SAFE_NOINIT() and MT_LIST_ADDQ_NOCHECK()
 3787     - CLEANUP: connections: rename the toremove_lock to takeover_lock
 3788     - MEDIUM: connections: Don't use a lock when moving connections to remove.
 3789     - DOC: configuration: add missing index entries for tune.pool-{low,high}-fd-ratio
 3790     - DOC: configuration: fix alphabetical ordering for tune.pool-{high,low}-fd-ratio
 3791     - MINOR: config: add a new tune.idle-pool.shared global setting.
 3792     - MINOR: 51d: silence a warning about null pointer dereference
 3793     - MINOR: debug: add a new "debug dev memstats" command
 3794     - MINOR: log-format: allow to preserve spacing in log format strings
 3795     - BUILD: debug: avoid build warnings with DEBUG_MEM_STATS
 3796     - BUG/MAJOR: sched: make sure task_kill() always queues the task
 3797     - BUG/MEDIUM: muxes: Make sure nobody stole the connection before using it.
 3798     - BUG/MEDIUM: cli/proxy: don't try to dump idle connection state if there's none
 3799     - BUILD: haproxy: fix build error when RLIMIT_AS is not set
 3800     - BUG/MAJOR: sched: make it work also when not building with DEBUG_STRICT
 3801     - MINOR: log: add time second fraction field to rfc5424 log timestamp.
 3802     - BUG/MINOR: log: missing timezone on iso dates.
 3803     - BUG/MEDIUM: server: don't kill all idle conns when there are not enough
 3804     - MINOR: sched: split tasklet_wakeup() into tasklet_wakeup_on()
 3805     - BUG/MEDIUM: connections: Set the tid for the old tasklet on takeover.
 3806     - BUG/MEDIUM: connections: Let the xprt layer know a takeover happened.
 3807     - BUG/MINOR: http_act: don't check capture id in backend (2)
 3808     - BUILD: makefile: disable threads by default on OpenBSD
 3809     - BUILD: peers: fix build warning with gcc 4.2.1
 3810     - CI: cirrus-ci: exclude slow reg-tests
 3811 
 3812 2020/06/26 : 2.2-dev11
 3813     - REGTEST: Add a simple script to tests errorfile directives in proxy sections
 3814     - BUG/MEDIUM: fcgi-app: Resolve the sink if a fcgi-app logs in a ring buffer
 3815     - BUG/MINOR: spoe: correction of setting bits for analyzer
 3816     - BUG/MINOR: cfgparse: Support configurations without newline at EOF
 3817     - MINOR: cfgparse: Warn on truncated lines / files
 3818     - BUG/MINOR: http_ana: clarify connection pointer check on L7 retry
 3819     - MINOR: debug: add a new DEBUG_FD build option
 3820     - BUG/MINOR: tasks: make sure never to exceed max_processed
 3821     - MINOR: task: add a new pointer to current tasklet queue
 3822     - BUG/MEDIUM: task: be careful not to run too many tasks at TL_URGENT
 3823     - BUG/MINOR: cfgparse: Fix argument reference in PARSE_ERR_TOOMANY message
 3824     - BUG/MINOR: cfgparse: Fix calculation of position for PARSE_ERR_TOOMANY message
 3825     - BUG/MEDIUM: ssl: fix ssl_bind_conf double free
 3826     - MINOR: ssl: free bind_conf_node in crtlist_free()
 3827     - MINOR: ssl: free the crtlist and the ckch during the deinit()
 3828     - BUG/MINOR: ssl: fix build with ckch_deinit() and crtlist_deinit()
 3829     - BUG/MINOR: ssl/cli: certs added from the CLI can't be deleted
 3830     - MINOR: ssl: move the ckch/crtlist deinit to ssl_sock.c
 3831     - MEDIUM: tasks: apply a fair CPU distribution between tasklet classes
 3832     - MINOR: tasks: make current_queue an index instead of a pointer
 3833     - MINOR: tasks: add a mask of the queues with active tasklets
 3834     - MINOR: tasks: pass the queue index to run_task_from_list()
 3835     - MINOR: tasks: make run_tasks_from_lists() scan the queues itself
 3836     - MEDIUM: tasks: add a tune.sched.low-latency option
 3837     - BUG/MEDIUM: ssl/cli: 'commit ssl cert' crashes when no private key
 3838     - BUG/MINOR: cfgparse: don't increment linenum on incomplete lines
 3839     - MINOR: tools: make parse_line() always terminate the args list
 3840     - BUG/MINOR: cfgparse: report extraneous args *after* the string is allocated
 3841     - MINOR: cfgparse: sanitize the output a little bit
 3842     - MINOR: cli/ssl: handle trailing slashes in crt-list commands
 3843     - MINOR: ssl: add the ssl_s_* sample fetches for server side certificate
 3844     - BUG/MEDIUM: http-ana: Don't loop trying to generate a malformed 500 response
 3845     - BUG/MINOR: stream-int: Don't wait to send truncated HTTP messages
 3846     - BUG/MINOR: http-ana: Set CF_EOI on response channel for generated responses
 3847     - BUG/MINOR: http-ana: Don't wait to send 1xx responses generated by HAProxy
 3848     - MINOR: spoe: Don't systematically create new applets if processing rate is low
 3849     - DOC: fix some typos in the ssl_s_{s|i}_dn documentation
 3850     - BUILD: fix ssl_sample.c when building against BoringSSL
 3851     - CI: travis-ci: switch BoringSSL builds to ninja
 3852     - CI: extend spellchecker whitelist
 3853     - DOC: assorted typo fixes in the documentation
 3854     - CLEANUP: assorted typo fixes in the code and comments
 3855     - MINOR: http: Add support for http 413 status
 3856     - REGTEST: ssl: tests the ssl_f_* sample fetches
 3857     - REGTEST: ssl: add some ssl_c_* sample fetches test
 3858     - DOC: ssl: update the documentation of "commit ssl cert"
 3859     - BUG/MINOR: cfgparse: correctly deal with empty lines
 3860     - BUG/MEDIUM: fetch: Fix hdr_ip misparsing IPv4 addresses due to missing NUL
 3861 
 3862 2020/06/19 : 2.2-dev10
 3863     - BUILD: include: add sys/types before netinet/tcp.h
 3864     - BUG/MEDIUM: log: don't hold the log lock during writev() on a file descriptor
 3865     - BUILD: Remove nowarn for warnings that do not trigger
 3866     - BUG/MEDIUM: pattern: fix thread safety of pattern matching
 3867     - BUILD: Re-enable -Wimplicit-fallthrough
 3868     - BUG/MINOR: ssl: fix ssl-{min,max}-ver with openssl < 1.1.0
 3869     - BUILD: thread: add parenthesis around values of locking macros
 3870     - BUILD: proto_uxst: shut up yet another gcc's absurd warning
 3871     - BUG/MEDIUM: checks: Fix off-by-one in allocation of SMTP greeting cmd
 3872     - CI: travis-ci: use "-O1" for clang builds
 3873     - MINOR: haproxy: Add void deinit_and_exit(int)
 3874     - MINOR: haproxy: Make use of deinit_and_exit() for clean exits
 3875     - BUG/MINOR: haproxy: Free rule->arg.vars.expr during deinit_act_rules
 3876     - BUILD: compression: make gcc 10 happy with free_zlib()
 3877     - BUILD: atomic: add string.h for memcpy() on ARM64
 3878     - BUG/MINOR: http: make smp_fetch_body() report that the contents may change
 3879     - BUG/MINOR: tcp-rules: tcp-response must check the buffer's fullness
 3880     - BUILD: haproxy: mark deinit_and_exit() as noreturn
 3881     - BUG/MAJOR: vars: Fix bogus free() during deinit() for http-request rules
 3882     - BUG/MEDIUM: ebtree: use a byte-per-byte memcmp() to compare memory blocks
 3883     - MINOR: tools: add a new configurable line parse, parse_line()
 3884     - BUG/MEDIUM: cfgparse: use parse_line() to expand/unquote/unescape config lines
 3885     - BUG/MEDIUM: cfgparse: stop after a reasonable amount of fatal error
 3886     - MINOR: http: do not close connections anymore after internal responses
 3887     - BUG/MINOR: cfgparse: Add missing fatal++ in PARSE_ERR_HEX case
 3888     - BUG/MINOR: spoe: add missing key length check before checking key names
 3889     - MINOR: version: put the compiler version output into version.c not haproxy.c
 3890     - MINOR: compiler: always define __has_feature()
 3891     - MINOR: version: report the presence of the compiler's address sanitizer
 3892     - BUILD: Fix build by including haproxy/global.h
 3893     - BUG/MAJOR: connection: always disable ready events once reported
 3894     - CLEANUP: activity: remove unused counter fd_lock
 3895     - DOC: fd: make it clear that some fields ordering must absolutely be respected
 3896     - MINOR: activity: report the number of times poll() reports I/O
 3897     - MINOR: activity: rename confusing poll_* fields in the output
 3898     - MINOR: fd: Fix a typo in a coment.
 3899     - BUG/MEDIUM: fd: Don't fd_stop_recv() a fd we don't own.
 3900     - BUG/MEDIUM: fd: Call fd_stop_recv() when we just got a fd.
 3901     - MINOR: activity: group the per-loop counters at the top
 3902     - MINOR: activity: rename the "stream" field to "stream_calls"
 3903     - MEDIUM: fd: refine the fd_takeover() migration lock
 3904     - MINOR: fd: slightly optimize the fd_takeover double-CAS loop
 3905     - MINOR: fd: factorize the fd_takeover() exit path to make it safer
 3906     - MINOR: peers: do not use localpeer as an array anymore
 3907     - MEDIUM: peers: add the "localpeer" global option
 3908     - MEDIUM: fd: add experimental support for edge-triggered polling
 3909     - CONTRIB: debug: add the missing flags CO_FL_SAFE_LIST and CO_FL_IDLE_LIST
 3910     - MINOR: haproxy: process signals before runnable tasks
 3911     - MEDIUM: tasks: clean up the front side of the wait queue in wake_expired_tasks()
 3912     - MEDIUM: tasks: also process late wakeups in process_runnable_tasks()
 3913     - BUG/MINOR: cli: allow space escaping on the CLI
 3914     - BUG/MINOR: mworker/cli: fix the escaping in the master CLI
 3915     - BUG/MINOR: mworker/cli: fix semicolon escaping in master CLI
 3916     - REGTEST: http-rules: test spaces in ACLs
 3917     - REGTEST: http-rules: test spaces in ACLs with master CLI
 3918     - BUG/MAJOR: init: properly compute the default global.maxpipes value
 3919     - MEDIUM: map: make the "clear map" operation yield
 3920     - BUG/MEDIUM: stream-int: fix loss of CO_SFL_MSG_MORE flag in forwarding
 3921     - MINOR: mux_h1: Set H1_F_CO_MSG_MORE if we know we have more to send.
 3922     - BUG/MINOR: systemd: Wait for network to be online
 3923     - DOC: configuration: Unindent non-code sentences in the protobuf example
 3924     - DOC: configuration: http-check send was missing from matrix
 3925 
 3926 2020/06/11 : 2.2-dev9
 3927     - BUG/MINOR: http-htx: Don't forget to release the http reply in release function
 3928     - BUG/MINOR: http-htx: Fix a leak on error path during http reply parsing
 3929     - MINOR: checks: Remove dead code from process_chk_conn()
 3930     - REGTESTS: checks: Fix tls_health_checks when IPv6 addresses are used
 3931     - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for lua/txn_get_priv
 3932     - MINOR: lua: Use vars_unset_by_name_ifexist()
 3933     - CLEANUP: vars: Remove void vars_unset_by_name(const char*, size_t, struct sample*)
 3934     - MINOR: vars: Make vars_(un|)set_by_name(_ifexist|) return a success value
 3935     - MINOR: lua: Make `set_var()` and `unset_var()` return success
 3936     - MEDIUM: lua: Add `ifexist` parameter to `set_var`
 3937     - MEDIUM: ring: new section ring to declare custom ring buffers.
 3938     - REGTESTS: Add missing OPENSSL to REQUIRE_OPTIONS for compression/lua_validation
 3939     - REGTESTS: Require the version 2.2 to execute lua/set_var
 3940     - BUG/MEDIUM: checks: Refresh the conn-stream and the connection after a connect
 3941     - MINOR: checks: Remove useless tests on the connection and conn-stream
 3942     - BUG/MEDIUM: contrib/spoa: do not register python3.8 if --embed fail
 3943     - BUG/MEDIUM: connection: Ignore PP2 unique ID for stream-less connections
 3944     - BUG/MINOR: connection: Always get the stream when available to send PP2 line
 3945     - BUG/MEDIUM: backend: set the connection owner to the session when using alpn.
 3946     - MINOR: pools: compute an estimate of each pool's average needed objects
 3947     - MEDIUM: pools: directly free objects when pools are too much crowded
 3948     - REGTEST: Add connection/proxy_protocol_send_unique_id_alpn
 3949     - MINOR: http-ana: Make the function http_reply_to_htx() public
 3950     - MINOR: http-ana: Use proxy's error replies to emit 401/407 responses
 3951     - MINOR: http-rules: Use an action function to eval http-request auth rules
 3952     - CLEANUP: http: Remove unused HTTP message templates
 3953     - BUG/MEDIUM: checks: Don't blindly subscribe for receive if waiting for connect
 3954     - MINOR: checks: I/O callback function only rely on the data layer wake callback
 3955     - BUG/MINOR: lua: Add missing string length for lua sticktable lookup
 3956     - BUG/MEDIUM: logs: fix trailing zeros on log message.
 3957     - CI: cirrus-ci: skip reg-tests/connection/proxy_protocol_send_unique_id_alpn.vtc on CentOS 6
 3958     - BUG/MINOR: nameservers: fix error handling in parsing of resolv.conf
 3959     - BUG/MEDIUM: checks: Don't add a tcpcheck ruleset twice in the shared tree
 3960     - MEDIUM: ssl: use TLSv1.2 as the minimum default on bind lines
 3961     - CLEANUP: pools: use the regular lock for the flush operation on lockless pools
 3962     - SCRIPTS: publish-release: pass -n to gzip to remove timestamp
 3963     - MINOR: ring: re-work ring attach generic API.
 3964     - BUG/MINOR: error on unknown statement in ring section.
 3965     - MEDIUM: ring: add server statement to forward messages from a ring
 3966     - MEDIUM: ring: add new srv statement to support octet counting forward
 3967     - MINOR: ssl: set ssl-min-ver in ambiguous configurations
 3968     - CLEANUP: ssl: remove comment from dump_crtlist_sslconf()
 3969     - BUILD: sink: address build warning on 32-bit architectures
 3970     - BUG/MINOR: peers: fix internal/network key type mapping.
 3971     - CLEANUP: regex: remove outdated support for regex actions
 3972     - Revert "MINOR: ssl: rework add cert chain to CTX to be libssl independent"
 3973     - MINOR: mux-h1/proxy: Add a proxy option to disable clear h2 upgrade
 3974     - BUG/MEDIUM: lua: Reset analyse expiration timeout before executing a lua action
 3975     - DOC: add a line about comments in crt-list
 3976     - BUG/MEDIUM: hlua: Lock pattern references to perform set/add/del operations
 3977     - BUG/MINOR: checks: Fix test on http-check rulesets during config validity check
 3978     - BUG/MEDIUM: contrib/prometheus-exporter: Properly set flags to dump metrics
 3979     - BUG/MEDIUM: mworker: fix the copy of options in copy_argv()
 3980     - BUG/MINOR: init: -x can have a parameter starting with a dash
 3981     - BUG/MINOR: init: -S can have a parameter starting with a dash
 3982     - BUG/MEDIUM: mworker: fix the reload with an -- option
 3983     - BUG/MINOR: ssl: fix a trash buffer leak in some error cases
 3984     - BUG/MINOR: mworker: fix a memleak when execvp() failed
 3985     - MINOR: sample: Add secure_memcmp converter
 3986     - REORG: ebtree: move the C files from ebtree/ to src/
 3987     - REORG: ebtree: move the include files from ebtree to include/import/
 3988     - REORG: ebtree: clean up remains of the ebtree/ directory
 3989     - REORG: include: create new file haproxy/api-t.h
 3990     - REORG: include: create new file haproxy/api.h
 3991     - REORG: include: update all files to use haproxy/api.h or api-t.h if needed
 3992     - CLEANUP: include: remove common/config.h
 3993     - CLEANUP: include: remove unused template.h
 3994     - REORG: include: move MIN/MAX from tools.h to compat.h
 3995     - REORG: include: move SWAP/MID_RANGE/MAX_RANGE from tools.h to standard.h
 3996     - CLEANUP: include: remove unused common/tools.h
 3997     - REORG: include: move the base files from common/ to haproxy/
 3998     - REORG: include: move version.h to haproxy/
 3999     - REORG: include: move base64.h, errors.h and hash.h from common to to haproxy/
 4000     - REORG: include: move openssl-compat.h from common/ to haproxy/
 4001     - REORG: include: move ist.h from common/ to import/
 4002     - REORG: include: move the BUG_ON() code to haproxy/bug.h
 4003     - REORG: include: move debug.h from common/ to haproxy/
 4004     - CLEANUP: debug: drop unused function p_malloc()
 4005     - REORG: include: split buf.h into haproxy/buf-t.h and haproxy/buf.h
 4006     - REORG: include: move istbuf.h to haproxy/
 4007     - REORG: include: split mini-clist into haproxy/list and list-t.h
 4008     - REORG: threads: extract atomic ops from hathreads.h
 4009     - CLEANUP: threads: remove a few needless includes of hathreads.h
 4010     - REORG: include: split hathreads into haproxy/thread.h and haproxy/thread-t.h
 4011     - CLEANUP: thread: rename __decl_hathreads() to __decl_thread()
 4012     - REORG: include: move time.h from common/ to haproxy/
 4013     - REORG: include: move integer manipulation functions from standard.h to intops.h
 4014     - CLEANUP: include: remove excessive includes of common/standard.h
 4015     - REORG: include: move freq_ctr to haproxy/
 4016     - CLEANUP: pool: include freq_ctr.h and remove locally duplicated functions
 4017     - REORG: memory: move the pool type definitions to haproxy/pool-t.h
 4018     - REORG: memory: move the OS-level allocator to haproxy/pool-os.h
 4019     - MINOR: memory: don't let __pool_get_first() pick from the cache
 4020     - MEDIUM: memory: don't let pool_put_to_cache() free the objects itself
 4021     - MINOR: memory: move pool-specific path of the locked pool_free() to __pool_free()
 4022     - MEDIUM: memory: make local pools independent on lockless pools
 4023     - REORG: include: move common/memory.h to haproxy/pool.h
 4024     - REORG: include: move common/chunk.h to haproxy/chunk.h
 4025     - REORG: include: move activity to haproxy/
 4026     - REORG: include: move common/buffer.h to haproxy/dynbuf{,-t}.h
 4027     - REORG: include: move common/net_helper.h to haproxy/net_helper.h
 4028     - REORG: include: move common/namespace.h to haproxy/namespace{,-t}.h
 4029     - REORG: include: split common/regex.h into haproxy/regex{,-t}.h
 4030     - REORG: include: split common/xref.h into haproxy/xref{,-t}.h
 4031     - REORG: include: move common/ticks.h to haproxy/ticks.h
 4032     - REORG: include: split common/http.h into haproxy/http{,-t}.h
 4033     - REORG: include: split common/http-hdr.h into haproxy/http-hdr{,-t}.h
 4034     - REORG: include: move common/h1.h to haproxy/h1.h
 4035     - REORG: include: split common/htx.h into haproxy/htx{,-t}.h
 4036     - REORG: include: move hpack*.h to haproxy/ and split hpack-tbl
 4037     - REORG: include: move common/h2.h to haproxy/h2.h
 4038     - REORG: include: move common/fcgi.h to haproxy/
 4039     - REORG: include: move protocol.h to haproxy/protocol{,-t}.h
 4040     - REORG: tools: split common/standard.h into haproxy/tools{,-t}.h
 4041     - REORG: include: move dict.h to hparoxy/dict{,-t}.h
 4042     - REORG: include: move shctx to haproxy/shctx{,-t}.h
 4043     - REORG: include: move port_range.h to haproxy/port_range{,-t}.h
 4044     - REORG: include: move fd.h to haproxy/fd{,-t}.h
 4045     - REORG: include: move ring to haproxy/ring{,-t}.h
 4046     - REORG: include: move sink.h to haproxy/sink{,-t}.h
 4047     - REORG: include: move pipe.h to haproxy/pipe{,-t}.h
 4048     - CLEANUP: include: remove empty raw_sock.h
 4049     - REORG: include: move proto_udp.h to haproxy/proto_udp{,-t}.h
 4050     - REORG: include: move proto/proto_sockpair.h to haproxy/proto_sockpair.h
 4051     - REORG: include: move compression.h to haproxy/compression{,-t}.h
 4052     - REORG: include: move h1_htx.h to haproxy/h1_htx.h
 4053     - REORG: include: move http_htx.h to haproxy/http_htx{,-t}.h
 4054     - REORG: include: move hlua.h to haproxy/hlua{,-t}.h
 4055     - REORG: include: move hlua_fcn.h to haproxy/hlua_fcn.h
 4056     - REORG: include: move action.h to haproxy/action{,-t}.h
 4057     - REORG: include: move arg.h to haproxy/arg{,-t}.h
 4058     - REORG: include: move auth.h to haproxy/auth{,-t}.h
 4059     - REORG: include: move dns.h to haproxy/dns{,-t}.h
 4060     - REORG: include: move flt_http_comp.h to haproxy/
 4061     - REORG: include: move counters.h to haproxy/counters-t.h
 4062     - REORG: include: split mailers.h into haproxy/mailers{,-t}.h
 4063     - REORG: include: move capture.h to haproxy/capture{,-t}.h
 4064     - REORG: include: move frontend.h to haproxy/frontend.h
 4065     - REORG: include: move obj_type.h to haproxy/obj_type{,-t}.h
 4066     - REORG: include: move http_rules.h to haproxy/http_rules.h
 4067     - CLEANUP: include: remove unused mux_pt.h
 4068     - REORG: include: move mworker.h to haproxy/mworker{,-t}.h
 4069     - REORG: include: move ssl_utils.h to haproxy/ssl_utils.h
 4070     - REORG: include: move ssl_ckch.h to haproxy/ssl_ckch{,-t}.h
 4071     - REORG: move ssl_crtlist.h to haproxy/ssl_crtlist{,-t}.h
 4072     - REORG: include: move lb_chash.h to haproxy/lb_chash{,-t}.h
 4073     - REORG: include: move lb_fas.h to haproxy/lb_fas{,-t}.h
 4074     - REORG: include: move lb_fwlc.h to haproxy/lb_fwlc{,-t}.h
 4075     - REORG: include: move lb_fwrr.h to haproxy/lb_fwrr{,-t}.h
 4076     - REORG: include: move listener.h to haproxy/listener{,-t}.h
 4077     - REORG: include: move pattern.h to haproxy/pattern{,-t}.h
 4078     - REORG: include: move map to haproxy/map{,-t}.h
 4079     - REORG: include: move payload.h to haproxy/payload.h
 4080     - REORG: include: move sample.h to haproxy/sample{,-t}.h
 4081     - REORG: include: move protocol_buffers.h to haproxy/protobuf{,-t}.h
 4082     - REORG: include: move vars.h to haproxy/vars{,-t}.h
 4083     - REORG: include: split global.h into haproxy/global{,-t}.h
 4084     - REORG: include: move task.h to haproxy/task{,-t}.h
 4085     - REORG: include: move proto_tcp.h to haproxy/proto_tcp.h
 4086     - REORG: include: move signal.h to haproxy/signal{,-t}.h
 4087     - REORG: include: move tcp_rules.h to haproxy/tcp_rules.h
 4088     - REORG: include: move connection.h to haproxy/connection{,-t}.h
 4089     - REORG: include: move checks.h to haproxy/check{,-t}.h
 4090     - REORG: include: move http_fetch.h to haproxy/http_fetch.h
 4091     - REORG: include: move peers.h to haproxy/peers{,-t}.h
 4092     - REORG: include: move stick_table.h to haproxy/stick_table{,-t}.h
 4093     - REORG: include: move session.h to haproxy/session{,-t}.h
 4094     - REORG: include: move trace.h to haproxy/trace{,-t}.h
 4095     - REORG: include: move acl.h to haproxy/acl.h{,-t}.h
 4096     - REORG: include: split common/uri_auth.h into haproxy/uri_auth{,-t}.h
 4097     - REORG: move applet.h to haproxy/applet{,-t}.h
 4098     - REORG: include: move stats.h to haproxy/stats{,-t}.h
 4099     - REORG: include: move cli.h to haproxy/cli{,-t}.h
 4100     - REORG: include: move lb_map.h to haproxy/lb_map{,-t}.h
 4101     - REORG: include: move ssl_sock.h to haproxy/ssl_sock{,-t}.h
 4102     - REORG: include: move stream_interface.h to haproxy/stream_interface{,-t}.h
 4103     - REORG: include: move channel.h to haproxy/channel{,-t}.h
 4104     - REORG: include: move http_ana.h to haproxy/http_ana{,-t}.h
 4105     - REORG: include: move filters.h to haproxy/filters{,-t}.h
 4106     - REORG: include: move fcgi-app.h to haproxy/fcgi-app{,-t}.h
 4107     - REORG: include: move log.h to haproxy/log{,-t}.h
 4108     - REORG: include: move proxy.h to haproxy/proxy{,-t}.h
 4109     - REORG: include: move spoe.h to haproxy/spoe{,-t}.h
 4110     - REORG: include: move backend.h to haproxy/backend{,-t}.h
 4111     - REORG: include: move queue.h to haproxy/queue{,-t}.h
 4112     - REORG: include: move server.h to haproxy/server{,-t}.h
 4113     - REORG: include: move stream.h to haproxy/stream{,-t}.h
 4114     - REORG: include: move cfgparse.h to haproxy/cfgparse.h
 4115     - CLEANUP: hpack: export debug functions and move inlines to .h
 4116     - REORG: check: move the e-mail alerting code to mailers.c
 4117     - REORG: check: move tcpchecks away from check.c
 4118     - REORG: check: move email_alert* from proxy-t.h to mailers-t.h
 4119     - REORG: check: extract the external checks from check.{c,h}
 4120     - CLEANUP: include: don't include stddef.h directly
 4121     - CLEANUP: include: don't include proxy-t.h in global-t.h
 4122     - CLEANUP: include: move sample_data out of sample-t.h
 4123     - REORG: include: move the error reporting functions to from log.h to errors.h
 4124     - BUILD: reorder objects in the Makefile for faster builds
 4125     - CLEANUP: compiler: add a THREAD_ALIGNED macro and use it where appropriate
 4126     - CLEANUP: include: make atomic.h part of the base API
 4127     - REORG: include: move MAX_THREADS to defaults.h
 4128     - REORG: include: move THREAD_LOCAL and __decl_thread() to compiler.h
 4129     - CLEANUP: include: tree-wide alphabetical sort of include files
 4130     - REORG: include: make list-t.h part of the base API
 4131     - REORG: dgram: rename proto_udp to dgram
 4132 
 4133 2020/05/22 : 2.2-dev8
 4134     - MINOR: checks: Improve report of unexpected errors for expect rules
 4135     - MEDIUM: checks: Add matching on log-format string for expect rules
 4136     - DOC: Fix req.body and co documentation to be accurate
 4137     - MEDIUM: checks: Remove dedicated sample fetches and use response ones instead
 4138     - CLEANUP: checks: sort and rename tcpcheck_expect_type types
 4139     - MINOR: checks: Use dedicated actions to send log-format strings in send rules
 4140     - MINOR: checks: Simplify matching on HTTP headers in HTTP expect rules
 4141     - MINOR: checks/sample: Remove unnecessary tests on the sample session
 4142     - REGTEST: checks: Adapt SSL error message reported when connection is rejected
 4143     - MINOR: mworker: replace ha_alert by ha_warning when exiting successfuly
 4144     - MINOR: checks: Support log-format string to set the URI for HTTP send rules
 4145     - MINOR: checks: Support log-format string to set the body for HTTP send rules
 4146     - DOC: Be more explicit about configurable check ok/error/timeout status
 4147     - MINOR: checks: Make matching on HTTP headers for expect rules less obscure
 4148     - BUG/MEDIUM: lua: Fix dumping of stick table entries for STD_T_DICT
 4149     - BUG/MINOR: config: Make use_backend and use-server post-parsing less obscur
 4150     - REGTESTS: make the http-check-send test require version 2.2
 4151     - BUG/MINOR: http-ana: fix NTLM response parsing again
 4152     - BUG/MEDIUM: http_ana: make the detection of NTLM variants safer
 4153     - BUG/MINOR: cfgparse: Abort parsing the current line if an invalid \x sequence is encountered
 4154     - MINOR: cfgparse: Improve error message for invalid \x sequences
 4155     - CI: travis-ci: enable arm64 builds again
 4156     - MEDIUM: ssl: increase default-dh-param to 2048
 4157     - CI: travis-ci: skip pcre2 on arm64 build
 4158     - CI: travis-ci: extend the build time for SSL to 60 minutes
 4159     - CLEANUP: config: drop unused setting CONFIG_HAP_MEM_OPTIM
 4160     - CLEANUP: config: drop unused setting CONFIG_HAP_INLINE_FD_SET
 4161     - CLENAUP: config: move CONFIG_HAP_LOCKLESS_POOLS out of config.h
 4162     - CLEANUP: remove THREAD_LOCAL from config.h
 4163     - CI: travis-ci: upgrade LibreSSL versions
 4164     - DOC: assorted typo fixes in the documentation
 4165     - CI: extend spellchecker whitelist
 4166     - CLEANUP: assorted typo fixes in the code and comments
 4167     - MAJOR: contrib: porting spoa_server to support python3
 4168     - BUG/MEDIUM: checks: Subscribe to I/O events on an unfinished connect
 4169     - BUG/MINOR: checks: Don't subscribe to I/O events if it is already done
 4170     - BUG/MINOR: checks: Rely on next I/O oriented rule when waiting for a connection
 4171     - MINOR: checks: Don't try to send outgoing data if waiting to be able to send
 4172     - MINOR: sample: Move aes_gcm_dec implementation into sample.c
 4173     - MINOR: sample: Add digest and hmac converters
 4174     - BUG/MEDIUM: checks: Subscribe to I/O events only if a mux was installed
 4175     - BUG/MINOR: sample/ssl: Fix digest converter for openssl < 1.1.0
 4176     - BUG/MINOR: pools: use %u not %d to report pool stats in "show pools"
 4177     - BUG/MINOR: pollers: remove uneeded free in global init
 4178     - CLEANUP: select: enhance readability in init
 4179     - BUG/MINOR: soft-stop: always wake up waiting threads on stopping
 4180     - MINOR: soft-stop: let the first stopper only signal other threads
 4181     - BUILD: select: only declare existing local labels to appease clang
 4182     - BUG/MEDIUM: streams: Remove SF_ADDR_SET if we're retrying due to L7 retry.
 4183     - BUG/MEDIUM: stream: Only allow L7 retries when using HTTP.
 4184     - DOC: retry-on can only be used with mode http
 4185     - MEDIUM: ssl: allow to register callbacks for SSL/TLS protocol messages
 4186     - MEDIUM: ssl: split ssl_sock_msgcbk() and use a new callback mechanism
 4187     - MINOR: ssl: add a new function ssl_sock_get_ssl_object()
 4188     - MEDIUM: ssl: use ssl_sock_get_ssl_object() in fetchers where appropriate
 4189     - REORG: ssl: move macros and structure definitions to ssl_sock.h
 4190     - CLEANUP: ssl: remove the shsess_* macros
 4191     - REORG: move the crt-list structures in their own .h
 4192     - REORG: ssl: move the ckch structures to types/ssl_ckch.h
 4193     - CLEANUP: ssl: add ckch prototypes in proto/ssl_ckch.h
 4194     - REORG: ssl: move crtlist functions to src/ssl_crtlist.c
 4195     - CLEANUP: ssl: avoid circular dependencies in ssl_crtlist.h
 4196     - REORG: ssl: move the ckch_store related functions to src/ssl_ckch.c
 4197     - REORG: ssl: move ckch_inst functions to src/ssl_ckch.c
 4198     - REORG: ssl: move the crt-list CLI functions in src/ssl_crtlist.c
 4199     - REORG: ssl: move the CLI 'cert' functions to src/ssl_ckch.c
 4200     - REORG: ssl: move ssl configuration to cfgparse-ssl.c
 4201     - MINOR: ssl: remove static keyword in some SSL utility functions
 4202     - REORG: ssl: move ssl_sock_ctx and fix cross-dependencies issues
 4203     - REORG: ssl: move sample fetches to src/ssl_sample.c
 4204     - REORG: ssl: move utility functions to src/ssl_utils.c
 4205     - DOC: ssl: update MAINTAINERS file
 4206     - CI: travis-ci: switch arm64 builds to use openssl from distro
 4207     - MINOR: stats: Prepare for more accurate moving averages
 4208     - MINOR: stats: Expose native cum_req metric for a server
 4209     - MEDIUM: stats: Enable more accurate moving average calculation for stats
 4210     - BUILD: ssl: include buffer common headers for ssl_sock_ctx
 4211     - BUILD: ssl: include errno.h in ssl_crtlist.c
 4212     - CLEANUP: acl: remove unused assignment
 4213     - DOC/MINOR: halog: Add long help info for ic flag
 4214     - BUILD: ssl: fix build without OPENSSL_NO_ENGINE
 4215     - DOC: SPOE is no longer experimental
 4216     - BUG/MINOR: cache: Don't needlessly test "cache" keyword in parse_cache_flt()
 4217     - MINOR: config: Don't dump keywords if argument is NULL
 4218     - MEDIUM: checks: Make post-41 the default mode for mysql checks
 4219     - BUG/MINOR: logs: prevent double line returns in some events.
 4220     - MEDIUM: sink: build header in sink_write for log formats
 4221     - MEDIUM: logs: buffer targets now rely on new sink_write
 4222     - MEDIUM: sink: add global statement to create a new ring (sink buffer)
 4223     - MEDIUM: hpack: use a pool for the hpack table
 4224     - BUG/MAJOR: mux-fcgi: Stop sending loop if FCGI stream is blocked for any reason
 4225     - BUG/MEDIUM: ring: write-lock the ring while attaching/detaching
 4226     - MINOR: applet: adopt the wait list entry from the CLI
 4227     - MINOR: ring: make the applet code not depend on the CLI
 4228     - Revert "MEDIUM: sink: add global statement to create a new ring (sink buffer)"
 4229     - CI: travis-ci: fix libslz download URL
 4230     - MINOR: ssl: split config and runtime variable for ssl-{min,max}-ver
 4231     - CLEANUP: http_ana: Remove unused TXN flags
 4232     - BUG/MINOR: http-rules: Mark http return rules as final
 4233     - MINOR: http-htx: Add http_reply type based on what is used for http return rules
 4234     - CLEANUP: http-htx: Rename http_error structure into http_error_msg
 4235     - MINOR: http-rules: Use http_reply structure for http return rules
 4236     - MINOR: http-htx: Use a dedicated function to release http_reply objects
 4237     - MINOR: http-htx: Use a dedicated function to parse http reply arguments
 4238     - MINOR: http-htx: Use a dedicated function to check http reply validity
 4239     - MINOR: http-ana: Use a dedicated function to send a response from an http reply
 4240     - MEDIUM: http-rules: Rely on http reply for http deny/tarpit rules
 4241     - MINOR: http-htx: Store default error messages in a global http reply array
 4242     - MINOR: http-htx: Store messages of an http-errors section in a http reply array
 4243     - MINOR: http-htx: Store errorloc/errorfile messages in http replies
 4244     - MINOR: proxy: Add references on http replies for proxy error messages
 4245     - MINOR: http-htx: Use http reply from the http-errors section
 4246     - MINOR: http-ana: Use a TXN flag to prevent after-response ruleset evaluation
 4247     - MEDIUM: http-ana: Use http replies for HTTP error messages
 4248     - CLEANUP: http-htx: Remove unused storage of error messages in buffers
 4249     - MINOR: htx: Add a function to copy a buffer in an HTX message
 4250     - CLEANUP: channel: Remove channel_htx_copy_msg() function
 4251     - MINOR: http-ana: Add a function to write an http reply in an HTX message
 4252     - MINOR: http-htx/proxy: Add http-error directive using http return syntax
 4253     - DOC: Fix "errorfile" description in the configuration manual
 4254     - BUG/MINOR: checks: Respect check-ssl param when a port or an addr is specified
 4255     - BUILD: hpack: make sure the hpack table can still be built standalone
 4256     - CONTRIB: hpack: make use of the simplified standalone HPACK API
 4257     - MINOR: connection: add pp2-never-send-local to support old PP2 behavior
 4258 
 4259 2020/05/05 : 2.2-dev7
 4260     - MINOR: version: Show uname output in display_version()
 4261     - CI: run weekly OpenSSL "no-deprecated" builds
 4262     - CLEANUP: log: fix comment of parse_logformat_string()
 4263     - DOC: Improve documentation on http-request set-src
 4264     - MINOR: ssl/cli: disallow SSL options for directory in 'add ssl crt-list'
 4265     - MINOR: ssl/cli: restrain certificate path when inserting into a directory
 4266     - MINOR: ssl: add ssl-skip-self-issued-ca global option
 4267     - BUG/MINOR: ssl: default settings for ssl server options are not used
 4268     - MINOR: config: add a global directive to set default SSL curves
 4269     - BUG/MEDIUM: http-ana: Handle NTLM messages correctly.
 4270     - DOC: internals: update the SSL architecture schema
 4271     - BUG/MINOR: tools: fix the i386 version of the div64_32 function
 4272     - BUG/MINOR: mux-fcgi/trace: fix wrong set of trace flags in fcgi_strm_add_eom()
 4273     - BUG/MINOR: http: make url_decode() optionally convert '+' to SP
 4274     - DOC: option logasap does not depend on mode
 4275     - MEDIUM: memory: make pool_gc() run under thread isolation
 4276     - MINOR: contrib: make the peers wireshark dissector a plugin
 4277     - BUG/MINOR: http-ana: Throw a 500 error if after-response ruleset fails on errors
 4278     - BUG/MINOR: check: Update server address and port to execute an external check
 4279     - MINOR: mini-clist: Add functions to iterate backward on a list
 4280     - MINOR: checks: Add a way to send custom headers and payload during http chekcs
 4281     - MINOR: server: respect warning and alert semantic
 4282     - BUG/MINOR: checks: Respect the no-check-ssl option
 4283     - BUG/MEDIUM: server/checks: Init server check during config validity check
 4284     - CLEANUP: checks: Don't export anymore init_check and srv_check_healthcheck_port
 4285     - BUG/MINOR: checks: chained expect will not properly wait for enough data
 4286     - BUG/MINOR: checks: Forbid tcp-check lines in default section as documented
 4287     - MINOR: checks: Use an enum to describe the tcp-check rule type
 4288     - MINOR: checks: Simplify connection flag parsing in tcp-check connect
 4289     - MEDIUM: checks: rewind to the first inverse expect rule of a chain on new data
 4290     - MINOR: checks: simplify tcp expect config parser
 4291     - MINOR: checks: add min-recv tcp-check expect option
 4292     - MINOR: checks: add linger option to tcp connect
 4293     - MINOR: checks: define a tcp expect type
 4294     - MEDIUM: checks: rewrite tcp-check expect block
 4295     - MINOR: checks: Stop xform buffers to null-terminated string for tcp-check rules
 4296     - MINOR: checks: add rbinary expect match type
 4297     - MINOR: checks: Simplify functions to get step id and comment
 4298     - MEDIUM: checks: capture groups in expect regexes
 4299     - MINOR: checks: Don't use a static tcp rule list head
 4300     - MEDIUM: checks: Use a non-comment rule iterator to get next rule
 4301     - MEDIUM: proxy/checks: Register a keyword to parse tcp-check rules
 4302     - MINOR: checks: Set the tcp-check rule index during parsing
 4303     - MINOR: checks: define tcp-check send type
 4304     - MINOR: checks: define a tcp-check connect type
 4305     - MEDIUM: checks: Add implicit tcp-check connect rule
 4306     - MAJOR: checks: Refactor and simplify the tcp-check loop
 4307     - MEDIUM: checks: Associate a session to each tcp-check healthcheck
 4308     - MINOR: checks/vars: Add a check scope for variables
 4309     - MEDIUM: checks: Parse custom action rules in tcp-checks
 4310     - MINOR: checks: Add support to set-var and unset-var rules in tcp-checks
 4311     - MINOR: checks: Add the sni option for tcp-check connect rules
 4312     - MINOR: checks: Add the via-socks4 option for tcp-check connect rules
 4313     - MINOR: checks: Add the alpn option for tcp-check connect rules
 4314     - MINOR: ssl: Export a generic function to parse an alpn string
 4315     - MINOR: checks: Add the default option for tcp-check connect rules
 4316     - MINOR: checks: Add the addr option for tcp-check connect rule
 4317     - MEDIUM: checks: Support expression to set the port
 4318     - MEDIUM: checks: Support log-format strings for tcp-check send rules
 4319     - MINOR: log: Don't depends on a stream to process samples in log-format string
 4320     - MINOR: log: Don't systematically set LW_REQ when a sample expr is added
 4321     - MEDIUM: checks: Add a shared list of tcp-check rules
 4322     - MINOR: sample: add htonl converter
 4323     - MINOR: sample: add cut_crlf converter
 4324     - MINOR: sample: add ltrim converter
 4325     - MINOR: sample: add rtrim converter
 4326     - MINOR: checks: Use a name for the healthcheck status enum
 4327     - MINOR: checks: Add option to tcp-check expect rules to customize error status
 4328     - MINOR: checks: Merge tcp-check comment rules with the others at config parsing
 4329     - MINOR: checks: Add a sample fetch to extract a block from the input check buffer
 4330     - MEDIUM: checks: Add on-error/on-success option on tcp-check expect rules
 4331     - MEDIUM: checks: Add status-code sample expression on tcp-check expect rules
 4332     - MINOR: checks: Relax the default option for tcp-check connect rules
 4333     - MEDIUM: checks: Add a list of vars to set before executing a tpc-check ruleset
 4334     - MINOR: checks: Export the tcpcheck_eval_ret enum
 4335     - MINOR: checks: Use dedicated function to handle onsuccess/onerror messages
 4336     - MINOR: checks: Support custom functions to eval a tcp-check expect rules
 4337     - MEDIUM: checks: Implement redis check using tcp-check rules
 4338     - MEDIUM: checks: Implement ssl-hello check using tcp-check rules
 4339     - MEDIUM: checks: Implement smtp check using tcp-check rules
 4340     - MEDIUM: checks: Implement postgres check using tcp-check rules
 4341     - MEDIUM: checks: Implement MySQL check using tcp-check rules
 4342     - MEDIUM: checks: Implement LDAP check using tcp-check rules
 4343     - MEDIUM: checks: Implement SPOP check using tcp-check rules
 4344     - MINOR: server/checks: Move parsing of agent keywords in checks.c
 4345     - MINOR: server/checks: Move parsing of server check keywords in checks.c
 4346     - MEDIUM: checks: Implement agent check using tcp-check rules
 4347     - REGTEST: Adapt regtests about checks to recent changes
 4348     - MINOR: Produce tcp-check info message for pure tcp-check rules only
 4349     - MINOR: checks: Add an option to set success status of tcp-check expect rules
 4350     - MINOR: checks: Improve log message of tcp-checks on success
 4351     - MINOR: proxy/checks: Move parsing of httpchk option in checks.c
 4352     - MINOR: proxy/checks: Move parsing of tcp-check option in checks.c
 4353     - MINOR: proxy/checks: Register a keyword to parse http-check rules
 4354     - MINOR: proxy/checks: Move parsing of external-check option in checks.c
 4355     - MINOR: proxy/checks: Register a keyword to parse external-check rules
 4356     - MEDIUM: checks: Use a shared ruleset to store tcp-check rules
 4357     - MINOR: checks: Use an indirect string to represent the expect matching string
 4358     - MINOR: checks: Introduce flags to configure in tcp-check expect rules
 4359     - MINOR: standard: Add my_memspn and my_memcspn
 4360     - MINOR: checks: Add a reverse non-comment rule iterator to get last rule
 4361     - MAJOR: checks: Implement HTTP check using tcp-check rules
 4362     - MINOR: checks: Make resume conditions more explicit in tcpcheck_main()
 4363     - MINOR: connection: Add macros to know if a conn or a cs uses an HTX mux
 4364     - MEDIUM: checks: Refactor how data are received in tcpcheck_main()
 4365     - MINOR: checks/obj_type: Add a new object type for checks
 4366     - BUG/MINOR: obj_type: Handle stream object in obj_base_ptr() function
 4367     - MINOR: checks: Use the check as origin when a session is created
 4368     - MINOR: checks: Add a mux proto to health-check and tcp-check connect rule
 4369     - MINOR: connection: Add a function to install a mux for a health-check
 4370     - MAJOR: checks: Use the best mux depending on the protocol for health checks
 4371     - MEDIUM: checks: Implement default TCP check using tcp-check rules
 4372     - MINOR: checks: Remove unused code about pure TCP checks
 4373     - CLEANUP: checks: Reorg checks.c file to be more readable
 4374     - REGTEST: Fix reg-tests about health-checks to adapt them to recent changes
 4375     - MINOR: ist: Add a function to retrieve the ist pointer
 4376     - MINOR: checks: Use ist API as far as possible
 4377     - BUG/MEDIUM: checks: Be sure to subscribe for sends if outgoing data remains
 4378     - MINOR: checks: Use a tree instead of a list to store tcp-check rulesets
 4379     - BUG/MINOR: checks: Send the right amount of outgoing data for HTTP checks
 4380     - REGTEST: Add scripts to test based tcp-check health-checks
 4381     - Revert "MEDIUM: checks: capture groups in expect regexes"
 4382     - DOC: Add documentation about comments for tcp-check and http-check directives
 4383     - DOC: Fix the tcp-check and http-check directives layout
 4384     - BUG/MEDIUM: checks: Use the mux protocol specified on the server line
 4385     - MINOR: checks: Support mux protocol definition for tcp and http health checks
 4386     - BUG/MINOR: mux-fcgi: Be sure to have a connection as session's origin to use it
 4387     - MINOR: checks: Support list of status codes on http-check expect rules
 4388     - BUG/MEDIUM: checks: Unsubscribe to mux events when a conn-stream is destroyed
 4389     - REGTEST: Add a script to validate agent checks
 4390     - BUG/MINOR: server: Fix server_finalize_init() to avoid unused variable
 4391     - BUG/MEDIUM: checks: unsubscribe for events on the old conn-stream on connect
 4392     - BUG/MINOR: checks: Only use ssl_sock_is_ssl() if compiled with SSL support
 4393     - BUG/MINOR: checks/server: use_ssl member must be signed
 4394     - BUG/MEDIUM: sessions: Always pass the mux context as argument to destroy a mux
 4395     - BUG/MEDIUM: checks: Destroy the conn-stream before the session
 4396     - BUG/MINOR: checks: Fix PostgreSQL regex on the authentication packet
 4397     - CI: cirrus-ci: remove reg-tests/checks/tcp-check-ssl.vtc on CentOS 6
 4398     - MINOR: checks: Support HTTP/2 version (without '.0') for http-check send rules
 4399     - MINOR: checks: Use ver keyword to specify the HTTP version for http checks
 4400     - BUG/MINOR: checks: Remove wrong variable redeclaration
 4401     - BUG/MINOR: checks: Properly handle truncated mysql server messages
 4402     - CLEANUP: checks: Remove unused code when ldap server message is parsed
 4403     - MINOR: checks: Make the use of the check's server more explicit on connect
 4404     - BUG/MINOR: checks: Avoid incompatible cast when a binary string is parsed
 4405     - BUG/MINOR: checks: Remove bad call to free() when an expect rule is parsed
 4406     - BUG/MINOR: checks: Don't lose warning on proxy capability
 4407     - MINOR: log: Add "Tu" timer
 4408     - BUG/MINOR: checks: Set the output buffer length before calling parse_binary()
 4409     - BUG/MEDIUM: mux-h1: make sure we always have a timeout on front connections
 4410     - REGTEST: ssl: test the client certificate authentication
 4411     - DOC: give a more accurate description of what check does
 4412     - BUG/MEDIUM: capture: capture-req/capture-res converters crash without a stream
 4413     - BUG/MEDIUM: capture: capture.{req,res}.* crash without a stream
 4414     - BUG/MEDIUM: http: the "http_first_req" sample fetch could crash without a steeam
 4415     - BUG/MEDIUM: http: the "unique-id" sample fetch could crash without a steeam
 4416     - CLEANUP: http: add a few comments on certain functions' assumptions about streams
 4417     - BUG/MEDIUM: sample: make the CPU and latency sample fetches check for a stream
 4418     - MINOR: http-htx: Export functions to update message authority and host
 4419     - MINOR: checks: Don't support multiple host header for http-check send rule
 4420     - MINOR: checks: Skip some headers for http-check send rules
 4421     - MINOR: checks: Keep the Host header and the request uri synchronized
 4422     - CLEANUP: checks: Fix checks includes
 4423     - DOC: Fix send rules in the http-check connect example
 4424     - DOC: Add more info about request formatting in http-check send description
 4425     - REGTEST: http-rules: Require PCRE or PCRE2 option to run map_redirect script
 4426     - REGTEST: ssl: remove curl from the "add ssl crt-list" test
 4427     - REGTEST: ssl: improve the "set ssl cert" test
 4428     - CLEANUP: ssl: silence a build warning when threads are disabled
 4429     - BUG/MEDIUM: listener: mark the thread as not stuck inside the loop
 4430     - MINOR: threads: export the POSIX thread ID in panic dumps
 4431     - BUG/MINOR: debug: properly use long long instead of long for the thread ID
 4432     - BUG/MEDIUM: shctx: really check the lock's value while waiting
 4433     - BUG/MEDIUM: shctx: bound the number of loops that can happen around the lock
 4434     - MINOR: stream: report the list of active filters on stream crashes
 4435     - BUG/MEDIUM: mux-fcgi: Return from detach if server don't keep the connection
 4436     - BUG/MEDIUM: mux_fcgi: Free the FCGI connection at the end of fcgi_release()
 4437     - BUG/MEDIUM: mux-fcgi: Fix wrong test on FCGI_CF_KEEP_CONN in fcgi_detach()
 4438     - BUG/MEDIUM: connections: force connections cleanup on server changes
 4439     - BUG/MEDIUM: h1: Don't compare host and authority if only h1 headers are parsed
 4440     - BUG/MEDIUM: ssl: fix the id length check within smp_fetch_ssl_fc_session_id()
 4441     - CLEANUP: connections: align function declaration
 4442     - BUG/MINOR: sample: Set the correct type when a binary is converted to a string
 4443     - MEDIUM: checks/http-fetch: Support htx prefetch from a check for HTTP samples
 4444     - DOC: Document the log-format parameter for tcp-check send/send-binary rules
 4445     - MINOR: checks: Add support of payload-based sample fetches
 4446     - MINOR: checks: Add support of be_id, be_name, srv_id and srv_name sample fetches
 4447     - MINOR: checks: Add support of server side ssl sample fetches
 4448     - MINOR: checks: Add support of HTTP response sample fetches
 4449     - MINOR: http-htx: Support different methods to look for header names
 4450     - MINOR: checks: Set by default expect rule status to UNKNOWN during parsing
 4451     - BUG/MINOR: checks: Support multiple HTTP expect rules
 4452     - REGTEST: checks: Fix sync condition for agent-check
 4453     - MEDIUM: checks: Support matching on headers for http-check expect rules
 4454     - MINOR: lua: allow changing port with set_addr
 4455     - BUG/MINOR: da: Fix HTX message prefetch
 4456     - BUG/MINOR: wurfl: Fix HTX message prefetch
 4457     - BUG/MINOR: 51d: Fix HTX message prefetch
 4458     - MINOR: ist: add istadv() function
 4459     - MINOR: ist: add istissame() function
 4460     - MINOR: istbuf: add ist2buf() function
 4461     - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_CAS()
 4462     - BUG/MINOR: threads: fix multiple use of argument inside HA_ATOMIC_UPDATE_{MIN,MAX}()
 4463     - DOC: update intro.txt for 2.2
 4464     - DOC: intro: add a contacts section
 4465 
 4466 2020/04/17 : 2.2-dev6
 4467     - BUG/MINOR: ssl: memory leak when find_chain is NULL
 4468     - CLEANUP: ssl: rename ssl_get_issuer_chain to ssl_get0_issuer_chain
 4469     - MINOR: ssl: rework add cert chain to CTX to be libssl independent
 4470     - BUG/MINOR: peers: init bind_proc to 1 if it wasn't initialized
 4471     - BUG/MINOR: peers: avoid an infinite loop with peers_fe is NULL
 4472     - BUG/MINOR: peers: Use after free of "peers" section.
 4473     - CI: github actions: add weekly h2spec test
 4474     - BUG/MEDIUM: mux_h1: Process a new request if we already received it.
 4475     - MINOR: build: Fix build in mux_h1
 4476     - CLEANUP: remove obsolete comments
 4477     - BUG/MEDIUM: dns: improper parsing of aditional records
 4478     - MINOR: ssl: skip self issued CA in cert chain for ssl_ctx
 4479     - MINOR: listener: add so_name sample fetch
 4480     - MEDIUM: stream: support use-server rules with dynamic names
 4481     - MINOR: servers: Add a counter for the number of currently used connections.
 4482     - MEDIUM: connections: Revamp the way idle connections are killed
 4483     - MINOR: cli: add a general purpose pointer in the CLI struct
 4484     - MINOR: ssl: add a list of bind_conf in struct crtlist
 4485     - REORG: ssl: move SETCERT enum to ssl_sock.h
 4486     - BUG/MINOR: ssl: ckch_inst wrongly inserted in crtlist_entry
 4487     - REORG: ssl: move some functions above crtlist_load_cert_dir()
 4488     - MINOR: ssl: use crtlist_free() upon error in directory loading
 4489     - MINOR: ssl: add a list of crtlist_entry in ckch_store
 4490     - MINOR: ssl: store a ptr to crtlist in crtlist_entry
 4491     - MINOR: ssl/cli: update pointer to store in 'commit ssl cert'
 4492     - MEDIUM: ssl/cli: 'add ssl crt-list' command
 4493     - REGTEST: ssl/cli: test the 'add ssl crt-list' command
 4494     - BUG/MINOR: ssl: entry->ckch_inst not initialized
 4495     - REGTEST: ssl/cli: change test type to devel
 4496     - REGTEST: make the PROXY TLV validation depend on version 2.2
 4497     - CLEANUP: assorted typo fixes in the code and comments
 4498     - BUG/MINOR: stats: Fix color of draining servers on stats page
 4499     - DOC: internals: Fix spelling errors in filters.txt
 4500     - MINOR: connections: Don't mark conn flags 0x00000001 and 0x00000002 as unused.
 4501     - REGTEST: make the unique-id test depend on version 2.0
 4502     - BUG/MEDIUM: dns: Consider the fact that dns answers are case-insensitive
 4503     - MINOR: ssl: split the line parsing of the crt-list
 4504     - MINOR: ssl/cli: support filters and options in add ssl crt-list
 4505     - MINOR: ssl: add a comment above the ssl_bind_conf keywords
 4506     - REGTEST: ssl/cli: tests options and filters w/ add ssl crt-list
 4507     - REGTEST: ssl: pollute the crt-list file
 4508     - BUG/CRITICAL: hpack: never index a header into the headroom after wrapping
 4509     - BUG/MINOR: protocol_buffer: Wrong maximum shifting.
 4510     - CLEANUP: src/fd.c: mask setsockopt with DISGUISE
 4511     - BUG/MINOR: ssl/cli: initialize fcount int crtlist_entry
 4512     - REGTEST: ssl/cli: add other cases of 'add ssl crt-list'
 4513     - CLEANUP: assorted typo fixes in the code and comments
 4514     - DOC: management: add the new crt-list CLI commands
 4515     - BUG/MINOR: ssl/cli: fix spaces in 'show ssl crt-list'
 4516     - MINOR: ssl/cli: 'del ssl crt-list' delete an entry
 4517     - MINOR: ssl/cli: replace dump/show ssl crt-list by '-n' option
 4518     - CI: use better SSL library definition
 4519     - CI: travis-ci: enable DEBUG_STRICT=1 for CI builds
 4520     - CI: travis-ci: upgrade openssl to 1.1.1f
 4521     - MINOR: ssl: improve the errors when a crt can't be open
 4522     - CI: cirrus-ci: rename openssl package after it is renamed in FreeBSD
 4523     - CI: adopt openssl download script to download all versions
 4524     - BUG/MINOR: ssl/cli: lock the ckch structures during crt-list delete
 4525     - MINOR: ssl/cli: improve error for bundle in add/del ssl crt-list
 4526     - MINOR: ssl/cli: 'del ssl cert' deletes a certificate
 4527     - BUG/MINOR: ssl: trailing slashes in directory names wrongly cached
 4528     - BUG/MINOR: ssl/cli: memory leak in 'set ssl cert'
 4529     - CLEANUP: ssl: use the refcount for the SSL_CTX'
 4530     - CLEANUP: ssl/cli: use the list of filters in the crtlist_entry
 4531     - BUG/MINOR: ssl: memleak of the struct cert_key_and_chain
 4532     - CLEANUP: ssl: remove a commentary in struct ckch_inst
 4533     - MINOR: ssl: initialize all list in ckch_inst_new()
 4534     - MINOR: ssl: free instances and SNIs with ckch_inst_free()
 4535     - MINOR: ssl: replace ckchs_free() by ckch_store_free()
 4536     - BUG/MEDIUM: ssl/cli: trying to access to free'd memory
 4537     - MINOR: ssl: ckch_store_new() alloc and init a ckch_store
 4538     - MINOR: ssl: crtlist_new() alloc and initialize a struct crtlist
 4539     - REORG: ssl: move some free/new functions
 4540     - MINOR: ssl: crtlist_entry_{new, free}
 4541     - BUG/MINOR: ssl: ssl_conf always set to NULL on crt-list parsing
 4542     - MINOR: ssl: don't alloc ssl_conf if no option found
 4543     - BUG/MINOR: connection: always send address-less LOCAL PROXY connections
 4544     - BUG/MINOR: peers: Incomplete peers sections should be validated.
 4545     - MINOR: init: report in "haproxy -c" whether there were warnings or not
 4546     - MINOR: init: add -dW and "zero-warning" to reject configs with warnings
 4547     - MINOR: init: report the compiler version in haproxy -vv
 4548     - CLEANUP: assorted typo fixes in the code and comments
 4549     - MINOR: init: report the haproxy version and executable path once on errors
 4550     - DOC: Make how "option redispatch" works more explicit
 4551     - BUILD: Makefile: add linux-musl to TARGET
 4552     - CLEANUP: assorted typo fixes in the code and comments
 4553     - CLEANUP: http: Fixed small typo in parse_http_return
 4554     - DOC: hashing: update link to hashing functions
 4555 
 4556 2020/03/23 : 2.2-dev5
 4557     - CLEANUP: ssl: is_default is a bit in ckch_inst
 4558     - BUG/MINOR: ssl/cli: sni_ctx' mustn't always be used as filters
 4559     - DOC: ssl: clarify security implications of TLS tickets
 4560     - CLEANUP: remove support for Linux i686 vsyscalls
 4561     - CLEANUP: drop support for USE_MY_ACCEPT4
 4562     - CLEANUP: remove support for USE_MY_EPOLL
 4563     - CLEANUP: remove support for USE_MY_SPLICE
 4564     - CLEANUP: remove the now unused common/syscall.h
 4565     - BUILD: make dladdr1 depend on glibc version and not __USE_GNU
 4566     - BUILD: wdt: only test for SI_TKILL when compiled with thread support
 4567     - BUILD: Makefile: the compiler-specific flags should all be in SPEC_CFLAGS
 4568     - CLEANUP: ssl: separate the directory loading in a new function
 4569     - BUG/MINOR: buffers: MT_LIST_DEL_SAFE() expects the temporary pointer.
 4570     - BUG/MEDIUM: mt_lists: Make sure we set the deleted element to NULL;
 4571     - MINOR: init: move the maxsock calculation code to compute_ideal_maxsock()
 4572     - MEDIUM: init: always try to push the FD limit when maxconn is set from -m
 4573     - BUG/MAJOR: list: fix invalid element address calculation
 4574     - BUILD: stream-int: fix a few includes dependencies
 4575     - MINOR: mt_lists: Appease gcc.
 4576     - MINOR: lists: Implement function to convert list => mt_list and mt_list => list
 4577     - MINOR: servers: Kill priv_conns.
 4578     - MINOR: lists: fix indentation.
 4579     - BUG/MEDIUM: random: align the state on 2*64 bits for ARM64
 4580     - BUG/MEDIUM: connections: Don't assume the connection has a valid session.
 4581     - BUG/MEDIUM: pools: Always update free_list in pool_gc().
 4582     - BUG/MINOR: haproxy: always initialize sleeping_thread_mask
 4583     - BUG/MINOR: listener/mq: do not dispatch connections to remote threads when stopping
 4584     - BUG/MINOR: haproxy/threads: try to make all threads leave together
 4585     - Revert "BUILD: travis-ci: enable s390x builds"
 4586     - BUILD: travis-ci: enable regular s390x builds
 4587     - DOC: proxy_protocol: Reserve TLV type 0x05 as PP2_TYPE_UNIQUE_ID
 4588     - MINOR: proxy_protocol: Ingest PP2_TYPE_UNIQUE_ID on incoming connections
 4589     - MEDIUM: proxy_protocol: Support sending unique IDs using PPv2
 4590     - CLEANUP: connection: Add blank line after declarations in PP handling
 4591     - CLEANUP: assorted typo fixes in the code and comments
 4592     - CI: add spellcheck github action
 4593     - DOC: correct typo in alert message about rspirep
 4594     - CI: travis: switch linux builds to clang-9
 4595     - MINOR: debug: add a new DISGUISE() macro to pass a value as identity
 4596     - MINOR: debug: consume the write() result in BUG_ON() to silence a warning
 4597     - MINOR: use DISGUISE() everywhere we deliberately want to ignore a result
 4598     - BUILD: pools: silence build warnings with DEBUG_MEMORY_POOLS and DEBUG_UAF
 4599     - CLEANUP: connection: Stop directly setting an ist's .ptr
 4600     - CI: travis: revert to clang-7 for BoringSSL tests
 4601     - BUILD: on ARM, must be linked to libatomic.
 4602     - BUILD: makefile: fix regex syntax in ARM platform detection
 4603     - BUG/MEDIUM: peers: resync ended with RESYNC_PARTIAL in wrong cases.
 4604     - REORG: ssl: move ssl_sock_load_cert()
 4605     - MINOR: ssl: pass ckch_inst to ssl_sock_load_ckchs()
 4606     - MEDIUM: ssl: allow crt-list caching
 4607     - MINOR: ssl: directories are loaded like crt-list
 4608     - BUG/MINOR: ssl: can't open directories anymore
 4609     - BUG/MEDIUM: spoe: dup agent's engine_id string from trash.area
 4610     - MINOR: fd: Use a separate lock for logs instead of abusing the fd lock.
 4611     - MINOR: mux_pt: Don't try to remove the connection from the idle list.
 4612     - MINOR: ssl/cli: show/dump ssl crt-list
 4613     - BUG/MINOR: ssl/cli: free the trash chunk in dump_crtlist
 4614     - MEDIUM: fd: Introduce a running mask, and use it instead of the spinlock.
 4615     - BUG/MINOR: ssl: memory leak in crtlist_parse_file()
 4616     - MINOR: tasks: Provide the tasklet to the callback.
 4617     - BUG/MINOR: ssl: memleak of struct crtlist_entry
 4618     - BUG/MINOR: pattern: Do not pass len = 0 to calloc()
 4619     - BUILD: makefile: fix expression again to detect ARM platform
 4620     - CI: travis: re-enable ASAN on clang
 4621     - CI: travis: proper group output redirection together with travis_wait
 4622     - DOC: assorted typo fixes in the documentation
 4623     - MINOR: wdt: Move the definitions of WDTSIG and DEBUGSIG into types/signal.h.
 4624     - BUG/MEDIUM: wdt: Don't ignore WDTSIG and DEBUGSIG in __signal_process_queue().
 4625     - MINOR: memory: Change the flush_lock to a spinlock, and don't get it in alloc.
 4626     - MINOR: ssl/cli: 'new ssl cert' command
 4627     - MINOR: ssl/cli: show certificate status in 'show ssl cert'
 4628     - MEDIUM: sessions: Don't be responsible for connections anymore.
 4629     - MEDIUM: servers: Split the connections into idle, safe, and available.
 4630     - MINOR: fd: Implement fd_takeover().
 4631     - MINOR: connections: Add a new mux method, "takeover".
 4632     - MINOR: connections: Make the "list" element a struct mt_list instead of list.
 4633     - MINOR: connections: Add a flag to know if we're in the safe or idle list.
 4634     - MEDIUM: connections: Attempt to get idle connections from other threads.
 4635     - MEDIUM: mux_h1: Implement the takeover() method.
 4636     - MEDIUM: mux_h2: Implement the takeover() method.
 4637     - MEDIUM: mux_fcgi: Implement the takeover() method.
 4638     - MEDIUM: connections: Kill connections even if we are reusing one.
 4639     - BUG/MEDIUM: connections: Don't forget to decrement idle connection counters.
 4640     - BUG/MINOR: ssl: Do not free garbage pointers on memory allocation failure
 4641     - BUG/MINOR: ssl: Correctly add the 1 for the sentinel to the number of elements
 4642     - BUG/MINOR: ssl: crtlist_dup_filters() must return NULL with fcount == 0
 4643     - BUG/MEDIUM: build: Fix compilation by spelling decl correctly.
 4644     - BUILD/MEDIUM: fd: Declare fd_mig_lock as extern.
 4645     - CI: run travis-ci builds on push only, skip pull requests
 4646     - CI: temporarily disable unstable travis arm64 builds
 4647     - BUG/MINOR: ssl/cli: free BIO upon error in 'show ssl cert'
 4648     - BUG/MINOR: connections: Make sure we free the connection on failure.
 4649     - BUG/MINOR: ssl/cli: fix a potential NULL dereference
 4650     - BUG/MEDIUM: h1: Make sure we subscribe before going into idle list.
 4651     - BUG/MINOR: connections: Set idle_time before adding to idle list.
 4652     - MINOR: muxes: Note that we can't usee a connection when added to the srv idle.
 4653     - REGTEST: increase timeouts on the seamless-reload test
 4654     - BUG/MINOR: haproxy/threads: close a possible race in soft-stop detection
 4655     - CLEANUP: haproxy/threads: don't check global_tasks_mask twice
 4656 
 4657 2020/03/09 : 2.2-dev4
 4658     - MEDIUM: buffer: remove the buffer_wq lock
 4659     - MINOR: ssl: move find certificate chain code to its own function
 4660     - MINOR: ssl: resolve issuers chain later
 4661     - MINOR: ssl: resolve ocsp_issuer later
 4662     - MINOR: ssl/cli: "show ssl cert" command should print the "Chain Filename:"
 4663     - BUG/MINOR: h2: reject again empty :path pseudo-headers
 4664     - MINOR: wdt: always clear sigev_value to make valgrind happy
 4665     - MINOR: epoll: always initialize all of epoll_event to please valgrind
 4666     - BUG/MINOR: sample: Make sure to return stable IDs in the unique-id fetch
 4667     - BUG/MEDIUM: ssl: chain must be initialized with sk_X509_new_null()
 4668     - BUILD: cirrus-ci: suppress OS version check when installing packages
 4669     - BUG/MINOR: http_ana: make sure redirect flags don't have overlapping bits
 4670     - CLEANUP: fd: remove the FD_EV_STATUS aggregate
 4671     - CLEANUP: fd: remove some unneeded definitions of FD_EV_* flags
 4672     - MINOR: fd: merge the read and write error bits into RW error
 4673     - BUG/MINOR: dns: ignore trailing dot
 4674     - MINOR: contrib/prometheus-exporter: Add the last heathcheck duration metric
 4675     - BUG/MINOR: http-htx: Do case-insensive comparisons on Host header name
 4676     - MINOR: mux-h1: Remove useless case-insensitive comparisons
 4677     - MINOR: rawsock: always mark the FD not ready when we're certain it happens
 4678     - MEDIUM: connection: make the subscribe() call able to wakeup if ready
 4679     - MEDIUM: connection: don't stop receiving events in the FD handler
 4680     - MEDIUM: mux-h1: do not blindly wake up the tasklet at end of request anymore
 4681     - BUG/MINOR: arg: don't reject missing optional args
 4682     - MINOR: tools: make sure to correctly check the returned 'ms' in date2std_log
 4683     - MINOR: debug: report the task handler's pointer relative to main
 4684     - BUG/MEDIUM: debug: make the debug_handler check for the thread in threads_to_dump
 4685     - MINOR: haproxy: export main to ease access from debugger
 4686     - MINOR: haproxy: export run_poll_loop
 4687     - MINOR: task: export run_tasks_from_list
 4688     - BUILD: tools: remove obsolete and conflicting trace() from standard.c
 4689     - MINOR: tools: add new function dump_addr_and_bytes()
 4690     - MINOR: tools: add resolve_sym_name() to resolve function pointers
 4691     - MINOR: debug: use resolve_sym_name() to dump task handlers
 4692     - MINOR: cli: make "show fd" rely on resolve_sym_name()
 4693     - MEDIUM: debug: add support for dumping backtraces of stuck threads
 4694     - MINOR: debug: call backtrace() once upon startup
 4695     - MINOR: ssl: add "ca-verify-file" directive
 4696     - BUG/MINOR: wdt: do not return an error when the watchdog couldn't be enabled
 4697     - BUILD: Makefile: include librt before libpthread
 4698     - MEDIUM: wdt: fall back to CLOCK_REALTIME if CLOCK_THREAD_CPUTIME is not available
 4699     - MINOR: wdt: do not depend on USE_THREAD
 4700     - MINOR: debug: report the number of entries in the backtrace
 4701     - MINOR: debug: improve backtrace() on aarch64 and possibly other systems
 4702     - MINOR: debug: use our own backtrace function on clang+x86_64
 4703     - MINOR: debug: dump the whole trace if we can't spot the starting point
 4704     - BUILD: tools: unbreak resolve_sym_name() on non-GNU platforms
 4705     - BUILD: tools: rely on __ELF__ not USE_DL to enable use of dladdr()
 4706     - CLEANUP: contrib/spoa_example: Fix several typos
 4707     - BUILD: makefile: do not modify the build options during make reg-tests
 4708     - BUG/MEDIUM: connection: stop polling for sending when the event is ready
 4709     - MEDIUM: stream-int: make sure to try to immediately validate the connection
 4710     - MINOR: tcp/uxst/sockpair: only ask for I/O when really waiting for a connect()
 4711     - MEDIUM: connection: only call ->wake() for connect() without I/O
 4712     - OPTIM: connection: disable receiving on disabled events when the run queue is too high
 4713     - OPTIM: mux-h1: subscribe rather than waking up at a few other places
 4714     - REGTEST: Add unique-id reg-test
 4715     - MINOR: stream: Add stream_generate_unique_id function
 4716     - MINOR: stream: Use stream_generate_unique_id
 4717     - BUG/MINOR: connection/debug: do not enforce !event_type on subscribe() anymore
 4718     - MINOR: ssl/cli: support crt-list filters
 4719     - MINOR: ssl: reach a ckch_store from a sni_ctx
 4720     - DOC: fix incorrect indentation of http_auth_*
 4721     - BUG/MINOR: ssl-sock: do not return an uninitialized pointer in ckch_inst_sni_ctx_to_sni_filters
 4722     - MINOR: debug: add CLI command "debug dev write" to write an arbitrary size
 4723     - MINOR: ist: Add `IST_NULL` macro
 4724     - MINOR: ist: Add `int isttest(const struct ist)`
 4725     - MINOR: ist: Add `struct ist istalloc(size_t)` and `void istfree(struct ist*)`
 4726     - CLEANUP: Use `isttest()` and `istfree()`
 4727     - MINOR: ist: Add `struct ist istdup(const struct ist)`
 4728     - MINOR: proxy: Make `header_unique_id` a `struct ist`
 4729     - MEDIUM: stream: Make the `unique_id` member of `struct stream` a `struct ist`
 4730     - OPTIM: startup: fast unique_id allocation for acl.
 4731     - DOC: configuration.txt: fix various typos
 4732     - DOC: assorted typo fixes in the documentation and Makefile
 4733     - BUG/MINOR: init: make the automatic maxconn consider the max of soft/hard limits
 4734     - BUG/MAJOR: proxy_protocol: Properly validate TLV lengths
 4735     - CLEANUP: proxy_protocol: Use `size_t` when parsing TLVs
 4736     - MINOR: buf: Add function to insert a string at an absolute offset in a buffer
 4737     - MINOR: htx: Add a function to return a block at a specific offset
 4738     - MINOR: htx: Use htx_find_offset() to truncate an HTX message
 4739     - MINOR: flt_trace: Use htx_find_offset() to get the available payload length
 4740     - BUG/MINOR: filters: Use filter offset to decude the amount of forwarded data
 4741     - BUG/MINOR: filters: Forward everything if no data filters are called
 4742     - BUG/MEDIUM: cache/filters: Fix loop on HTX blocks caching the response payload
 4743     - BUG/MEDIUM: compression/filters: Fix loop on HTX blocks compressing the payload
 4744     - BUG/MINOR: http-ana: Reset request analysers on a response side error
 4745     - BUG/MINOR: lua: Abort when txn:done() is called from a Lua action
 4746     - BUG/MINOR: lua: Ignore the reserve to know if a channel is full or not
 4747     - MINOR: lua: Add function to know if a channel is a response one
 4748     - MINOR: lua: Stop using the lua txn in hlua_http_get_headers()
 4749     - MINOR: lua: Stop using the lua txn in hlua_http_rep_hdr()
 4750     - MINOR: lua: Stop using lua txn in hlua_http_del_hdr() and hlua_http_add_hdr()
 4751     - MINOR: lua: Remove the flag HLUA_TXN_HTTP_RDY
 4752     - MINOR: lua: Rename hlua_action_wake_time() to hlua_set_wake_time()
 4753     - BUG/MINOR: lua: Init the lua wake_time value before calling a lua function
 4754     - BUG/MINOR: http-rules: Return ACT_RET_ABRT to abort a transaction
 4755     - BUG/MINOR: http-rules: Preserve FLT_END analyzers on reject action
 4756     - BUG/MINOR: http-rules: Fix a typo in the reject action function
 4757     - MINOR: cache/filters: Initialize the cache filter when stream is created
 4758     - MINOR: compression/filters: Initialize the comp filter when stream is created
 4759     - BUG/MINOR: rules: Preserve FLT_END analyzers on silent-drop action
 4760     - BUG/MINOR: rules: Return ACT_RET_ABRT when a silent-drop action is executed
 4761     - BUG/MINOR: rules: Increment be_counters if backend is assigned for a silent-drop
 4762     - BUG/MINOR: http-rules: Abort transaction when a redirect is applied on response
 4763     - BUILD: buffer: types/{ring.h,checks.h} should include buf.h, not buffer.h
 4764     - BUILD: ssl: include mini-clist.h
 4765     - BUILD: global: must not include common/standard.h but only types/freq_ctr.h
 4766     - BUILD: freq_ctr: proto/freq_ctr needs to include common/standard.h
 4767     - BUILD: listener: types/listener.h must not include standard.h
 4768     - BUG/MEDIUM: random: initialize the random pool a bit better
 4769     - BUG/MEDIUM: random: implement per-thread and per-process random sequences
 4770     - Revert "BUG/MEDIUM: random: implement per-thread and per-process random sequences"
 4771     - BUILD: cirrus-ci: get rid of unstable freebsd images
 4772     - MINOR: tools: add 64-bit rotate operators
 4773     - BUG/MEDIUM: random: implement a thread-safe and process-safe PRNG
 4774     - MINOR: backend: use a single call to ha_random32() for the random LB algo
 4775     - BUG/MINOR: checks/threads: use ha_random() and not rand()
 4776     - MINOR: sample: make all bits random on the rand() sample fetch
 4777     - MINOR: tools: add a generic function to generate UUIDs
 4778     - DOC: fix typo about no-tls-tickets
 4779     - DOC: improve description of no-tls-tickets
 4780     - DOC: assorted typo fixes in the documentation
 4781     - CLEANUP: remove unused code in 'my_ffsl/my_flsl' functions
 4782 
 4783 2020/02/25 : 2.2-dev3
 4784     - SCRIPTS: announce-release: place the send command in the mail's header
 4785     - SCRIPTS: announce-release: allow the user to force to overwrite old files
 4786     - SCRIPTS: backport: fix the master branch detection
 4787     - BUG/MINOR: http-act: Set stream error flag before returning an error
 4788     - BUG/MINOR: http-act: Fix bugs on error path during parsing of return actions
 4789     - BUG/MEDIUM: ssl/cli: 'commit ssl cert' wrong SSL_CTX init
 4790     - BUG/MEDIUM: tcp-rules: Fix track-sc* actions for L4/L5 TCP rules
 4791     - DOC: schematic of the SSL certificates architecture
 4792     - BUG/MAJOR: mux-h2: don't wake streams after connection was destroyed
 4793     - BUG/MINOR: unix: better catch situations where the unix socket path length is close to the limit
 4794     - BUILD: cirrus-ci: switch to "snap" images to unify openssl naming
 4795     - BUILD: cirrus-ci: workaround "pkg install" bug
 4796     - BUILD: cirrus-ci: add ERR=1 to freebsd builds
 4797     - BUG/MINOR: connection: correctly retry I/O on signals
 4798     - CLEANUP: mini-clist: simplify nested do { while(1) {} } while (0)
 4799     - BUILD: http_act: cast file sizes when reporting file size error
 4800     - BUG/MEDIUM: listener: only consider running threads when resuming listeners
 4801     - BUG/MINOR: listener: enforce all_threads_mask on bind_thread on init
 4802     - BUG/MINOR: tcp: avoid closing fd when socket failed in tcp_bind_listener
 4803     - MINOR: build: add aix72-gcc build TARGET and power{8,9} CPUs
 4804     - BUILD: travis-ci: no more allowed failures for openssl-1.0.2
 4805     - BUILD: travis-ci: harden builds, add ERR=1 (warning ought to be errors)
 4806     - BUILD: scripts/build-ssl.sh: use "uname" instead of ${TRAVIS_OS_NAME}
 4807     - BUG/MINOR: tcp: don't try to set defaultmss when value is negative
 4808     - SCRIPTS: make announce-release executable again
 4809     - BUG/MINOR: namespace: avoid closing fd when socket failed in my_socketat
 4810     - BUG/MEDIUM: muxes: Use the right argument when calling the destroy method.
 4811     - BUG/MINOR: mux-fcgi: Forbid special characters when matching PATH_INFO param
 4812     - CLEANUP: ssl: remove unused functions in openssl-compat.h
 4813     - MINOR: mux-fcgi: Make the capture of the path-info optional in pathinfo regex
 4814     - MINOR: tools: add is_idchar() to tell if a char may belong to an identifier
 4815     - MINOR: chunk: implement chunk_strncpy() to copy partial strings
 4816     - MINOR: sample/acl: use is_idchar() to locate the fetch/conv name
 4817     - MEDIUM: arg: make make_arg_list() stop after its own arguments
 4818     - MEDIUM: arg: copy parsed arguments into the trash instead of allocating them
 4819     - MEDIUM: arg: make make_arg_list() support quotes in arguments
 4820     - MINOR: sample: make sample_parse_expr() able to return an end pointer
 4821     - MEDIUM: log-format: make the LF parser aware of sample expressions' end
 4822     - BUG/MINOR: arg: report an error if an argument is larger than bufsize
 4823     - SCRIPTS: announce-release: use mutt -H instead of -i to include the draft
 4824     - BUILD: enable ERR=1 in github cygwin builds
 4825     - BUG/MINOR: arg: fix again incorrect argument length check
 4826     - MINOR: sample: regsub now supports backreferences
 4827     - BUG/MINOR: tools: also accept '+' as a valid character in an identifier
 4828     - MINOR: http-htx: Add a function to retrieve the headers size of an HTX message
 4829     - MINOR: filters: Forward data only if the last filter forwards something
 4830     - BUG/MINOR: filters: Count HTTP headers as filtered data but don't forward them
 4831     - BUG/MINOR: http-htx: Don't return error if authority is updated without changes
 4832     - BUG/MINOR: stream: Don't incr frontend cum_req counter when stream is closed
 4833     - BUG/MINOR: sample: exit regsub() in case of trash allocation error
 4834     - MINOR: ssl: add "issuers-chain-path" directive.
 4835     - REGTESTS: use "command -v" instead of "which"
 4836     - BUG/MINOR: http-ana: Matching on monitor-uri should be case-sensitive
 4837     - MINOR: http-ana: Match on the path if the monitor-uri starts by a /
 4838     - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
 4839     - BUG/MAJOR: http-ana: Always abort the request when a tarpit is triggered
 4840     - BUG/MINOR: mux: do not call conn_xprt_stop_recv() on buffer shortage
 4841     - MINOR: checks: do not call conn_xprt_stop_send() anymore
 4842     - CLEANUP: epoll: place the struct epoll_event in the stack
 4843     - MEDIUM: connection: remove the intermediary polling state from the connection
 4844     - MINOR: raw_sock: directly call fd_stop_send() and not conn_xprt_stop_send()
 4845     - MINOR: tcp/uxst/sockpair: use fd_want_send() instead of conn_xprt_want_send()
 4846     - MINOR: connection: remove the last calls to conn_xprt_{want,stop}_*
 4847     - CLEANUP: connection: remove the definitions of conn_xprt_{stop,want}_{send,recv}
 4848     - MINOR: connection: introduce a new receive flag: CO_RFL_READ_ONCE
 4849     - MINOR: mux-h1: pass CO_RFL_READ_ONCE to the lower layers when relevant
 4850     - MINOR: ist: add an iststop() function
 4851     - BUG/MINOR: http: http-request replace-path duplicates the query string
 4852     - CLEANUP: sample: use iststop instead of a for loop
 4853     - BUG/MEDIUM: shctx: make sure to keep all blocks aligned
 4854     - MINOR: compiler: move CPU capabilities definition from config.h and complete them
 4855     - BUG/MEDIUM: ebtree: don't set attribute packed without unaligned access support
 4856     - CLEANUP: http/h1: rely on HA_UNALIGNED_LE instead of checking for CPU families
 4857     - BUILD: fix recent build failure on unaligned archs
 4858     - MINOR: ssl: load the key from a dedicated file
 4859     - BUG/MINOR: ssl: load .key in a directory only after PEM
 4860     - MINOR: compiler: drop special cases of likely/unlikely for older compilers
 4861     - CLEANUP: conn: Do not pass a pointer to likely
 4862     - CLEANUP: net_helper: Do not negate the result of unlikely
 4863     - BUILD: remove obsolete support for -mregparm / USE_REGPARM
 4864     - CLEANUP: cfgparse: Fix type of second calloc() parameter
 4865     - BUILD: ssl: only pass unsigned chars to isspace()
 4866     - BUILD: general: always pass unsigned chars to is* functions
 4867     - BUG/MINOR: sample: fix the json converter's endian-sensitivity
 4868     - BUG/MEDIUM: ssl: fix several bad pointer aliases in a few sample fetch functions
 4869     - CLEANUP: fd: use a union in fd_rm_from_fd_list() to shut aliasing warnings
 4870     - CLEANUP: cache: use read_u32/write_u32 to access the cache entry's hash
 4871     - CLEANUP: stick-tables: use read_u32() to display a node's key
 4872     - CLEANUP: sample: use read_u64() in ipmask() to apply an IPv6 mask
 4873     - MINOR: pattern: fix all remaining strict aliasing issues
 4874     - CLEANUP: lua: fix aliasing issues in the address matching code
 4875     - CLEANUP: connection: use read_u32() instead of a cast in the netscaler parser
 4876     - BUILD: makefile: re-enable strict aliasing
 4877     - BUG/MINOR: connection: make sure to correctly tag local PROXY connections
 4878     - MINOR: compiler: add new alignment macros
 4879     - BUILD: ebtree: improve architecture-specific alignment
 4880     - MINOR: config: mark global.debug as deprecated
 4881     - BUILD: travis-ci: enable s390x builds
 4882     - MINOR: ssl/cli: 'show ssl cert' displays the chain
 4883     - MINOR: ssl/cli: 'show ssl cert'displays the issuer in the chain
 4884     - MINOR: ssl/cli: reorder 'show ssl cert' output
 4885     - CLEANUP: ssl: move issuer_chain tree and definition
 4886     - DOC: proxy-protocol: clarify IPv6 address representation in the spec
 4887 
 4888 2020/02/07 : 2.2-dev2
 4889     - BUILD: CI: temporarily mark openssl-1.0.2 as allowed failure
 4890     - MEDIUM: cli: Allow multiple filter entries for "show table"
 4891     - BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
 4892     - BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
 4893     - BUILD: stick-table: fix build errors introduced by last stick-table change
 4894     - BUG/MINOR: cli: Missing arg offset for filter data values.
 4895     - MEDIUM: streams: Always create a conn_stream in connect_server().
 4896     - MEDIUM: connections: Get ride of the xprt_done callback.
 4897     - CLEANUP: changelog: remove the duplicate entry for 2.2-dev1
 4898     - BUILD: CI: move cygwin builds to Github Actions
 4899     - MINOR: cli: Report location of errors or any extra data for "show table"
 4900     - BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
 4901     - CLEANUP: backend: remove useless test for inexistent connection
 4902     - CLEANUP: backend: shut another false null-deref in back_handle_st_con()
 4903     - CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
 4904     - BUG/MINOR: ssl: increment issuer refcount if in chain
 4905     - BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
 4906     - BUG/MINOR: ssl: typo in previous patch
 4907     - BUG/MEDIUM: connections: Set CO_FL_CONNECTED in conn_complete_session().
 4908     - BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"
 4909     - MEDIUM: connection: remove CO_FL_CONNECTED and only rely on CO_FL_WAIT_*
 4910     - BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
 4911     - MINOR: stream-int: always report received shutdowns
 4912     - MINOR: connection: remove CO_FL_SSL_WAIT_HS from CO_FL_HANDSHAKE
 4913     - MEDIUM: connection: use CO_FL_WAIT_XPRT more consistently than L4/L6/HANDSHAKE
 4914     - MINOR: connection: remove checks for CO_FL_HANDSHAKE before I/O
 4915     - MINOR: connection: do not check for CO_FL_SOCK_RD_SH too early
 4916     - MINOR: connection: don't check for CO_FL_SOCK_WR_SH too early in handshakes
 4917     - MINOR: raw-sock: always check for CO_FL_SOCK_WR_SH before sending
 4918     - MINOR: connection: remove some unneeded checks for CO_FL_SOCK_WR_SH
 4919     - BUG/MINOR: stktable: report the current proxy name in error messages
 4920     - BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
 4921     - MINOR: lua: Add hlua_prepend_path function
 4922     - MINOR: lua: Add lua-prepend-path configuration option
 4923     - MINOR: lua: Add HLUA_PREPEND_C?PATH build option
 4924     - BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
 4925     - BUG/MINOR: http-ana: Increment the backend counters on the backend
 4926     - BUG/MINOR: stream: Be sure to have a listener to increment its counters
 4927     - BUG/MEDIUM: streams: Move the conn_stream allocation outside #IF USE_OPENSSL.
 4928     - REGTESTS: make the set_ssl_cert test require version 2.2
 4929     - BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.
 4930     - MINOR: ssl: Remove dead code.
 4931     - BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
 4932     - BUG/MEDIUM: stream: Don't install the mux in back_handle_st_con().
 4933     - MEDIUM: streams: Don't close the connection in back_handle_st_con().
 4934     - MEDIUM: streams: Don't close the connection in back_handle_st_rdy().
 4935     - BUILD: CI: disable slow regtests on Travis
 4936     - BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
 4937     - BUG/MINOR: http-rules: Always init log-format expr for common HTTP actions
 4938     - BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2
 4939     - BUG/MINOR: dns: allow 63 char in hostname
 4940     - MINOR: proxy: clarify number of connections log when stopping
 4941     - DOC: word converter ignores delimiters at the start or end of input string
 4942     - MEDIUM: raw-sock: remove obsolete calls to fd_{cant,cond,done}_{send,recv}
 4943     - BUG/MINOR: ssl/cli: fix unused variable with openssl < 1.0.2
 4944     - MEDIUM: pipe/thread: reduce the locking overhead
 4945     - MEDIUM: pipe/thread: maintain a per-thread local cache of recently used pipes
 4946     - BUG/MEDIUM: pipe/thread: fix atomicity of pipe counters
 4947     - MINOR: tasks: move the list walking code to its own function
 4948     - MEDIUM: tasks: implement 3 different tasklet classes with their own queues
 4949     - MEDIUM: tasks: automatically requeue into the bulk queue an already running tasklet
 4950     - OPTIM: task: refine task classes default CPU bandwidth ratios
 4951     - BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
 4952     - MINOR: task: permanently flag tasklets waking themselves up
 4953     - MINOR: task: make sched->current also reflect tasklets
 4954     - MINOR: task: detect self-wakeups on tl==sched->current instead of TASK_RUNNING
 4955     - OPTIM: task: readjust CPU bandwidth distribution since last update
 4956     - MINOR: task: don't set TASK_RUNNING on tasklets
 4957     - BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
 4958     - MINOR: memory: Only init the pool spinlock once.
 4959     - BUG/MEDIUM: memory: Add a rwlock before freeing memory.
 4960     - BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.
 4961     - MINOR: ssl: ssl-load-extra-files configure loading of files
 4962     - SCRIPTS: add a new "backport" script to simplify long series of backports
 4963     - BUG/MINOR: ssl: we may only ignore the first 64 errors
 4964     - SCRIPTS: use /usr/bin/env bash instead of /bin/bash for scripts
 4965     - BUG/MINOR: ssl: clear the SSL errors on DH loading failure
 4966     - CLEANUP: hpack: remove a redundant test in the decoder
 4967     - CLEANUP: peers: Remove unused static function `free_dcache`
 4968     - CLEANUP: peers: Remove unused static function `free_dcache_tx`
 4969     - CONTRIB: debug: add missing flags SF_HTX and SF_MUX
 4970     - CONTRIB: debug: add the possibility to decode the value as certain types only
 4971     - CONTRIB: debug: support reporting multiple values at once
 4972     - BUG/MINOR: http-act: Use the good message to test strict rewritting mode
 4973     - MINOR: global: Set default tune.maxrewrite value during global structure init
 4974     - MINOR: http-rules: Set SF_ERR_PRXCOND termination flag when a header rewrite fails
 4975     - MINOR: http-htx: Emit a warning if an error file runs over the buffer's reserve
 4976     - MINOR: htx: Add a function to append an HTX message to another one
 4977     - MINOR: htx/channel: Add a function to copy an HTX message in a channel's buffer
 4978     - BUG/MINOR: http-ana: Don't overwrite outgoing data when an error is reported
 4979     - MINOR: dns: Dynamically allocate dns options to reduce the act_rule size
 4980     - MINOR: dns: Add function to release memory allocated for a do-resolve rule
 4981     - BUG/MINOR: http-ana: Reset HTX first index when HAPRoxy sends a response
 4982     - BUG/MINOR: http-ana: Set HTX_FL_PROXY_RESP flag if a server perform a redirect
 4983     - MINOR: http-rules: Add a flag on redirect rules to know the rule direction
 4984     - MINOR: http-rules: Handle the rule direction when a redirect is evaluated
 4985     - MINOR: http-ana: Rely on http_reply_and_close() to handle server error
 4986     - MINOR: http-ana: Add a function for forward internal responses
 4987     - MINOR: http-ana/http-rules: Use dedicated function to forward internal responses
 4988     - MEDIUM: http: Add a ruleset evaluated on all responses just before forwarding
 4989     - MEDIUM: http-rules: Add the return action to HTTP rules
 4990     - MEDIUM: http-rules: Support extra headers for HTTP return actions
 4991     - CLEANUP: lua: Remove consistency check for sample fetches and actions
 4992     - BUG/MINOR: http-ana: Increment failed_resp counters on invalid response
 4993     - MINOR: lua: Get the action return code on the stack when an action finishes
 4994     - MINOR: lua: Create the global 'act' object to register all action return codes
 4995     - MINOR: lua: Add act:wake_time() function to set a timeout when an action yields
 4996     - MEDIUM: lua: Add ability for actions to intercept HTTP messages
 4997     - REGTESTS: Add reg tests for the HTTP return action
 4998     - REGTESTS: Add a reg test for http-after-response rulesets
 4999     - BUILD: lua: silence a warning on systems where longjmp is not marked as noreturn
 5000     - MINOR: acl: Warn when an ACL is named 'or'
 5001     - CONTRIB: debug: also support reading values from stdin
 5002     - SCRIPTS: backport: use short revs and resolve the initial commit
 5003     - BUG/MINOR: acl: Fix type of log message when an acl is named 'or'
 5004 
 5005 2020/01/22 : 2.2-dev1
 5006     - DOC: this is development again
 5007     - MINOR: version: this is development again, update the status
 5008     - SCRIPTS: update create-release to fix the changelog on new branches
 5009     - CLEANUP: ssl: Clean up error handling
 5010     - BUG/MINOR: contrib/prometheus-exporter: decode parameter and value only
 5011     - BUG/MINOR: h1: Don't test the host header during response parsing
 5012     - BUILD/MINOR: trace: fix use of long type in a few printf format strings
 5013     - DOC: Clarify behavior of server maxconn in HTTP mode
 5014     - MINOR: ssl: deduplicate ca-file
 5015     - MINOR: ssl: compute ca-list from deduplicate ca-file
 5016     - MINOR: ssl: deduplicate crl-file
 5017     - CLEANUP: dns: resolution can never be null
 5018     - BUG/MINOR: http-htx: Don't make http_find_header() fail if the value is empty
 5019     - DOC: ssl/cli: set/commit/abort ssl cert
 5020     - BUG/MINOR: ssl: fix SSL_CTX_set1_chain compatibility for openssl < 1.0.2
 5021     - BUG/MINOR: fcgi-app: Make the directive pass-header case insensitive
 5022     - BUG/MINOR: stats: Fix HTML output for the frontends heading
 5023     - BUG/MINOR: ssl: fix X509 compatibility for openssl < 1.1.0
 5024     - DOC: clarify matching strings on binary fetches
 5025     - DOC: Fix ordered list in summary
 5026     - DOC: move the "group" keyword at the right place
 5027     - MEDIUM: init: prevent process and thread creation at runtime
 5028     - BUG/MINOR: ssl/cli: 'ssl cert' cmd only usable w/ admin rights
 5029     - BUG/MEDIUM: stream-int: don't subscribed for recv when we're trying to flush data
 5030     - BUG/MINOR: stream-int: avoid calling rcv_buf() when splicing is still possible
 5031     - BUG/MINOR: ssl/cli: don't overwrite the filters variable
 5032     - BUG/MEDIUM: listener/thread: fix a race when pausing a listener
 5033     - BUG/MINOR: ssl: certificate choice can be unexpected with openssl >= 1.1.1
 5034     - BUG/MEDIUM: mux-h1: Never reuse H1 connection if a shutw is pending
 5035     - BUG/MINOR: mux-h1: Don't rely on CO_FL_SOCK_RD_SH to set H1C_F_CS_SHUTDOWN
 5036     - BUG/MINOR: mux-h1: Fix conditions to know whether or not we may receive data
 5037     - BUG/MEDIUM: tasks: Make sure we switch wait queues in task_set_affinity().
 5038     - BUG/MEDIUM: checks: Make sure we set the task affinity just before connecting.
 5039     - MINOR: debug: replace popen() with pipe+fork() in "debug dev exec"
 5040     - MEDIUM: init: set NO_NEW_PRIVS by default when supported
 5041     - BUG/MINOR: mux-h1: Be sure to set CS_FL_WANT_ROOM when EOM can't be added
 5042     - BUG/MEDIUM: mux-fcgi: Handle cases where the HTX EOM block cannot be inserted
 5043     - BUG/MINOR: proxy: make soft_stop() also close FDs in LI_PAUSED state
 5044     - BUG/MINOR: listener/threads: always use atomic ops to clear the FD events
 5045     - BUG/MINOR: listener: also clear the error flag on a paused listener
 5046     - BUG/MEDIUM: listener/threads: fix a remaining race in the listener's accept()
 5047     - MINOR: listener: make the wait paths cleaner and more reliable
 5048     - MINOR: listener: split dequeue_all_listener() in two
 5049     - REORG: listener: move the global listener queue code to listener.c
 5050     - DOC: document the listener state transitions
 5051     - BUG/MEDIUM: kqueue: Make sure we report read events even when no data.
 5052     - BUG/MAJOR: dns: add minimalist error processing on the Rx path
 5053     - BUG/MEDIUM: proto_udp/threads: recv() and send() must not be exclusive.
 5054     - DOC: listeners: add a few missing transitions
 5055     - BUG/MINOR: tasks: only requeue a task if it was already in the queue
 5056     - MINOR: tasks: split wake_expired_tasks() in two parts to avoid useless wakeups
 5057     - DOC: proxies: HAProxy only supports 3 connection modes
 5058     - DOC: remove references to the outdated architecture.txt
 5059     - BUG/MINOR: log: fix minor resource leaks on logformat error path
 5060     - BUG/MINOR: mworker: properly pass SIGTTOU/SIGTTIN to workers
 5061     - BUG/MINOR: listener: do not immediately resume on transient error
 5062     - BUG/MINOR: server: make "agent-addr" work on default-server line
 5063     - BUG/MINOR: listener: fix off-by-one in state name check
 5064     - BUILD/MINOR: unix sockets: silence an absurd gcc warning about strncpy()
 5065     - MEDIUM: h1-htx: Add HTX EOM block when the message is in H1_MSG_DONE state
 5066     - MINOR: http-htx: Add some htx sample fetches for debugging purpose
 5067     - REGTEST: Add an HTX reg-test to check an edge case
 5068     - DOC: clarify the fact that replace-uri works on a full URI
 5069     - BUG/MINOR: sample: fix the closing bracket and LF in the debug converter
 5070     - BUG/MINOR: sample: always check converters' arguments
 5071     - MINOR: sample: Validate the number of bits for the sha2 converter
 5072     - BUG/MEDIUM: ssl: Don't set the max early data we can receive too early.
 5073     - MINOR: ssl/cli: 'show ssl cert' give information on the certificates
 5074     - BUG/MINOR: ssl/cli: fix build for openssl < 1.0.2
 5075     - MINOR: debug: support logging to various sinks
 5076     - MINOR: http: add a new "replace-path" action
 5077     - REGTEST: ssl: test the "set ssl cert" CLI command
 5078     - REGTEST: run-regtests: implement #REQUIRE_BINARIES
 5079     - MINOR: task: only check TASK_WOKEN_ANY to decide to requeue a task
 5080     - BUG/MAJOR: task: add a new TASK_SHARED_WQ flag to fix foreing requeuing
 5081     - BUG/MEDIUM: ssl: Revamp the way early data are handled.
 5082     - MINOR: fd/threads: make _GET_NEXT()/_GET_PREV() use the volatile attribute
 5083     - BUG/MEDIUM: fd/threads: fix a concurrency issue between add and rm on the same fd
 5084     - REGTEST: make the "set ssl cert" require version 2.1
 5085     - BUG/MINOR: ssl: openssl-compat: Fix getm_ defines
 5086     - BUG/MEDIUM: state-file: do not allocate a full buffer for each server entry
 5087     - BUG/MINOR: state-file: do not store duplicates in the global tree
 5088     - BUG/MINOR: state-file: do not leak memory on parse errors
 5089     - BUG/MAJOR: mux-h1: Don't pretend the input channel's buffer is full if empty
 5090     - BUG/MEDIUM: stream: Be sure to never assign a TCP backend to an HTX stream
 5091     - BUILD: ssl: improve SSL_CTX_set_ecdh_auto compatibility
 5092     - BUILD: travis-ci: link with ssl libraries using rpath instead of LD_LIBRARY_PATH/DYLD_LIBRARY_PATH
 5093     - BUILD: travis-ci: reenable address sanitizer for clang builds
 5094     - BUG/MINOR: checks: refine which errno values are really errors.
 5095     - BUG/MINOR: connection: only wake send/recv callbacks if the FD is active
 5096     - CLEANUP: connection: conn->xprt is never NULL
 5097     - MINOR: pollers: add a new flag to indicate pollers reporting ERR & HUP
 5098     - MEDIUM: tcp: make tcp_connect_probe() consider ERR/HUP
 5099     - REORG: connection: move tcp_connect_probe() to conn_fd_check()
 5100     - MINOR: connection: check for connection validation earlier
 5101     - MINOR: connection: remove the double test on xprt_done_cb()
 5102     - CLEANUP: connection: merge CO_FL_NOTIFY_DATA and CO_FL_NOTIFY_DONE
 5103     - MINOR: poller: do not call the IO handler if the FD is not active
 5104     - OPTIM: epoll: always poll for recv if neither active nor ready
 5105     - OPTIM: polling: do not create update entries for FD removal
 5106     - BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
 5107     - BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
 5108     - BUILD: CI: modernize cirrus-ci
 5109     - MINOR: config: disable busy polling on old processes
 5110     - MINOR: ssl: Remove unused variable "need_out".
 5111     - BUG/MINOR: h1: Report the right error position when a header value is invalid
 5112     - BUG/MINOR: proxy: Fix input data copy when an error is captured
 5113     - BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied
 5114     - BUG/MINOR: channel: inject output data at the end of output
 5115     - BUG/MEDIUM: session: do not report a failure when rejecting a session
 5116     - MEDIUM: dns: implement synchronous send
 5117     - MINOR: raw_sock: make sure to disable polling once everything is sent
 5118     - MINOR: http: Add 410 to http-request deny
 5119     - MINOR: http: Add 404 to http-request deny
 5120     - CLEANUP: mux-h2: remove unused goto "out_free_h2s"
 5121     - BUILD: cirrus-ci: choose proper openssl package name
 5122     - BUG/MAJOR: listener: do not schedule a task-less proxy
 5123     - CLEANUP: server: remove unused err section in server_finalize_init
 5124     - REGTEST: set_ssl_cert.vtc: replace "echo" with "printf"
 5125     - BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
 5126     - BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
 5127     - BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
 5128     - BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
 5129     - CLEANUP: ssl: remove opendir call in ssl_sock_load_cert
 5130     - MEDIUM: lua: don't call the GC as often when dealing with outgoing connections
 5131     - BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
 5132     - BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
 5133     - REGTEST: mcli/mcli_start_progs: start 2 programs
 5134     - BUG/MEDIUM: mworker: remain in mworker mode during reload
 5135     - DOC: clarify crt-base usage
 5136     - CLEANUP: compression: remove unused deinit_comp_ctx section
 5137     - BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
 5138     - BUG/MEDIUM: raw_sock: Make sur the fd and conn are sync.
 5139     - CLEANUP: proxy: simplify proxy_parse_rate_limit proxy checks
 5140     - BUG/MAJOR: hashes: fix the signedness of the hash inputs
 5141     - REGTEST: add sample_fetches/hashes.vtc to validate hashes
 5142     - BUG/MEDIUM: cli: _getsocks must send the peers sockets
 5143     - CLEANUP: cli: deduplicate the code in _getsocks
 5144     - BUG/MINOR: stream: don't mistake match rules for store-request rules
 5145     - BUG/MEDIUM: connection: add a mux flag to indicate splice usability
 5146     - BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
 5147     - MINOR: connection: move the CO_FL_WAIT_ROOM cleanup to the reader only
 5148     - MINOR: stream-int: remove dependency on CO_FL_WAIT_ROOM for rcv_buf()
 5149     - MEDIUM: connection: get rid of CO_FL_CURR_* flags
 5150     - BUILD: pattern: include errno.h
 5151     - MEDIUM: mux-h2: do not try to stop sending streams on blocked mux
 5152     - MEDIUM: mux-fcgi: do not try to stop sending streams on blocked mux
 5153     - MEDIUM: mux-h2: do not make an h2s subscribe to itself on deferred shut
 5154     - MEDIUM: mux-fcgi: do not make an fstrm subscribe to itself on deferred shut
 5155     - REORG: stream/backend: move backend-specific stuff to backend.c
 5156     - MEDIUM: backend: move the connection finalization step to back_handle_st_con()
 5157     - MEDIUM: connection: merge the send_wait and recv_wait entries
 5158     - MEDIUM: xprt: merge recv_wait and send_wait in xprt_handshake
 5159     - MEDIUM: ssl: merge recv_wait and send_wait in ssl_sock
 5160     - MEDIUM: mux-h1: merge recv_wait and send_wait
 5161     - MEDIUM: mux-h2: merge recv_wait and send_wait event notifications
 5162     - MEDIUM: mux-fcgi: merge recv_wait and send_wait event notifications
 5163     - MINOR: connection: make the last arg of subscribe() a struct wait_event*
 5164     - MINOR: ssl: Add support for returning the dn samples from ssl_(c|f)_(i|s)_dn in LDAP v3 (RFC2253) format.
 5165     - DOC: Fix copy and paste mistake in http-response replace-value doc
 5166     - BUG/MINOR: cache: Fix leak of cache name in error path
 5167     - BUG/MINOR: dns: Make dns_query_id_seed unsigned
 5168     - BUG/MINOR: 51d: Fix bug when HTX is enabled
 5169     - MINOR: http-htx: Move htx sample fetches in the scope "internal"
 5170     - MINOR: http-htx: Rename 'internal.htx_blk.val' to 'internal.htx_blk.data'
 5171     - MINOR: http-htx: Make 'internal.htx_blk_data' return a binary string
 5172     - DOC: Add a section to document the internal sample fetches
 5173     - MINOR: mux-h1: Inherit send flags from the upper layer
 5174     - MINOR: contrib/prometheus-exporter: Add heathcheck status/code in server metrics
 5175     - BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
 5176     - BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
 5177     - BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
 5178     - MEDIUM: http-rules: Register an action keyword for all http rules
 5179     - MINOR: tcp-rules: Always set from which ruleset a rule comes from
 5180     - MINOR: actions: Use ACT_RET_CONT code to ignore an error from a custom action
 5181     - MINOR: tcp-rules: Kill connections when custom actions return ACT_RET_ERR
 5182     - MINOR: http-rules: Return an error when custom actions return ACT_RET_ERR
 5183     - MINOR: counters: Add a counter to report internal processing errors
 5184     - MEDIUM: http-ana: Properly handle internal processing errors
 5185     - MINOR: http-rules: Add a rule result to report internal error
 5186     - MINOR: http-rules: Handle internal errors during HTTP rules evaluation
 5187     - MINOR: http-rules: Add more return codes to let custom actions act as normal ones
 5188     - MINOR: tcp-rules: Handle denied/aborted/invalid connections from TCP rules
 5189     - MINOR: http-rules: Handle denied/aborted/invalid connections from HTTP rules
 5190     - MINOR: stats: Report internal errors in the proxies/listeners/servers stats
 5191     - MINOR: contrib/prometheus-exporter: Export internal errors per proxy/server
 5192     - MINOR: counters: Remove failed_secu counter and use denied_resp instead
 5193     - MINOR: counters: Review conditions to increment counters from analysers
 5194     - MINOR: http-ana: Add a txn flag to support soft/strict message rewrites
 5195     - MINOR: http-rules: Handle all message rewrites the same way
 5196     - MINOR: http-rules: Add a rule to enable or disable the strict rewriting mode
 5197     - MEDIUM: http-rules: Enable the strict rewriting mode by default
 5198     - REGTEST: Fix format of set-uri HTTP request rule in h1or2_to_h1c.vtc
 5199     - MINOR: actions: Add a function pointer to release args used by actions
 5200     - MINOR: actions: Regroup some info about HTTP rules in the same struct
 5201     - MINOR: http-rules/tcp-rules: Call the defined action function first if defined
 5202     - MINOR: actions: Rename the act_flag enum into act_opt
 5203     - MINOR: actions: Add flags to configure the action behaviour
 5204     - MINOR: actions: Use an integer to set the action type
 5205     - MINOR: http-rules: Use a specific action type for some custom HTTP actions
 5206     - MINOR: http-rules: Make replace-header and replace-value custom actions
 5207     - MINOR: http-rules: Make set-header and add-header custom actions
 5208     - MINOR: http-rules: Make set/del-map and add/del-acl custom actions
 5209     - MINOR: http-rules: Group all processing of early-hint rule in its case clause
 5210     - MEDIUM: http-rules: Make early-hint custom actions
 5211     - MINOR: http-rule/tcp-rules: Make track-sc* custom actions
 5212     - MINOR: tcp-rules: Make tcp-request capture a custom action
 5213     - MINOR: http-rules: Add release functions for existing HTTP actions
 5214     - BUG/MINOR: http-rules: Fix memory releases on error path during action parsing
 5215     - MINOR: tcp-rules: Add release functions for existing TCP actions
 5216     - BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
 5217     - MINOR: http-htx: Add functions to read a raw error file and convert it in HTX
 5218     - MINOR: http-htx: Add functions to create HTX redirect message
 5219     - MINOR: config: Use dedicated function to parse proxy's errorfiles
 5220     - MINOR: config: Use dedicated function to parse proxy's errorloc
 5221     - MEDIUM: http-htx/proxy: Use a global and centralized storage for HTTP error messages
 5222     - MINOR: proxy: Register keywords to parse errorfile and errorloc directives
 5223     - MINOR: http-htx: Add a new section to create groups of custom HTTP errors
 5224     - MEDIUM: proxy: Add a directive to reference an http-errors section in a proxy
 5225     - MINOR: http-rules: Update txn flags and status when a deny rule is executed
 5226     - MINOR: http-rules: Support an optional status on deny rules for http reponses
 5227     - MINOR: http-rules: Use same function to parse request and response deny actions
 5228     - MINOR: http-ana: Add an error message in the txn and send it when defined
 5229     - MEDIUM: http-rules: Support an optional error message in http deny rules
 5230     - REGTEST: Add a strict rewriting mode reg test
 5231     - REGEST: Add reg tests about error files
 5232     - MINOR: ssl: accept 'verify' bind option with 'set ssl cert'
 5233     - BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
 5234     - BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
 5235     - BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
 5236     - BUG/MINOR: http_htx: Fix some leaks on error path when error files are loaded
 5237     - CLEANUP: http-ana: Remove useless test on txn when the error message is retrieved
 5238     - BUILD: CI: introduce ARM64 builds
 5239     - BUILD: ssl: more elegant anti-replay feature presence check
 5240     - MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive
 5241     - MEDIUM: dns: use Additional records from SRV responses
 5242     - CLEANUP: Consistently `unsigned int` for bitfields
 5243     - CLEANUP: pattern: remove the pat_time definition
 5244     - BUG/MINOR: http_act: don't check capture id in backend
 5245     - BUG/MINOR: ssl: fix build on development versions of openssl-1.1.x
 5246 
 5247 2019/11/25 : 2.2-dev0
 5248     - exact copy of 2.1.0
 5249 
 5250 2019/11/25 : 2.1.0
 5251     - BUG/MINOR: init: fix set-dumpable when using uid/gid
 5252     - MINOR: init: avoid code duplication while setting identify
 5253     - BUG/MINOR: ssl: ssl_pkey_info_index ex_data can store a dereferenced pointer
 5254     - BUG/MINOR: ssl: fix crt-list neg filter for openssl < 1.1.1
 5255     - MINOR: peers: Alway show the table info for disconnected peers.
 5256     - MINOR: peers: Add TX/RX heartbeat counters.
 5257     - MINOR: peers: Add debugging information to "show peers".
 5258     - BUG/MINOR: peers: Wrong null "server_name" data field handling.
 5259     - MINOR: ssl/cli: 'abort ssl cert' deletes an on-going transaction
 5260     - BUG/MEDIUM: mworker: don't fill the -sf argument with -1 during the reexec
 5261     - BUG/MINOR: peers: "peer alive" flag not reset when deconnecting.
 5262     - BUILD/MINOR: ssl: fix compiler warning about useless statement
 5263     - BUG/MEDIUM: stream-int: Don't loose events on the CS when an EOS is reported
 5264     - MINOR: contrib/prometheus-exporter: filter exported metrics by scope
 5265     - MINOR: contrib/prometheus-exporter: Add a param to ignore servers in maintenance
 5266     - BUILD: debug: Avoid warnings in dev mode with -02 because of some BUG_ON tests
 5267     - BUG/MINOR: mux-h1: Fix tunnel mode detection on the response path
 5268     - BUG/MINOR: http-ana: Properly catch aborts during the payload forwarding
 5269     - DOC: Update http-buffer-request description to remove the part about chunks
 5270     - BUG/MINOR: stream-int: Fix si_cs_recv() return value
 5271     - DOC: internal: document the init calls
 5272     - MEDIUM: dns: Add resolve-opts "ignore-weight"
 5273     - MINOR: ssl: ssl_sock_prepare_ctx() return an error code
 5274     - MEDIUM: ssl/cli: apply SSL configuration on SSL_CTX during commit
 5275     - MINOR: ssl/cli: display warning during 'commit ssl cert'
 5276     - MINOR: version: report the version status in "haproxy -v"
 5277     - MINOR: version: emit the link to the known bugs in output of "haproxy -v"
 5278     - DOC: Add documentation about the use-service action
 5279     - MINOR: ssl: fix possible null dereference in error handling
 5280     - BUG/MINOR: ssl: fix curve setup with LibreSSL
 5281     - BUG/MINOR: ssl: Stop passing dynamic strings as format arguments
 5282     - CLEANUP: ssl: check if a transaction exists once before setting it
 5283     - BUG/MINOR: cli: fix out of bounds in -S parser
 5284     - MINOR: ist: add ist_find_ctl()
 5285     - BUG/MAJOR: h2: reject header values containing invalid chars
 5286     - BUG/MAJOR: h2: make header field name filtering stronger
 5287     - BUG/MAJOR: mux-h2: don't try to decode a response HEADERS frame in idle state
 5288     - MINOR: h2: add a function to report H2 error codes as strings
 5289     - MINOR: mux-h2/trace: report the connection and/or stream error code
 5290     - SCRIPTS: create-release: show the correct origin name in suggested commands
 5291     - SCRIPTS: git-show-backports: add "-s" to proposed cherry-pick commands
 5292     - BUG/MEDIUM: trace: fix a typo causing an incorrect startup error
 5293     - BUILD: reorder the objects in the makefile
 5294     - DOC: mention in INSTALL haproxy 2.1 is a stable stable version
 5295     - MINOR: version: indicate that this version is stable
 5296 
 5297 2019/11/15 : 2.1-dev5
 5298     - BUG/MEDIUM: ssl/cli: don't alloc path when cert not found
 5299     - BUG/MINOR: ssl/cli: unable to update a certificate without bundle extension
 5300     - BUG/MINOR: ssl/cli: fix an error when a file is not found
 5301     - MINOR: ssl/cli: replace the default_ctx during 'commit ssl cert'
 5302     - DOC: fix date and http_date keywords syntax
 5303     - MINOR: peers: Add "log" directive to "peers" section.
 5304     - BUG/MEDIUM: mux-h1: Disable splicing for chunked messages
 5305     - BUG/MEDIUM: stream: Be sure to support splicing at the mux level to enable it
 5306     - MINOR: flt_trace: Rename macros to print trace messages
 5307     - MINOR: trace: Add a set of macros to trace events if HA is compiled with debug
 5308     - MEDIUM: stream/trace: Register a new trace source with its events
 5309     - MINOR: doc: http-reuse connection pool fix
 5310     - BUG/MEDIUM: stream: Be sure to release allocated captures for TCP streams
 5311     - MINOR: http-ana: Remove the unused function http_reset_txn()
 5312     - BUG/MINOR: action: do-resolve now use cached response
 5313     - BUG: dns: timeout resolve not applied for valid resolutions
 5314     - DOC: management: fix typo on "cache_lookups" stats output
 5315     - BUG/MINOR: stream: init variables when the list is empty
 5316     - BUG/MEDIUM: tasks: Make tasklet_remove_from_tasklet_list() no matter the tasklet.
 5317     - BUG/MINOR: queue/threads: make the queue unlinking atomic
 5318     - BUG/MEDIUM: Make sure we leave the session list in session_free().
 5319     - CLEANUP: session: slightly simplify idle connection cleanup logic
 5320     - MINOR: memory: also poison the area on freeing
 5321     - CLEANUP: cli: use srv_shutdown_streams() instead of open-coding it
 5322     - CLEANUP: stats: use srv_shutdown_streams() instead of open-coding it
 5323     - BUG/MEDIUM: listeners: always pause a listener on out-of-resource condition
 5324     - BUILD: contrib/da: remove an "unused" warning
 5325     - BUG/MEDIUM: filters: Don't call TCP callbacks for HTX streams
 5326     - MEDIUM: filters: Adapt filters API to allow again TCP filtering on HTX streams
 5327     - MINOR: freq_ctr: Make the sliding window sums thread-safe
 5328     - MINOR: stream: Remove the lock on the proxy to update time stats
 5329     - MINOR: counters: Add fields to store the max observed for {q,c,d,t}_time
 5330     - MINOR: stats: Report max times in addition of the averages for sessions
 5331     - MINOR: contrib/prometheus-exporter: Report metrics about max times for sessions
 5332     - BUG/MINOR: contrib/prometheus-exporter: Rename some metrics
 5333     - MINOR: contrib/prometheus-exporter: report the number of idle conns per server
 5334     - DOC: Add missing stats fields in the management manual
 5335     - BUG/MINOR: mux-h1: Properly catch parsing errors on payload and trailers
 5336     - BUG/MINOR: mux-h1: Don't set CS_FL_EOS on a read0 when receiving data to pipe
 5337     - MINOR: mux-h1: Set EOI on the conn-stream when EOS is reported in TUNNEL state
 5338     - MINOR: sink: Set the default max length for a message to BUFSIZE
 5339     - MINOR: ring: make the parse function automatically set the handler/release
 5340     - BUG/MINOR: log: make "show startup-log" use a ring buffer instead
 5341     - MINOR: stick-table: allow sc-set-gpt0 to set value from an expression
 5342 
 5343 2019/11/03 : 2.1-dev4
 5344     - BUG/MINOR: cli: don't call the kw->io_release if kw->parse failed
 5345     - BUG/MINOR: mux-h2: Don't pretend mux buffers aren't full anymore if nothing sent
 5346     - BUG/MAJOR: stream-int: Don't receive data from mux until SI_ST_EST is reached
 5347     - DOC: remove obsolete section about header manipulation
 5348     - BUG/MINOR: ssl/cli: cleanup on cli_parse_set_cert error
 5349     - MINOR: ssl/cli: rework the 'set ssl cert' IO handler
 5350     - BUILD: CI: comment out cygwin build, upgrade various ssl libraries
 5351     - DOC: Improve documentation of http-re(quest|sponse) replace-(header|value|uri)
 5352     - BUILD/MINOR: tools: shut up the format truncation warning in get_gmt_offset()
 5353     - BUG/MINOR: spoe: fix off-by-one length in UUID format string
 5354     - BUILD/MINOR: ssl: shut up a build warning about format truncation
 5355     - BUILD: do not disable -Wformat-truncation anymore
 5356     - MINOR: chunk: add chunk_istcat() to concatenate an ist after a chunk
 5357     - Revert "MINOR: istbuf: add b_fromist() to make a buffer from an ist"
 5358     - MINOR: mux: Add a new method to get informations about a mux.
 5359     - BUG/MEDIUM: stream_interface: Only use SI_ST_RDY when the mux is ready.
 5360     - BUG/MEDIUM: servers: Only set SF_SRV_REUSED if the connection if fully ready.
 5361     - MINOR: doc: fix busy-polling performance reference
 5362     - MINOR: config: allow no set-dumpable config option
 5363     - MINOR: init: always fail when setrlimit fails
 5364     - MINOR: ssl/cli: rework 'set ssl cert' as 'set/commit'
 5365     - CLEANUP: ssl/cli: remove leftovers of bundle/certs (it < 2)
 5366     - REGTEST: vtest can now enable mcli with its own flag
 5367     - BUG/MINOR: config: Update cookie domain warn to RFC6265
 5368     - MINOR: sample: add us/ms support to date/http_date
 5369     - BUG/MINOR: ssl/cli: check trash allocation in cli_io_handler_commit_cert()
 5370     - BUG/MEDIUM: mux-h2: report no available stream on a connection having errors
 5371     - BUG/MEDIUM: mux-h2: immediately remove a failed connection from the idle list
 5372     - BUG/MEDIUM: mux-h2: immediately report connection errors on streams
 5373     - BUG/MINOR: stats: properly check the path and not the whole URI
 5374     - BUG/MINOR: ssl: segfault in cli_parse_set_cert with old openssl/boringssl
 5375     - BUG/MINOR: ssl: ckch->chain must be initialized
 5376     - BUG/MINOR: ssl: double free on error for ckch->{key,cert}
 5377     - MINOR: ssl: BoringSSL ocsp_response does not need issuer
 5378     - BUG/MEDIUM: ssl/cli: fix dot research in cli_parse_set_cert
 5379     - MINOR: backend: Add srv_name sample fetche
 5380     - DOC: Add GitHub issue config.yml
 5381 
 5382 2019/10/25 : 2.1-dev3
 5383     - MINOR: mux-h2/trace: missing conn pointer in demux full message
 5384     - MINOR: mux-h2: add a per-connection list of blocked streams
 5385     - BUILD: ebtree: make eb_is_empty() and eb_is_dup() take a const
 5386     - BUG/MEDIUM: mux-h2: do not enforce timeout on long connections
 5387     - BUG/MEDIUM: tasks: Don't forget to decrement tasks_run_queue.
 5388     - BUG/MINOR: peers: crash on reload without local peer.
 5389     - BUG/MINOR: mux-h2/trace: Fix traces on h2c initialization
 5390     - MINOR: h1-htx: Update h1_copy_msg_data() to ease the traces in the mux-h1
 5391     - MINOR: htx: Adapt htx_dump() to be used from traces
 5392     - MINOR: mux-h1/trace: register a new trace source with its events
 5393     - MINOR: proxy: Store http-send-name-header in lower case
 5394     - MINOR: http: Remove headers matching the name of http-send-name-header option
 5395     - BUG/MINOR: mux-h1: Adjust header case when the server name is add to a request
 5396     - BUG/MINOR: mux-h1: Adjust header case when chunked encoding is add to a message
 5397     - MINOR: mux-h1: Try to wakeup the stream on output buffer allocation
 5398     - MINOR: fcgi: Add function to get the string representation of a record type
 5399     - MINOR: mux-fcgi/trace: Register a new trace source with its events
 5400     - BUG/MEDIUM: cache: make sure not to cache requests with absolute-uri
 5401     - DOC: clarify some points around http-send-name-header's behavior
 5402     - MEDIUM: mux-h2: support emitting CONTINUATION frames after HEADERS
 5403     - BUG/MINOR: mux-h1/mux-fcgi/trace: Fix position of the 4th arg in some traces
 5404     - DOC: fix typo in Prometheus exporter doc
 5405     - MINOR: h2: clarify the rules for how to convert an H2 request to HTX
 5406     - MINOR: htx: Add 2 flags on the start-line to have more info about the uri
 5407     - MINOR: http: Add a function to get the authority into a URI
 5408     - MINOR: h1-htx: Set the flag HTX_SL_F_HAS_AUTHORITY during the request parsing
 5409     - MEDIUM: http-htx: Keep the Host header and the request start-line synchronized
 5410     - MINOR: h1-htx: Only use the path of a normalized URI to format a request line
 5411     - MEDIUM: h2: make the request parser rebuild a complete URI
 5412     - MINOR: h2: report in the HTX flags when the request has an authority
 5413     - MEDIUM: mux-h2: do not map Host to :authority on output
 5414     - MEDIUM: h2: use the normalized URI encoding for absolute form requests
 5415     - MINOR: stats: mention in the help message support for "json" and "typed"
 5416     - MINOR: stats: get rid of the ST_CONVDONE flag
 5417     - MINOR: stats: replace the ST_* uri_auth flags with STAT_*
 5418     - MINOR: stats: always merge the uri_auth flags into the appctx flags
 5419     - MINOR: stats: set the appctx flags when initializing the applet only
 5420     - MINOR: stats: get rid of the STAT_SHOWADMIN flag
 5421     - MINOR: stats: make stats_dump_fields_json() directly take flags
 5422     - MINOR: stats: uniformize the calling convention of the dump functions
 5423     - MINOR: stats: support the "desc" output format modifier for info and stat
 5424     - MINOR: stats: prepare to add a description with each stat/info field
 5425     - MINOR: stats: make "show stat" and "show info"
 5426     - MINOR: stats: fill all the descriptions for "show info" and "show stat"
 5427     - BUG/MEDIUM: applet: always check a fast running applet's activity before killing
 5428     - BUILD: stats: fix missing '=' sign in array declaration
 5429     - MINOR: lists: add new macro LIST_SPLICE_END_DETACHED
 5430     - MINOR: list: add new macro MT_LIST_BEHEAD
 5431     - MEDIUM: task: Split the tasklet list into two lists.
 5432     - MINOR: h2: Document traps to be avoided on multithread.
 5433     - MINOR: lists: Try to use local variables instead of macro arguments.
 5434     - MINOR: lists: Fix alignement of \ when relevant.
 5435     - MINOR: mux-h2: also support emitting CONTINUATION on trailers
 5436     - MINOR: ssl: crt-list do ckchn_lookup
 5437     - REORG: ssl: rename ckch_node to ckch_store
 5438     - REORG: ssl: move structures to ssl_sock.h
 5439     - MINOR: ssl: initialize the sni_keytypes_map as EB_ROOT
 5440     - MINOR: ssl: initialize explicitly the sni_ctx trees
 5441     - BUG/MINOR: ssl: abort on sni allocation failure
 5442     - BUG/MINOR: ssl: free the sni_keytype nodes
 5443     - BUG/MINOR: ssl: abort on sni_keytypes allocation failure
 5444     - MEDIUM: ssl: introduce the ckch instance structure
 5445     - MEDIUM: ssl: split ssl_sock_add_cert_sni()
 5446     - MINOR: ssl: ssl_sock_load_ckchn() can properly fail
 5447     - MINOR: ssl: ssl_sock_load_multi_ckchs() can properly fail
 5448     - MEDIUM: ssl: ssl_sock_load_ckchs() alloc a ckch_inst
 5449     - MINOR: ssl: ssl_sock_load_crt_file_into_ckch() is filling from a BIO
 5450     - MEDIUM: ssl/cli: 'set ssl cert' updates a certificate from the CLI
 5451     - MINOR: ssl: load the sctl in/from the ckch
 5452     - MINOR: ssl: load the ocsp in/from the ckch
 5453     - BUG/MEDIUM: ssl: NULL dereference in ssl_sock_load_cert_sni()
 5454     - BUG/MINOR: ssl: fix build without SSL
 5455     - BUG/MINOR: ssl: fix build without multi-cert bundles
 5456     - BUILD: ssl: wrong #ifdef for SSL engines code
 5457     - BUG/MINOR: ssl: fix OCSP build with BoringSSL
 5458     - BUG/MEDIUM: htx: Catch chunk_memcat() failures when HTX data are formatted to h1
 5459     - BUG/MINOR: chunk: Fix tests on the chunk size in functions copying data
 5460     - BUG/MINOR: mux-h1: Mark the output buffer as full when the xfer is interrupted
 5461     - MINOR: mux-h1: Xfer as much payload data as possible during output processing
 5462     - CLEANUP: h1-htx: Move htx-to-h1 formatting functions from htx.c to h1_htx.c
 5463     - BUG/MINOR: mux-h1: Capture ignored parsing errors
 5464     - MINOR: h1: Reject requests with different occurrences of the header host
 5465     - MINOR: h1: Reject requests if the authority does not match the header host
 5466     - REGTESTS: Send valid URIs in peers reg-tests and fix HA config to avoid warnings
 5467     - REGTESTS: Adapt proxy_protocol_random_fail.vtc to match normalized URI too
 5468     - BUG/MINOR: WURFL: fix send_log() function arguments
 5469     - BUG/MINOR: ssl: fix error messages for OCSP loading
 5470     - BUG/MINOR: ssl: can't load ocsp files
 5471     - MINOR: version: make the version strings variables, not constants
 5472     - BUG/MINOR: http-htx: Properly set htx flags on error files to support keep-alive
 5473     - MINOR: htx: Add a flag on HTX to known when a response was generated by HAProxy
 5474     - MINOR: mux-h1: Force close mode for proxy responses with an unfinished request
 5475     - BUILD: travis-ci: limit build to branches "master" and "next"
 5476     - BUILD/MEDIUM: threads: rename thread_info struct to ha_thread_info
 5477     - BUILD/SMALL: threads: enable threads on osx
 5478     - BUILD/MEDIUM: threads: enable cpu_affinity on osx
 5479     - MINOR: istbuf: add b_fromist() to make a buffer from an ist
 5480     - BUG/MINOR: cache: also cache absolute URIs
 5481     - BUG/MINOR: mworker/ssl: close openssl FDs unconditionally
 5482     - BUG/MINOR: tcp: Don't alter counters returned by tcp info fetchers
 5483     - BUG/MEDIUM: lists: Handle 1-element-lists in MT_LIST_BEHEAD().
 5484     - BUG/MEDIUM: mux_pt: Make sure we don't have a conn_stream before freeing.
 5485     - BUG/MEDIUM: tasklet: properly compute the sleeping threads mask in tasklet_wakeup()
 5486     - BUG/MAJOR: idle conns: schedule the cleanup task on the correct threads
 5487     - BUG/MEDIUM: task: make tasklets either local or shared but not both at once
 5488     - Revert e8826ded5fea3593d89da2be5c2d81c522070995.
 5489     - BUG/MEDIUM: mux_pt: Don't destroy the connection if we have a stream attached.
 5490     - BUG/MEDIUM: mux_pt: Only call the wake emthod if nobody subscribed to receive.
 5491     - REGTEST: mcli/mcli_show_info: launch a 'show info' on the master CLI
 5492     - CLEANUP: ssl: make ssl_sock_load_cert*() return real error codes
 5493     - CLEANUP: ssl: make ssl_sock_load_ckchs() return a set of ERR_*
 5494     - CLEANUP: ssl: make cli_parse_set_cert handle errcode and warnings.
 5495     - CLEANUP: ssl: make ckch_inst_new_load_(multi_)store handle errcode/warn
 5496     - CLEANUP: ssl: make ssl_sock_put_ckch_into_ctx handle errcode/warn
 5497     - CLEANUP: ssl: make ssl_sock_load_dh_params handle errcode/warn
 5498     - CLEANUP: bind: handle warning label on bind keywords parsing.
 5499     - BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored with openssl > 1.1.1
 5500     - BUG/MINOR: mworker/cli: reload fail with inherited FD
 5501     - BUG/MINOR: ssl: Fix fd leak on error path when a TLS ticket keys file is parsed
 5502     - BUG/MINOR: stick-table: Never exceed (MAX_SESS_STKCTR-1) when fetching a stkctr
 5503     - BUG/MINOR: cache: alloc shctx after check config
 5504     - BUG/MINOR: sample: Make the `field` converter compatible with `-m found`
 5505     - BUG/MINOR: server: check return value of fopen() in apply_server_state()
 5506     - REGTESTS: make seamless-reload depend on 1.9 and above
 5507     - REGTESTS: server/cli_set_fqdn requires version 1.8 minimum
 5508     - BUG/MINOR: dns: allow srv record weight set to 0
 5509     - BUG/MINOR: ssl: fix memcpy overlap without consequences.
 5510     - BUG/MINOR: stick-table: fix an incorrect 32 to 64 bit key conversion
 5511     - BUG/MEDIUM: pattern: make the pattern LRU cache thread-local and lockless
 5512     - BUG/MINOR: mux-h2: do not emit logs on backend connections
 5513     - CLEANUP: ssl: remove old TODO commentary
 5514     - CLEANUP: ssl: fix SNI/CKCH lock labels
 5515     - MINOR: ssl: OCSP functions can load from file or buffer
 5516     - MINOR: ssl: load sctl from buf OR from a file
 5517     - MINOR: ssl: load issuer from file or from buffer
 5518     - MINOR: ssl: split ssl_sock_load_crt_file_into_ckch()
 5519     - BUG/MINOR: ssl/cli: fix looking up for a bundle
 5520     - MINOR: ssl/cli: update ocsp/issuer/sctl file from the CLI
 5521     - MINOR: ssl: update ssl_sock_free_cert_key_and_chain_contents
 5522     - MINOR: ssl: copy a ckch from src to dst
 5523     - MINOR: ssl: new functions duplicate and free a ckch_store
 5524     - MINOR: ssl/cli: assignate a new ckch_store
 5525     - MEDIUM: cli/ssl: handle the creation of SSL_CTX in an IO handler
 5526     - BUG/MINOR: ssl/cli: fix build of SCTL and OCSP
 5527     - BUG/MINOR: ssl/cli: out of bounds when built without ocsp/sctl
 5528     - BUG/MINOR: ssl: fix build with openssl < 1.1.0
 5529     - BUG/MINOR: ssl: fix build of X509_chain_up_ref() w/ libreSSL
 5530     - MINOR: tcp: avoid confusion in time parsing init
 5531     - MINOR: debug: add a new "debug dev stream" command
 5532     - MINOR: cli/debug: validate addresses using may_access() in "debug dev stream"
 5533     - REORG: move CLI access level definitions to cli.h
 5534     - MINOR: cli: add an expert mode to hide dangerous commands
 5535     - MINOR: debug: make most debug CLI commands accessible in expert mode
 5536     - MINOR: stats/debug: maintain a counter of debug commands issued
 5537     - BUG/MEDIUM: debug: address a possible null pointer dereference in "debug dev stream"
 5538 
 5539 2019/10/01 : 2.1-dev2
 5540     - DOC: management: document reuse and connect counters in the CSV format
 5541     - DOC: management: document cache_hits and cache_lookups in the CSV format
 5542     - BUG/MINOR: dns: remove irrelevant dependency on a client connection
 5543     - MINOR: applet: make appctx use their own pool
 5544     - BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed.
 5545     - BUG/MEDIUM: http/htx: unbreak option http_proxy
 5546     - BUG/MINOR: backend: do not try to install a mux when the connection failed
 5547     - MINOR: mux-h2: Don't adjust anymore the amount of data sent in h2_snd_buf()
 5548     - BUG/MINOR: http_fetch: Fix http_auth/http_auth_group when called from TCP rules
 5549     - BUG/MINOR: http_htx: Initialize HTX error messages for TCP proxies
 5550     - BUG/MINOR: cache/htx: Make maxage calculation HTX aware
 5551     - BUG/MINOR: hlua: Make the function txn:done() HTX aware
 5552     - MINOR: proto_htx: Directly call htx_check_response_for_cacheability()
 5553     - MINOR: proto_htx: Rely on the HTX function to apply a redirect rules
 5554     - MINOR: proto_htx: Add the function htx_return_srv_error()
 5555     - MINOR: backend/htx: Don't rewind output data to set the sni on a srv connection
 5556     - MINOR: proto_htx: Don't stop forwarding when there is a post-connect processing
 5557     - DOC: htx: Update comments in HTX files
 5558     - CLEANUP: htx: Remove the unsued function htx_add_blk_type_size()
 5559     - MINOR: htx: Deduce the number of used blocks from tail and head values
 5560     - MINOR: htx: Use an array of char to store HTX blocks
 5561     - MINOR: htx: Slightly update htx_dump() to report better messages
 5562     - DOC: htx: Add internal documentation about the HTX
 5563     - MAJOR: http: Deprecate and ignore the option "http-use-htx"
 5564     - MEDIUM: mux-h2: Remove support of the legacy HTTP mode
 5565     - CLEANUP: h2: Remove functions converting h2 requests to raw HTTP/1.1 ones
 5566     - MINOR: connection: Remove the multiplexer protocol PROTO_MODE_HTX
 5567     - MINOR: stream: Rely on HTX analyzers instead of legacy HTTP ones
 5568     - MEDIUM: http_fetch: Remove code relying on HTTP legacy mode
 5569     - MINOR: config: Remove tests on the option 'http-use-htx'
 5570     - MINOR: stream: Remove tests on the option 'http-use-htx' in stream_new()
 5571     - MINOR: proxy: Remove tests on the option 'http-use-htx' during H1 upgrade
 5572     - MINOR: hlua: Remove tests on the option 'http-use-htx' to reject TCP applets
 5573     - MINOR: cache: Remove tests on the option 'http-use-htx'
 5574     - MINOR: contrib/prometheus-exporter: Remove tests on the option 'http-use-htx'
 5575     - CLEANUP: proxy: Remove the flag PR_O2_USE_HTX
 5576     - MINOR: proxy: Don't adjust connection mode of HTTP proxies anymore
 5577     - MEDIUM: backend: Remove code relying on the HTTP legacy mode
 5578     - MEDIUM: hlua: Remove code relying on the legacy HTTP mode
 5579     - MINOR: http_act: Remove code relying on the legacy HTTP mode
 5580     - MEDIUM: cache: Remove code relying on the legacy HTTP mode
 5581     - MEDIUM: compression: Remove code relying on the legacy HTTP mode
 5582     - MINOR: flt_trace: Remove code relying on the legacy HTTP mode
 5583     - MINOR: stats: Remove code relying on the legacy HTTP mode
 5584     - MAJOR: filters: Remove code relying on the legacy HTTP mode
 5585     - MINOR: stream: Remove code relying on the legacy HTTP mode
 5586     - MAJOR: http: Remove the HTTP legacy code
 5587     - MINOR: hlua: Remove useless test on TX_CON_WANT_* flags
 5588     - MINOR: proto_http: Remove unused http txn flags
 5589     - MINOR: proto_http: Remove the unused flag HTTP_MSGF_WAIT_CONN
 5590     - CLEANUP: proto_http: Group remaining flags of the HTTP transaction
 5591     - CLEANUP: channel: Remove the unused flag CF_WAKE_CONNECT
 5592     - CLEANUP: proto_http: Remove unecessary includes and comments
 5593     - CLEANUP: proto_http: Move remaining code from proto_http.c to proto_htx.c
 5594     - REORG: proto_htx: Move HTX analyzers & co to http_ana.{c,h} files
 5595     - BUG/MINOR: debug: Remove flags CO_FL_SOCK_WR_ENA/CO_FL_SOCK_RD_ENA
 5596     - MINOR: proxy: Remove support of the option 'http-tunnel'
 5597     - DOC: config: Update as a result of the legacy HTTP removal
 5598     - MEDIUM: config: Remove parsing of req* and rsp* directives
 5599     - MINOR: proxy: Remove the unused list of block rules
 5600     - MINOR: proxy/http_ana: Remove unused req_exp/rsp_exp and req_add/rsp_add lists
 5601     - DOC: config: Remove unsupported req* and rsp* keywords
 5602     - MINOR: global: Preset tune.max_http_hdr to its default value
 5603     - MINOR: http: Don't store raw HTTP errors in chunks anymore
 5604     - BUG/MINOR: session: Emit an HTTP error if accept fails only for H1 connection
 5605     - BUG/MINOR: session: Send a default HTTP error if accept fails for a H1 socket
 5606     - CLEANUP: mux-h2: Remove unused flags H2_SF_CHNK_*
 5607     - BUG/MINOR: checks: do not exit tcp-checks from the middle of the loop
 5608     - MINOR: config: Warn only if the option http-use-htx is used with "no" prefix
 5609     - BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction
 5610     - MINOR: connection: add conn_get_src() and conn_get_dst()
 5611     - MINOR: frontend: switch to conn_get_{src,dst}() for logging and debugging
 5612     - MINOR: backend: switch to conn_get_{src,dst}() for port and address mapping
 5613     - MINOR: ssl: switch to conn_get_dst() to retrieve the destination address
 5614     - MINOR: tcp: replace various calls to conn_get_{from,to}_addr with conn_get_{src,dst}
 5615     - MINOR: stream-int: use conn_get_{src,dst} in conn_si_send_proxy()
 5616     - MINOR: stream/cli: use conn_get_{src,dst} in "show sess" and "show peers" output
 5617     - MINOR: log: use conn_get_{dst,src}() to retrieve the cli/frt/bck/srv/ addresses
 5618     - MINOR: http/htx: use conn_get_dst() to retrieve the destination address
 5619     - MINOR: lua: use conn_get_{src,dst} to retrieve connection addresses
 5620     - MINOR: http: check the source address via conn_get_src() in sample fetch functions
 5621     - CLEANUP: connection: remove the now unused conn_get_{from,to}_addr()
 5622     - MINOR: connection: add new src and dst fields
 5623     - MINOR: connection: use conn->{src,dst} instead of &conn->addr.{from,to}
 5624     - MINOR: ssl-sock: use conn->dst instead of &conn->addr.to
 5625     - MINOR: lua: switch to conn->dst for a connection's target address
 5626     - MINOR: peers: use conn->dst for the peer's target address
 5627     - MINOR: htx: switch from conn->addr.{from,to} to conn->{src,dst}
 5628     - MINOR: stream: switch from conn->addr.{from,to} to conn->{src,dst}
 5629     - MINOR: proxy: switch to conn->src in error snapshots
 5630     - MINOR: session: use conn->src instead of conn->addr.from
 5631     - MINOR: tcp: replace conn->addr.{from,to} with conn->{src,dst}
 5632     - MINOR: unix: use conn->dst for the target address in ->connect()
 5633     - MINOR: sockpair: use conn->dst for the target address in ->connect()
 5634     - MINOR: log: use conn->{src,dst} instead of conn->addr.{from,to}
 5635     - MINOR: checks: replace conn->addr.to with conn->dst
 5636     - MINOR: frontend: switch from conn->addr.{from,to} to conn->{src,dst}
 5637     - MINOR: http: convert conn->addr.from to conn->src in sample fetches
 5638     - MEDIUM: backend: turn all conn->addr.{from,to} to conn->{src,dst}
 5639     - MINOR: connection: create a new pool for struct sockaddr_storage
 5640     - MEDIUM: connection: make sure all address producers allocate their address
 5641     - MAJOR: connection: remove the addr field
 5642     - MINOR: connection: don't use clear_addr() anymore, just release the address
 5643     - MINOR: stream: add a new target_addr entry in the stream structure
 5644     - MAJOR: stream: store the target address into s->target_addr
 5645     - MINOR: peers: now remove the remote connection setup code
 5646     - MEDIUM: lua: do not allocate the remote connection anymore
 5647     - MEDIUM: backend: always release any existing prior connection in connect_server()
 5648     - MEDIUM: backend: remove impossible cases from connect_server()
 5649     - BUG/MINOR: mux-h1: Close server connection if input data remains in h1_detach()
 5650     - BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream
 5651     - BUG/MINOR: http_ana: Be sure to have an allocated buffer to generate an error
 5652     - BUG/MINOR: http_htx: Support empty errorfiles
 5653     - BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter
 5654     - BUG/MEDIUM: protocols: add a global lock for the init/deinit stuff
 5655     - BUG/MINOR: proxy: always lock stop_proxy()
 5656     - MEDIUM: mux-h1: Add the support of headers adjustment for bogus HTTP/1 apps
 5657     - BUILD: threads: add the definition of PROTO_LOCK
 5658     - BUG/MEDIUM: lb-chash: Fix the realloc() when the number of nodes is increased
 5659     - BUG/MEDIUM: streams: Don't switch the SI to SI_ST_DIS if we have data to send.
 5660     - BUG/MINOR: log: make sure writev() is not interrupted on a file output
 5661     - DOC: improve the wording in CONTRIBUTING about how to document a bug fix
 5662     - MEDIUM: h1: Don't try to subscribe if we managed to read data.
 5663     - MEDIUM: h1: Don't wake the H1 tasklet if we got the whole request.
 5664     - REGTESTS: checks: exclude freebsd target for tcp-check_multiple_ports.vtc
 5665     - BUG/MINOR: hlua/htx: Reset channels analyzers when txn:done() is called
 5666     - BUG/MEDIUM: hlua: Check the calling direction in lua functions of the HTTP class
 5667     - MINOR: hlua: Don't set request analyzers on response channel for lua actions
 5668     - MINOR: hlua: Add a flag on the lua txn to know in which context it can be used
 5669     - BUG/MINOR: hlua: Only execute functions of HTTP class if the txn is HTTP ready
 5670     - BUG/MINOR: htx: Fix free space addresses calculation during a block expansion
 5671     - MINOR: ssl: merge ssl_sock_load_cert_file() and ssl_sock_load_cert_chain_file()
 5672     - MEDIUM: ssl: use cert_key_and_chain struct in ssl_sock_load_cert_file()
 5673     - MEDIUM: ssl: split the loading of the certificates
 5674     - MEDIUM: ssl: lookup and store in a ckch_node tree
 5675     - MEDIUM: ssl: load DH param in struct cert_key_and_chain
 5676     - BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
 5677     - MINOR: ssl: use STACK_OF for chain certs
 5678     - MINOR: ssl: add extra chain compatibility
 5679     - MINOR: ssl: check private key consistency in loading
 5680     - MINOR: ssl: do not look at DHparam with OPENSSL_NO_DH
 5681     - CLEANUP: ssl: ssl_sock_load_crt_file_into_ckch
 5682     - MINOR: ssl: clean ret variable in ssl_sock_load_ckchn
 5683     - MAJOR: fd: Get rid of the fd cache.
 5684     - MEDIUM: pollers: Remember the state for read and write for each threads.
 5685     - MEDIUM: mux-h2: don't try to read more than needed
 5686     - BUG/BUILD: ssl: fix build with openssl < 1.0.2
 5687     - BUG/MEDIUM: ssl: does not try to free a DH in a ckch
 5688     - BUG/MINOR: debug: fix a small race in the thread dumping code
 5689     - MINOR: wdt: also consider that waiting in the thread dumper is normal
 5690     - REGTESTS: checks: make 4be_1srv_health_checks more reliable
 5691     - BUILD: ssl: BoringSSL add EVP_PKEY_base_id
 5692     - BUG/MEDIUM: ssl: don't free the ckch in multi-cert bundle
 5693     - BUG/MINOR: ssl: fix ressource leaks on error
 5694     - BUG/MEDIUM: lb-chash: Ensure the tree integrity when server weight is increased
 5695     - BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion
 5696     - BUG/MINOR: stream-int: make sure to always release empty buffers after sending
 5697     - BUG/MEDIUM: ssl: open the right path for multi-cert bundle
 5698     - BUG/MINOR: stream-int: also update analysers timeouts on activity
 5699     - BUG/MEDIUM: mux-h2: unbreak receipt of large DATA frames
 5700     - BUG/MEDIUM: mux-h2: split the stream's and connection's window sizes
 5701     - BUG/MEDIUM: proxy: Make sure to destroy the stream on upgrade from TCP to H2
 5702     - DOC: Add 'Question.md' issue template, discouraging asking questions
 5703     - BUG/MEDIUM: fd: Always reset the polled_mask bits in fd_dodelete().
 5704     - BUG/MEDIUM: pollers: Clear the poll_send bits as well.
 5705     - BUILD: travis-ci: enable daily Coverity scan
 5706     - BUG/MINOR: mux-h2: don't refrain from sending an RST_STREAM after another one
 5707     - BUG/MINOR: mux-h2: use CANCEL, not STREAM_CLOSED in h2c_frt_handle_data()
 5708     - BUG/MINOR: mux-h2: do not send REFUSED_STREAM on aborted uploads
 5709     - BUG/MEDIUM: mux-h2: do not recheck a frame type after a state transition
 5710     - BUG/MINOR: mux-h2: always send stream window update before connection's
 5711     - BUG/MINOR: mux-h2: always reset rcvd_s when switching to a new frame
 5712     - BUG/MEDIUM: checks: make sure to close nicely when we're the last to speak
 5713     - BUG/MEDIUM: stick-table: Wrong stick-table backends parsing.
 5714     - CLEANUP: mux-h2: move the demuxed frame check code in its own function
 5715     - MINOR: cache: add method to cache hash
 5716     - MINOR: cache: allow caching of OPTIONS request
 5717     - BUG/MINOR: ssl: fix 0-RTT for BoringSSL
 5718     - MINOR: ssl: ssl_fc_has_early should work for BoringSSL
 5719     - BUG/MINOR: pools: don't mark the thread harmless if already isolated
 5720     - BUG/MINOR: buffers/threads: always clear a buffer's head before releasing it
 5721     - CLEANUP: buffer: replace b_drop() with b_free()
 5722     - CLEANUP: task: move the cpu_time field to the task-only part
 5723     - MINOR: cli: add two new states to print messages on the CLI
 5724     - MINOR: cli: add cli_msg(), cli_err(), cli_dynmsg(), cli_dynerr()
 5725     - CLEANUP: cli: replace all occurrences of manual handling of return messages
 5726     - BUG/MEDIUM: proxy: Don't forget the SF_HTX flag when upgrading TCP=>H1+HTX.
 5727     - BUG/MEDIUM: proxy: Don't use cs_destroy() when freeing the conn_stream.
 5728     - BUG/MINOR: lua: fix setting netfilter mark
 5729     - BUG/MINOR: Fix prometheus '# TYPE' and '# HELP' headers
 5730     - BUG/MEDIUM: lua: Fix test on the direction to set the channel exp timeout
 5731     - BUG/MINOR: stats: Wait the body before processing POST requests
 5732     - MINOR: fd: make sure to mark the thread as not stuck in fd_update_events()
 5733     - BUG/MEDIUM: mux_pt: Don't call unsubscribe if we did not subscribe.
 5734     - BUILD: travis-ci: trigger non-mainstream configurations only on daily builds.
 5735     - MINOR: debug: indicate the applet name when the task is task_run_applet()
 5736     - MINOR: tools: add append_prefixed_str()
 5737     - MINOR: lua: export applet and task handlers
 5738     - MEDIUM: debug: make the thread dump code show Lua backtraces
 5739     - BUG/MEDIUM: h1: Always try to receive more in h1_rcv_buf().
 5740     - MINOR: list: add LIST_SPLICE() to merge one list into another
 5741     - MINOR: tools: add a DEFNULL() macro to use NULL for empty args
 5742     - REORG: trace: rename trace.c to calltrace.c and mention it's not thread-safe
 5743     - MINOR: sink: create definitions a minimal code for event sinks
 5744     - MINOR: sink: add a support for file descriptors
 5745     - MINOR: trace: start to create a new trace subsystem
 5746     - MINOR: trace: add allocation of buffer-sized trace buffers
 5747     - MINOR: trace/cli: register the "trace" CLI keyword to list the sources
 5748     - MINOR: trace/cli: parse the "level" argument to configure the trace verbosity
 5749     - MINOR: trace/cli: add "show trace" to report trace state and statistics
 5750     - MINOR: trace: implement a very basic trace() function
 5751     - MINOR: trace: add the file name and line number in the prefix
 5752     - MINOR: trace: make trace() now also take a level in argument
 5753     - MINOR: trace: implement a call to a decode function
 5754     - MINOR: trace: add per-level macros to produce traces
 5755     - MINOR: trace: add a definition of typed arguments to trace()
 5756     - MINOR: trace: make sure to always stop the locking when stopping or pausing
 5757     - MINOR: trace: add the possibility to lock on some arguments
 5758     - MINOR: trace: parse the "lock" argument to trace
 5759     - MINOR: trace: retrieve useful pointers and enforce lock-on
 5760     - DOC: management: document the "trace" and "show trace" commands
 5761     - BUILD: trace: make the lockon_ptr const to silence a warning without threads
 5762     - BUG/MEDIUM: mux-h1: do not truncate trailing 0CRLF on buffer boundary
 5763     - BUG/MEDIUM: mux-h1: do not report errors on transfers ending on buffer full
 5764     - DOC: fixed typo in management.txt
 5765     - BUG/MINOR: mworker: disable SIGPROF on re-exec
 5766     - BUG/MEDIUM: listener/threads: fix an AB/BA locking issue in delete_listener()
 5767     - BUG/MEDIUM: url32 does not take the path part into account in the returned hash.
 5768     - MINOR: backend: Add srv_queue converter
 5769     - MINOR: sink: set the fd-type sinks to non-blocking
 5770     - MINOR: tools: add a function varint_bytes() to report the size of a varint
 5771     - MINOR: buffer: add functions to read/write varints from/to buffers
 5772     - MINOR: fd: add fd_write_frag_line() to send a fragmented line to an fd
 5773     - MINOR: sink: now call the generic fd write function
 5774     - MINOR: ring: add a new mechanism for retrieving/storing ring data in buffers
 5775     - MINOR: ring: add a ring_write() function
 5776     - MINOR: ring: add a generic CLI io_handler to dump a ring buffer
 5777     - MINOR: sink: add support for ring buffers
 5778     - MINOR: sink: implement "show events" to show supported sinks and dump the rings
 5779     - MINOR: sink: now report the number of dropped events on output
 5780     - MINOR: trace: support a default callback for the source
 5781     - MINOR: trace: extend the source location to 13 chars
 5782     - MINOR: trace: show thread number and source name in the trace
 5783     - MINOR: trace: change the TRACE() calling convention to put the args and cb last
 5784     - MINOR: connection: add the fc_pp_authority fetch -- authority TLV, from PROXYv2
 5785     - MINOR: tools: add a generic struct "name_desc" for name-description pairs
 5786     - MINOR: trace: replace struct trace_lockon_args with struct name_desc
 5787     - MINOR: trace: change the "payload" level to "data" and move it
 5788     - MINOR: trace: prepend the function name for developer level traces
 5789     - MINOR: trace: also report the trace level in the output
 5790     - MINOR: trace: change the detail_level to per-source verbosity
 5791     - MINOR: mux-h2/trace: register a new trace source with its events
 5792     - MINOR: mux-h2/trace: add the default decoding callback
 5793     - MEDIUM: mux-h2/trace: add lots of traces all over the code
 5794     - MINOR: mux-h2: add functions to convert an h2c/h2s state to a string
 5795     - MINOR: mux-h2/trace: add a new verbosity level "clean"
 5796     - MINOR: mux-h2/trace: only decode the start-line at verbosity other than "minimal"
 5797     - MINOR: mux-h2/trace: always report the h2c/h2s state and flags
 5798     - MINOR: mux-h2/trace: report h2s->id before h2c->dsi for the stream ID
 5799     - CLEANUP: mux-h2/trace: reformat the "received" messages for better alignment
 5800     - CLEANUP: mux-h2/trace: lower-case event names
 5801     - MINOR: trace: extend default event names to 12 chars
 5802     - BUG/MINOR: ring: fix the way watchers are counted
 5803     - MINOR: cli: extend the CLI context with a list and two offsets
 5804     - MINOR: mux-h2/trace: report the connection pointer and state before FRAME_H
 5805     - MEDIUM: ring: implement a wait mode for watchers
 5806     - BUG/MEDIUM: mux-h2/trace: do not dereference h2c->conn after failed idle
 5807     - BUG/MEDIUM: mux-h2/trace: fix missing braces added with traces
 5808     - BUG/MINOR: ring: b_peek_varint() returns a uint64_t, not a size_t
 5809     - CLEANUP: fd: remove leftovers of the fdcache
 5810     - MINOR: fd: add a new "initialized" bit in the fdtab struct
 5811     - MINOR: fd/log/sink: make the non-blocking initialization depend on the initialized bit
 5812     - MEDIUM: log: use the new generic fd_write_frag_line() function
 5813     - MINOR: log: add a target type instead of hacking the address family
 5814     - MEDIUM: log: add support for logging to a ring buffer
 5815     - MINOR: send-proxy-v2: sends authority TLV according to TLV received
 5816     - MINOR: build: add linux-glibc-legacy build TARGET
 5817     - BUG/MEDIUM: peers: local peer socket not bound.
 5818     - BUILD: connection: silence gcc warning with extra parentheses
 5819     - BUG/MINOR: http-ana: Reset response flags when 1xx messages are handled
 5820     - BUG/MINOR: h1: Properly reset h1m when parsing is restarted
 5821     - BUG/MINOR: mux-h1: Fix size evaluation of HTX messages after headers parsing
 5822     - BUG/MINOR: mux-h1: Don't stop anymore input processing when the max is reached
 5823     - BUG/MINOR: mux-h1: Be sure to update the count before adding EOM after trailers
 5824     - BUG/MEDIUM: cache: Properly copy headers splitted on several shctx blocks
 5825     - BUG/MEDIUM: cache: Don't cache objects if the size of headers is too big
 5826     - BUG/MINOR: mux-h1: Fix a possible null pointer dereference in h1_subscribe()
 5827     - MEDIUM: fd: remove the FD_EV_POLLED status bit
 5828     - MEDIUM: fd: simplify the fd_*_{recv,send} functions using BTS/BTR
 5829     - MINOR: fd: make updt_fd_polling() a normal function
 5830     - CONTRIB: debug: add new program "poll" to test poll() events
 5831     - BUG/MINOR: checks: stop polling for write when we have nothing left to send
 5832     - BUG/MINOR: checks: start sending the request right after connect()
 5833     - BUG/MINOR: checks: make __event_chk_srv_r() report success before closing
 5834     - BUG/MINOR: checks: do not uselessly poll for reads before the connection is up
 5835     - BUG/MINOR: mux-h1: Fix a UAF in cfg_h1_headers_case_adjust_postparser()
 5836     - BUILD: CI: add basic CentOS 6 cirrus build
 5837     - MINOR: contrib/prometheus-exporter: Report DRAIN/MAINT/NOLB status for servers
 5838     - BUG/MINOR: lb/leastconn: ignore the server weights for empty servers
 5839     - BUG/MAJOR: ssl: ssl_sock was not fully initialized.
 5840     - MEDIUM: fd: mark the FD as ready when it's inserted
 5841     - MINOR: fd: add two new calls fd_cond_{recv,send}()
 5842     - MEDIUM: connection: enable reading only once the connection is confirmed
 5843     - MINOR: fd: add two flags ERR and SHUT to describe FD states
 5844     - MEDIUM: fd: do not use the FD_POLL_* flags in the pollers anymore
 5845     - BUG/MEDIUM: connection: don't keep more idle connections than ever needed
 5846     - MINOR: stats: report the number of idle connections for each server
 5847     - BUILD: CI: skip reg-tests/connection/proxy_protocol_random_fail.vtc on CentOS 6
 5848     - BUILD/MINOR: auth: enabling for osx
 5849     - BUG/MINOR: listener: Fix a possible null pointer dereference
 5850     - BUG/MINOR: ssl: always check for ssl connection before getting its XPRT context
 5851     - MINOR: stats: Add JSON export from the stats page
 5852     - BUG/MINOR: filters: Properly set the HTTP status code on analysis error
 5853     - MINOR: sample: Add UUID-fetch
 5854     - CLEANUP: mux-h2: Remove unused flag H2_SF_DATA_CHNK
 5855     - BUG/MINOR: acl: Fix memory leaks when an ACL expression is parsed
 5856     - BUG/MINOR: backend: Fix a possible null pointer dereference
 5857     - BUG/MINOR: Missing stat_field_names (since f21d17bb)
 5858     - BUG/MEDIUM: stick-table: Properly handle "show table" with a data type argument
 5859     - BUILD: CI: temporarily disable ASAN
 5860     - MINOR: htx: Add a flag on HTX message to report processing errors
 5861     - MINOR: mux-h1: Report a processing error during output processing
 5862     - MINOR: http-ana: Handle HTX errors first during message analysis
 5863     - MINOR: http-ana: Remove err_state field from http_msg
 5864     - MINOR: config: Support per-proxy and per-server deinit functions callbacks
 5865     - MINOR: config: Support per-proxy and per-server post-check functions callbacks
 5866     - MINOR: http_fetch: Add sample fetches to get auth method/user/pass
 5867     - MINOR: istbuf: Add the function b_isteqi()
 5868     - MINOR: log: Provide a function to emit a log for an application
 5869     - MINOR: http: Add function to parse value of the header Status
 5870     - MEDIUM: mux-h1/h1-htx: move HTX convertion of H1 messages in dedicated file
 5871     - MINOR: h1-htx: Use the same function to copy message payload in all cases
 5872     - MINOR: muxes/htx: Ignore pseudo header during message formatting
 5873     - MINOR: fcgi: Add code related to FCGI protocol
 5874     - MEDIUM: fcgi-app: Add FCGI application and filter
 5875     - MEDIUM: mux-fcgi: Add the FCGI multiplexer
 5876     - MINOR: doc: Add documentation about the FastCGI support
 5877     - BUG/MINOR: build: Fix compilation of mux_fcgi.c when compiled without SSL
 5878     - BUILD: CI: install golang-1.13 when building BoringSSL
 5879     - BUG/MINOR: mux-h2: Be sure to have a connection to unsubcribe
 5880     - BUG/MINOR: mux-fcgi: Be sure to have a connection to unsubcribe
 5881     - CLEANUP: fcgi-app: Remove useless test on fcgi_conf pointer
 5882     - BUG/MINOR: mux-fcgi: Don't compare the filter name in its parsing callback
 5883     - BUG/MAJOR: mux-h2: Handle HEADERS frames received after a RST_STREAM frame
 5884     - BUG/MEDIUM: check/threads: make external checks run exclusively on thread 1
 5885     - MEDIUM: list: Separate "locked" list from regular list.
 5886     - MINOR: mt_lists: Add new macroes.
 5887     - MEDIUM: servers: Use LIST_DEL_INIT() instead of LIST_DEL().
 5888     - MINOR: mt_lists: Do nothing in MT_LIST_ADD/MT_LIST_ADDQ if already in list.
 5889     - MINOR: mt_lists: Give MT_LIST_ADD, MT_LIST_ADDQ and MT_LIST_DEL a return value.
 5890     - MEDIUM: tasklets: Make the tasklet list a struct mt_list.
 5891     - TESTS: Add a stress-test for mt_lists.
 5892     - BUILD: travis-ci: add PCRE2, SLZ build
 5893     - BUG/MINOR: build: fix event ports (Solaris)
 5894     - BUG/MEDIUM: namespace: fix fd leak in master-worker mode
 5895     - OPTIM: listeners: use tasklets for the multi-queue rings
 5896     - BUILD: makefile: work around yet another GCC fantasy (-Wstring-plus-int)
 5897     - BUG/MINOR: stream-int: Process connection/CS errors first in si_cs_send()
 5898     - BUG/MEDIUM: stream-int: Process connection/CS errors during synchronous sends
 5899     - BUG/MEDIUM: checks: make sure the connection is ready before trying to recv
 5900     - CLEANUP: task: remove impossible test
 5901     - CLEANUP: task: cache the task_per_thread pointer
 5902     - MINOR: task: split the tasklet vs task code in process_runnable_tasks()
 5903     - MINOR: task: introduce a thread-local "sched" variable for local scheduler stuff
 5904     - CLEANUP: mux-fcgi: Remove the unused function fcgi_strm_id()
 5905     - BUG/MINOR: mux-fcgi: Use a literal string as format in app_log()
 5906     - BUG/MEDIUM: tasklets: Make sure we're waking the target thread if it sleeps.
 5907     - MINOR: h2/trace: indicate 'F' or 'B' to locate the side of an h2c in traces
 5908     - MINOR: h2/trace: report the frame type when known
 5909     - BUG/MINOR: mux-h2: do not wake up blocked streams before the mux is ready
 5910     - BUG/MEDIUM: namespace: close open namespaces during soft shutdown
 5911     - MINOR: time: add timeofday_as_iso_us() to return instant time as ISO
 5912     - MINOR: sink: finally implement support for SINK_FMT_{TIMED,ISO}
 5913     - MINOR: sink: change ring buffer "buf0"'s format to "timed"
 5914     - BUG/MEDIUM: mux-h2: don't reject valid frames on closed streams
 5915     - BUG/MINOR: mux-fcgi: silence a gcc warning about null dereference
 5916     - BUG/MINOR: mux-h2: Fix missing braces because of traces in h2_detach()
 5917     - BUG/MINOR: mux-h2: Use the dummy error when decoding headers for a closed stream
 5918     - BUG/MAJOR: mux_h2: Don't consume more payload than received for skipped frames
 5919     - BUG/MINOR: mux-h1: Do h2 upgrade only on the first request
 5920     - BUG/MEDIUM: spoe: Use a different engine-id per process
 5921     - MINOR: spoe: Improve generation of the engine-id
 5922     - MINOR: spoe: Support the async mode with several threads
 5923     - MINOR: http: Add server name header from HTTP multiplexers
 5924     - CLEANUP: http-ana: Remove the unused function http_send_name_header()
 5925     - MINOR: stats: Add the support of float fields in stats
 5926     - BUG/MINOR: contrib/prometheus-exporter: Return the time averages in seconds
 5927     - DOC: Fix documentation about the cli command to get resolver stats
 5928     - BUG/MEDIUM: fcgi: fix missing list tail in sample fetch registration
 5929     - BUG/MINOR: stats: Add a missing break in a switch statement
 5930     - BUG/MINOR: lua: Properly initialize the buffer's fields for string samples in hlua_lua2(smp|arg)
 5931     - CLEANUP: lua: Get rid of obsolete (size_t *) cast in hlua_lua2(smp|arg)
 5932     - BUG/MEDIUM: lua: Store stick tables into the sample's `t` field
 5933     - CLEANUP: proxy: Remove `proxy_tbl_by_name`
 5934     - BUILD: ssl: fix a warning when built with openssl < 1.0.2
 5935     - DOC: replace utf-8 quotes by ascii ones
 5936     - BUG/MEDIUM: fd: HUP is an error only when write is active
 5937     - BUG/MINOR: action: do-resolve does not yield on requests with body
 5938     - Revert "MINOR: cache: allow caching of OPTIONS request"
 5939 
 5940 2019/07/16 : 2.1-dev1
 5941     - BUG/MEDIUM: h2/htx: Update data length of the HTX when the cookie list is built
 5942     - DOC: this is a development branch again.
 5943     - MEDIUM: Make 'block' directive fatal
 5944     - MEDIUM: Make 'redispatch' directive fatal
 5945     - MEDIUM: Make '(cli|con|srv)timeout' directive fatal
 5946     - MEDIUM: Remove 'option independant-streams'
 5947     - MINOR: sample: Add sha2([<bits>]) converter
 5948     - MEDIUM: server: server-state global file stored in a tree
 5949     - BUG/MINOR: lua/htx: Make txn.req_req_* and txn.res_rep_* HTX aware
 5950     - BUG/MINOR: mux-h1: Add the header connection in lower case in outgoing messages
 5951     - BUG/MEDIUM: compression: Set Vary: Accept-Encoding for compressed responses
 5952     - MINOR: htx: Add the function htx_change_blk_value_len()
 5953     - BUG/MEDIUM: htx: Fully update HTX message when the block value is changed
 5954     - BUG/MEDIUM: mux-h2: Reset padlen when several frames are demux
 5955     - BUG/MEDIUM: mux-h2: Remove the padding length when a DATA frame size is checked
 5956     - BUG/MEDIUM: lb_fwlc: Don't test the server's lb_tree from outside the lock
 5957     - BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition.
 5958     - BUILD: mworker: silence two printf format warnings around getpid()
 5959     - BUILD: makefile: use :space: instead of digits to count commits
 5960     - BUILD: makefile: adjust the sed expression of "make help" for solaris
 5961     - BUILD: makefile: do not rely on shell substitutions to determine git version
 5962     - BUG/MINOR: mworker-prog: Fix segmentation fault during cfgparse
 5963     - BUG/MINOR: spoe: Fix memory leak if failing to allocate memory
 5964     - BUG/MEDIUM: mworker: don't call the thread and fdtab deinit
 5965     - BUG/MEDIUM: stream_interface: Don't add SI_FL_ERR the state is < SI_ST_CON.
 5966     - BUG/MEDIUM: connections: Always add the xprt handshake if needed.
 5967     - BUG/MEDIUM: ssl: Don't do anything in ssl_subscribe if we have no ctx.
 5968     - BUG/MEDIUM: mworker/cli: command pipelining doesn't work anymore
 5969     - BUG/MINOR: htx: Save hdrs_bytes when the HTX start-line is replaced
 5970     - BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted
 5971     - BUG/MINOR: memory: Set objects size for pools in the per-thread cache
 5972     - BUG/MINOR: log: Detect missing sampling ranges in config
 5973     - BUG/MEDIUM: proto_htx: Don't add EOM on 1xx informational messages
 5974     - BUG/MEDIUM: mux-h1: Use buf_room_for_htx_data() to detect too large messages
 5975     - BUG/MINOR: mux-h1: Make format errors during output formatting fatal
 5976     - BUG/MEDIUM: ssl: Don't attempt to set alpn if we're not using SSL.
 5977     - BUG/MEDIUM: mux-h1: Always release H1C if a shutdown for writes was reported
 5978     - BUG/MINOR: mworker/cli: don't output a \n before the response
 5979     - BUG/MEDIUM: checks: unblock signals in external checks
 5980     - BUG/MINOR: mux-h1: Skip trailers for non-chunked outgoing messages
 5981     - BUG/MINOR: mux-h1: Don't return the empty chunk on HEAD responses
 5982     - BUG/MEDIUM: connections: Always call shutdown, with no linger.
 5983     - BUG/MEDIUM: checks: Make sure the tasklet won't run if the connection is closed.
 5984     - BUG/MINOR: contrib/prometheus-exporter: Don't use channel_htx_recv_max()
 5985     - BUG/MINOR: hlua: Don't use channel_htx_recv_max()
 5986     - BUG/MEDIUM: channel/htx: Use the total HTX size in channel_htx_recv_limit()
 5987     - BUG/MINOR: hlua/htx: Respect the reserve when HTX data are sent
 5988     - BUG/MINOR: contrib/prometheus-exporter: Respect the reserve when data are sent
 5989     - BUG/MEDIUM: connections: Make sure we're unsubscribe before upgrading the mux.
 5990     - BUG/MEDIUM: servers: Authorize tfo in default-server.
 5991     - BUG/MEDIUM: sessions: Don't keep an extra idle connection in sessions.
 5992     - MINOR: server: Add "no-tfo" option.
 5993     - BUG/MINOR: contrib/prometheus-exporter: Don't try to add empty data blocks
 5994     - MINOR: action: Add the return code ACT_RET_DONE for actions
 5995     - BUG/MEDIUM: http/applet: Finish request processing when a service is registered
 5996     - BUG/MEDIUM: lb_fas: Don't test the server's lb_tree from outside the lock
 5997     - BUG/MEDIUM: mux-h1: Handle TUNNEL state when outgoing messages are formatted
 5998     - BUG/MINOR: mux-h1: Don't process input or ouput if an error occurred
 5999     - MINOR: stream-int: Factorize processing done after sending data in si_cs_send()
 6000     - BUG/MEDIUM: stream-int: Don't rely on CF_WRITE_PARTIAL to unblock opposite si
 6001     - DOC: contrib: spoa_server Add some hints for building spoa_server
 6002     - DOC: Fix typo in intro.txt
 6003     - BUG/MEDIUM: servers: Don't forget to set srv_cs to NULL if we can't reuse it.
 6004     - BUG/MINOR: ssl: revert empty handshake detection in OpenSSL <= 1.0.2
 6005     - MINOR: pools: release the pool's lock during the malloc/free calls
 6006     - MINOR: pools: always pre-initialize allocated memory outside of the lock
 6007     - MINOR: pools: make the thread harmless during the mmap/munmap syscalls
 6008     - BUG/MEDIUM: fd/threads: fix excessive CPU usage on multi-thread accept
 6009     - BUG/MINOR: server: Be really able to keep "pool-max-conn" idle connections
 6010     - BUG/MEDIUM: checks: Don't attempt to read if we destroyed the connection.
 6011     - BUG/MEDIUM: da: cast the chunk to string.
 6012     - DOC: Fix typos and grammer in configuration.txt
 6013     - CLEANUP: proto_tcp: Remove useless header inclusions.
 6014     - BUG/MEDIUM: servers: Fix a race condition with idle connections.
 6015     - MINOR: task: introduce work lists
 6016     - BUG/MAJOR: listener: fix thread safety in resume_listener()
 6017     - BUG/MEDIUM: mux-h1: Don't release h1 connection if there is still data to send
 6018     - BUG/MINOR: mux-h1: Correctly report Ti timer when HTX and keepalives are used
 6019     - BUG/MEDIUM: streams: Don't give up if we couldn't send the request.
 6020     - BUG/MEDIUM: streams: Don't redispatch with L7 retries if redispatch isn't set.
 6021     - BUG/MINOR: mux-pt: do not pretend there's more data after a read0
 6022     - BUG/MEDIUM: tcp-check: unbreak multiple connect rules again
 6023     - MEDIUM: mworker-prog: Add user/group options to program section
 6024     - REGTESTS: checks: tcp-check connect to multiple ports
 6025     - BUG/MEDIUM: threads: cpu-map designating a single thread/process are ignored
 6026 
 6027 2019/06/16 : 2.1-dev0
 6028     - exact copy of 2.0.0
 6029 
 6030 2019/06/16 : 2.0.0
 6031     - MINOR: fd: Don't use atomic operations when it's not needed.
 6032     - DOC: mworker-prog: documentation for the program section
 6033     - MINOR: http: add a new "http-request replace-uri" action
 6034     - BUG/MINOR: 51d/htx: The _51d_fetch method, and the methods it calls are now HTX aware.
 6035     - MINOR: 51d: Added dummy libraries for the 51Degrees module for testing.
 6036     - MINOR: mworker: change formatting in uptime field of "show proc"
 6037     - MINOR: mworker: add the HAProxy version in "show proc"
 6038     - MINOR: doc: Remove -Ds option in man page
 6039     - MINOR: doc: add master-worker in the man page
 6040     - MINOR: doc: mention HAPROXY_LOCALPEER in the man
 6041     - BUILD: Silence gcc warning about unused return value
 6042     - CLEANUP: 51d: move the 51d dummy lib to contrib/51d/src to match the real lib
 6043     - BUILD: travis-ci: add 51Degree device detection, update openssl to 1.1.1c
 6044     - MINOR: doc: update the manpage and usage message about -S
 6045     - BUILD/MINOR: 51d: Updated build registration output to indicate thatif the library is a dummy one or not.
 6046     - BUG/MEDIUM: h1: Don't wait for handshake if we had an error.
 6047     - BUG/MEDIUM: h1: Wait for the connection if the handshake didn't complete.
 6048     - BUG/MINOR: task: prevent schedulable tasks from starving under high I/O activity
 6049     - BUG/MINOR: fl_trace/htx: Be sure to always forward trailers and EOM
 6050     - BUG/MINOR: channel/htx: Call channel_htx_full() from channel_full()
 6051     - BUG/MINOR: http: Use the global value to limit the number of parsed headers
 6052     - BUG/MINOR: htx: Detect when tail_addr meet end_addr to maximize free rooms
 6053     - BUG/MEDIUM: htx: Don't change position of the first block during HTX analysis
 6054     - CLEANUP: channel: Remove channel_htx_fwd_payload() and channel_htx_fwd_all()
 6055     - BUG/MEDIUM: proto_htx: Introduce the state ENDING during forwarding
 6056     - MINOR: htx: Add 3 flags on the start-line to deal with the request schemes
 6057     - MINOR: h2: Set flags about the request's scheme on the start-line
 6058     - MINOR: mux-h1: Set flags about the request's scheme on the start-line
 6059     - MINOR: mux-h2: Forward clients scheme to servers checking start-line flags
 6060     - MEDIUM: server: server-state only rely on server name
 6061     - CLEANUP: connection: rename the wait_event.task field to .tasklet
 6062     - CLEANUP: tasks: rename task_remove_from_tasklet_list() to tasklet_remove_*
 6063     - BUG/MEDIUM: connections: Don't call shutdown() if we want to disable linger.
 6064     - DOC: add some environment variables in section 2.3
 6065     - BUILD: makefile: clarify the "help" output and list options
 6066     - BUG/MINOR: mux-h1: Wake busy mux for I/O when message is fully sent
 6067     - BUG: tasks: fix bug introduced by latest scheduler cleanup
 6068     - BUG/MEDIUM: mux-h2: fix early close with option abortonclose
 6069     - BUG/MEDIUM: connections: Don't use ALPN to pick mux when in mode TCP.
 6070     - BUG/MEDIUM: connections: Don't try to send early data if we have no mux.
 6071     - BUG/MEDIUM: mux-h2: properly account for the appended data in HTX
 6072     - BUILD: makefile: further clarify the "help" output and list targets
 6073     - BUILD: makefile: rename "linux2628" to "linux-glibc" and remove older targets
 6074     - BUILD: travis-ci: switch to linux-glibc instead of linux2628
 6075     - DOC: update few references to the linux* targets and change them to linux-glibc
 6076     - BUILD: makefile: detect and reject recently removed linux targets
 6077     - BUILD: makefile: enable linux namespaces by default on linux
 6078     - BUILD: makefile: enable TFO on linux platforms
 6079     - BUILD: makefile: enable getaddrinfo on the linux-glibc target
 6080     - DOC: small updates to the CONTRIBUTING file
 6081     - BUG/MEDIUM: ssl: Make sure we initiate the handshake after using early data.
 6082     - CLEANUP: removed obsolete examples an move a few to better places
 6083     - DOC: Fix typos in CONTRIBUTING
 6084     - DOC: update the outdated ROADMAP file
 6085     - DOC: create a BRANCHES file to explain the life cycle
 6086     - DOC: mention in INSTALL haproxy 2.0 is a long-term supported stable version
 6087     - BUILD: travis-ci: TFO and GETADDRINFO are now enabled by default
 6088     - BUILD: makefile: make the obsolete target detection compatible with make-3.80
 6089     - BUILD: tools: work around an internal compiler bug in gcc-3.4
 6090     - BUILD: pattern: work around an internal compiler bug in gcc-3.4
 6091     - BUILD: makefile: enable USE_RT on Solaris
 6092     - BUILD: makefile: do not use echo -n
 6093     - DOC: mention a few common build errors in the INSTALL file
 6094 
 6095 2019/06/11 : 2.0-dev7
 6096     - BUG/MEDIUM: mux-h2: make sure the connection timeout is always set
 6097     - MINOR: tools: add new bitmap manipulation functions
 6098     - MINOR: logs: use the new bitmap functions instead of fd_sets for encoding maps
 6099     - MINOR: chunks: Make sure trash_size is only set once.
 6100     - Revert "MINOR: chunks: Make sure trash_size is only set once."
 6101     - MINOR: threads: serialize threads initialization
 6102     - MINOR peers: data structure simplifications for server names dictionary cache.
 6103     - DOC: peers: Update for dictionary cache entries for peers protocol.
 6104     - MINOR: dict: Store the length of the dictionary entries.
 6105     - MINOR: peers: A bit of optimization when encoding cached server names.
 6106     - MINOR: peers: Optimization for dictionary cache lookup.
 6107     - MEDIUM: tools: improve time format error detection
 6108     - BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early.
 6109     - BUG/MEDIUM: stream_interface: Make sure we call si_cs_process() if CS_FL_EOI.
 6110     - MINOR: threads: avoid clearing harmless twice in thread_release()
 6111     - MEDIUM: threads: add thread_sync_release() to synchronize steps
 6112     - BUG/MEDIUM: init/threads: prevent initialized threads from starting before others
 6113     - OPTIM/MINOR: init/threads: only call protocol_enable_all() on first thread
 6114     - BUG/MINOR: dict: race condition fix when inserting dictionary entries.
 6115     - MEDIUM: init/threads: don't use spinlocks during the init phase
 6116     - BUG/MINOR: cache/htx: Fix the counting of data already sent by the cache applet
 6117     - BUG/MEDIUM: compression/htx: Fix the adding of the last data block
 6118     - MINOR: flt_trace: Don't scrash the original offset during the random forwarding
 6119     - MAJOR: htx: Rework how free rooms are tracked in an HTX message
 6120     - MINOR: htx: Add the function htx_move_blk_before()
 6121     - Revert "BUG/MEDIUM: H1: When upgrading, make sure we don't free the buffer too early."
 6122     - BUG/MINOR: http-rules: mention "deny_status" for "deny" in the error message
 6123     - MINOR: http: turn default error files to HTTP/1.1
 6124     - BUG/MEDIUM: h1: Don't try to subscribe if we had a connection error.
 6125     - BUG/MEDIUM: h1: Don't consider we're connected if the handshake isn't done.
 6126     - MINOR: contrib/spoa_server: Upgrade SPOP to 2.0
 6127     - BUG/MEDIUM: contrib/spoa_server: Set FIN flag on agent frames
 6128     - MINOR: contrib/spoa_server: Add random IP score
 6129     - DOC/MINOR: contrib/spoa_server: Fix typo in README
 6130 
 6131 2019/06/07 : 2.0-dev6
 6132     - BUG/MEDIUM: connection: fix multiple handshake polling issues
 6133     - MINOR: connection: also stop receiving after a SOCKS4 response
 6134     - MINOR: mux-h1: don't try to recv() before the connection is ready
 6135     - BUG/MEDIUM: mux-h1: only check input data for the current stream, not next one
 6136     - MEDIUM: mux-h1: don't use CS_FL_REOS anymore
 6137     - CLEANUP: connection: remove the now unused CS_FL_REOS flag
 6138     - CONTRIB: debug: add 4 missing connection/conn_stream flags
 6139     - MEDIUM: stream: make a full process_stream() loop when completing I/O on exit
 6140     - MINOR: server: increase the default pool-purge-delay to 5 seconds
 6141     - BUILD: tools: do not use the weak attribute for trace() on obsolete linkers
 6142     - BUG/MEDIUM: vars: make sure the scope is always valid when accessing vars
 6143     - BUG/MEDIUM: vars: make the tcp/http unset-var() action support conditions
 6144     - BUILD: task: fix a build warning when threads are disabled
 6145     - CLEANUP: peers: Remove tabs characters.
 6146     - CLEANUP: peers: Replace hard-coded values by macros.
 6147     - BUG/MINOR: peers: Wrong stick-table update message building.
 6148     - MINOR: dict: Add dictionary new data structure.
 6149     - MINOR: peers: Add a LRU cache implementation for dictionaries.
 6150     - MINOR: stick-table: Add "server_name" new data type.
 6151     - MINOR: cfgparse: Space allocation for "server_name" stick-table data type.
 6152     - MINOR: proxy: Add a "server by name" tree to proxy.
 6153     - MINOR: server: Add a dictionary for server names.
 6154     - MINOR: stream: Stickiness server lookup by name.
 6155     - MINOR: peers: Make peers protocol support new "server_name" data type.
 6156     - MINOR: stick-table: Make the CLI stick-table handler support dictionary entry data type.
 6157     - REGTEST: Add a basic server by name stickiness reg test.
 6158     - MINOR: peers: Add dictionary cache information to "show peers" CLI command.
 6159     - MINOR: peers: Replace hard-coded for peer protocol 64-bits value encoding by macros.
 6160     - MINOR: peers: Replace hard-coded values for peer protocol messaging by macros.
 6161     - CLEANUP: ssl: remove unneeded defined(OPENSSL_IS_BORINGSSL)
 6162     - BUILD: travis-ci improvements
 6163     - MINOR: SSL: add client/server random sample fetches
 6164     - BUG/MINOR: channel/htx: Don't alter channel during forward for empty HTX message
 6165     - BUG/MINOR: contrib/prometheus-exporter: Add HTX data block in one time
 6166     - BUG/MINOR: mux-h1: errflag must be set on H1S and not H1M during output processing
 6167     - MEDIUM: mux-h1: refactor output processing
 6168     - MINOR: mux-h1: Add the flag HAVE_O_CONN on h1s
 6169     - MINOR: mux-h1: Add h1_eval_htx_hdrs_size() to estimate size of the HTX headers
 6170     - MINOR: mux-h1: Don't count the EOM in the estimated size of headers
 6171     - MEDIUM: cache/htx: Always store info about HTX blocks in the cache
 6172     - MEDIUM: htx: Add the parsing of trailers of chunked messages
 6173     - MINOR: htx: Don't use end-of-data blocks anymore
 6174     - BUG/MINOR: mux-h1: Don't send more data than expected
 6175     - BUG/MINOR: flt_trace/htx: Only apply the random forwarding on the message body.
 6176     - BUG/MINOR: peers: Wrong "server_name" decoding.
 6177     - BUG/MEDIUM: servers: Don't attempt to destroy idle connections if disabled.
 6178     - MEDIUM: checks: Make sure we unsubscribe before calling cs_destroy().
 6179     - MEDIUM: connections: Wake the upper layer even if sending/receiving is disabled.
 6180     - MEDIUM: ssl: Handle subscribe by itself.
 6181     - MINOR: ssl: Make ssl_sock_handshake() static.
 6182     - MINOR: connections: Add a new xprt method, remove_xprt.
 6183     - MINOR: connections: Add a new xprt method, add_xprt().
 6184     - MEDIUM: connections: Introduce a handshake pseudo-XPRT.
 6185     - MEDIUM: connections: Remove CONN_FL_SOCK*
 6186     - BUG/MEDIUM: ssl: Don't forget to initialize ctx->send_recv and ctx->recv_wait.
 6187     - BUG/MINOR: peers: Wrong server name parsing.
 6188     - MINOR: server: really increase the pool-purge-delay default to 5 seconds
 6189     - BUG/MINOR: stream: don't emit a send-name-header in conn error or disconnect states
 6190     - MINOR: stream-int: use bit fields to match multiple stream-int states at once
 6191     - MEDIUM: stream-int: remove dangerous interval checks for stream-int states
 6192     - MEDIUM: stream-int: introduce a new state SI_ST_RDY
 6193     - MAJOR: stream-int: switch from SI_ST_CON to SI_ST_RDY on I/O
 6194     - MEDIUM: stream-int: make idle-conns switch to ST_RDY
 6195     - MEDIUM: stream: re-arrange the connection setup status reporting
 6196     - MINOR: stream-int: split si_update() into si_update_rx() and si_update_tx()
 6197     - MINOR: stream-int: make si_sync_send() from the send code of si_update_both()
 6198     - MEDIUM: stream: rearrange the events to remove the loop
 6199     - MEDIUM: stream: only loop on flags relevant to the analysers
 6200     - MEDIUM: stream: don't abusively loop back on changes on CF_SHUT*_NOW
 6201     - BUILD: stream-int: avoid a build warning in dev mode in si_state_bit()
 6202     - BUILD: peers: fix a build warning about an incorrect intiialization
 6203     - BUG/MINOR: time: make sure only one thread sets global_now at boot
 6204     - BUG/MEDIUM: tcp: Make sure we keep the polling consistent in tcp_probe_connect.
 6205 
 6206 2019/06/02 : 2.0-dev5
 6207     - BUILD: watchdog: use si_value.sival_int, not si_int for the timer's value
 6208     - BUILD: signals: FreeBSD has SI_LWP instead of SI_TKILL
 6209     - BUILD: watchdog: condition it to USE_RT
 6210     - MINOR: raw_sock: report global traffic statistics
 6211     - MINOR: stats: report the global output bit rate in human readable form
 6212     - BUG/MINOR: proto-htx: Try to keep connections alive on redirect
 6213     - BUG/MEDIUM: spoe: Don't use the SPOE applet after releasing it
 6214     - BUG/MINOR: lua: Set right direction and flags on new HTTP objects
 6215     - BUG/MINOR: mux-h2: Count EOM in bytes sent when a HEADERS frame is formatted
 6216     - BUG/MINOR: mux-h1: Report EOI instead EOS on parsing error or H2 upgrade
 6217     - BUG/MEDIUM: proto-htx: Not forward too much data when 1xx reponses are handled
 6218     - BUG/MINOR: htx: Remove a forgotten while loop in htx_defrag()
 6219     - DOC: fix typos
 6220     - BUG/MINOR: ssl_sock: Fix memory leak when disabling compression
 6221     - OPTIM: freq-ctr: don't take the date lock for most updates
 6222     - MEDIUM: mux-h2: avoid doing expensive buffer realigns when not absolutely needed
 6223     - CLEANUP: debug: remove the TRACE() macro
 6224     - MINOR: buffer: introduce b_make() to make a buffer from its parameters
 6225     - MINOR: buffer: add a new buffer ring API to manipulate rings of buffers
 6226     - MEDIUM: mux-h2: replace all occurrences of mbuf with a buffer ring
 6227     - MEDIUM: mux-h2: make the conditions to send based on mbuf, not just its tail
 6228     - MINOR: mux-h2: introduce h2_release_mbuf() to release all buffers in the mbuf ring
 6229     - MEDIUM: mux-h2: make the send() function iterate over all mux buffers
 6230     - CLEANUP: mux-h2: consistently use a local variable for the mbuf
 6231     - MINOR: mux-h2: report the mbuf's head and tail in "show fd"
 6232     - MAJOR: mux-h2: switch to next mux buffer on buffer full condition.
 6233     - BUILD: connections: shut up gcc about impossible out-of-bounds warning
 6234     - BUILD: ssl: fix latest LibreSSL reg-test error
 6235     - MINOR: cli/activity: remove "fd_del" and "fd_skip" from show activity
 6236     - MINOR: cli/activity: add 3 general purpose counters in development mode
 6237     - BUG/MAJOR: lb/threads: make sure the avoided server is not full on second pass
 6238     - BUG/MEDIUM: queue: fix the tree walk in pendconn_redistribute.
 6239     - BUG/MEDIUM: threads: fix double-word CAS on non-optimized 32-bit platforms
 6240     - MEDIUM: config: now alert when two servers have the same name
 6241     - MINOR: htx: Remove the macro IS_HTX_SMP() and always use IS_HTX_STRM() instead
 6242     - MINOR: htx: Move the macro IS_HTX_STRM() in proto/stream.h
 6243     - MINOR: htx: Store the head position instead of the wrap one
 6244     - MINOR: htx: Store start-line block's position instead of address of its payload
 6245     - MINOR: htx: Add functions to get the first block of an HTX message
 6246     - MINOR: mux-h2/htx: Get the start-line from the head when HEADERS frame is built
 6247     - MINOR: htx: Replace the function http_find_stline() by http_get_stline()
 6248     - CLEANUP: htx: Remove unused function htx_get_stline()
 6249     - MINOR: http/htx: Use sl_pos directly to replace the start-line
 6250     - MEDIUM: http/htx: Perform analysis relatively to the first block
 6251     - MINOR: channel/htx: Call channel_htx_recv_max() from channel_recv_max()
 6252     - MINOR: htx: Add function htx_get_max_blksz()
 6253     - BUG/MINOR: htx: Change htx_xfer_blk() to also count metadata
 6254     - MEDIUM: mux-h1: Use the count value received from the SI in h1_rcv_buf()
 6255     - MINOR: mux-h2: Use the count value received from the SI in h2_rcv_buf()
 6256     - MINOR: stream-int: Don't use the flag CO_RFL_KEEP_RSV anymore in si_cs_recv()
 6257     - MINOR: connection: Remove the unused flag CO_RFL_KEEP_RSV
 6258     - MINOR: mux-h2/htx: Support zero-copy when possible in h2_rcv_buf()
 6259     - MINOR: htx: Add a field to set the memory used by headers in the HTX start-line
 6260     - MINOR: h2/htx: Set hdrs_bytes on the SL when an HTX message is produced
 6261     - MINOR: mux-h1: Set hdrs_bytes on the SL when an HTX message is produced
 6262     - MINOR: htx: Be sure to xfer all headers in one time in htx_xfer_blks()
 6263     - MEDIUM: htx: 1xx messages are now part of the final reponses
 6264     - MINOR: channel/htx: Add function to forward headers of an HTX message
 6265     - MINOR: filters/htx: Use channel_htx_fwd_headers() after headers filtering
 6266     - MINOR: proto-htx: Use channel_htx_fwd_headers() to forward 1xx responses
 6267     - MEDIUM: htx: Store the first block position instead of the start-line one
 6268     - MINOR: stats/htx: don't use the first block position but the head one
 6269     - MINOR: channel/htx: Add functions to forward a part or all HTX payload
 6270     - MINOR: proto-htx: Use channel_htx_fwd_all() when unfiltered body are forwarded
 6271     - MEDIUM: filters/htx: Filter body relatively to the first block
 6272     - MINOR: htx: Optimize htx_drain() when all data are drained
 6273     - MINOR: htx: don't rely on htx_find_blk() anymore in the function htx_truncate()
 6274     - MINOR: htx: remove the unused function htx_find_blk()
 6275     - MINOR: htx: Remove support of pseudo headers because it is unused
 6276     - BUG/MEDIUM: http: fix "http-request reject" when not final
 6277     - MINOR: ssl: Make sure the underlying xprt's init method doesn't fail.
 6278     - MINOR: ssl: Don't forget to call the close method of the underlying xprt.
 6279     - MINOR: htx: rename htx_append_blk_value() to htx_add_data_atonce()
 6280     - MINOR: htx: make htx_add_data() return the transmitted byte count
 6281     - MEDIUM: htx: make htx_add_data() never defragment the buffer
 6282     - MINOR: activity: write totals on the "show activity" output
 6283     - MINOR: activity: report totals and average separately
 6284     - MEDIUM: poller: separate the wait time from the wake events
 6285     - MINOR: activity: report the number of failed pool/buffer allocations
 6286     - MEDIUM: buffers: relax the buffer lock a little bit
 6287     - MINOR: task: turn the WQ lock to an RW_LOCK
 6288     - MEDIUM: task: don't grab the WR lock just to check the WQ
 6289     - BUG/MEDIUM: mux-h1: Don't skip the TCP splicing when there is no more data to read
 6290     - MEDIUM: sessions: Introduce session flags.
 6291     - BUG/MEDIUM: h2: Don't forget to set h2s->cs to NULL after having free'd cs.
 6292     - BUG/MEDIUM: mux-h2: fix the conditions to end the h2_send() loop
 6293     - BUG/MEDIUM: mux-h2: don't refrain from offering oneself a used buffer
 6294     - BUG/MEDIUM: connection: Use the session to get the origin address if needed.
 6295     - MEDIUM: tasks: Get rid of active_tasks_mask.
 6296     - MEDIUM: connection: Upstream SOCKS4 proxy support
 6297     - BUILD: contrib/prometheus: fix build breakage caused by move of idle_pct
 6298     - BUG/MINOR: deinit/threads: make hard-stop-after perform a clean exit
 6299 
 6300 2019/05/22 : 2.0-dev4
 6301     - BUILD: enable freebsd builds on cirrus-ci
 6302     - BUG/MINOR: http_fetch: Rely on the smp direction for "cookie()" and "hdr()"
 6303     - MEDIUM: Make 'option forceclose' actually warn
 6304     - MEDIUM: Make 'resolution_pool_size' directive fatal
 6305     - DOC: management: place "show activity" at the right place
 6306     - MINOR: cli/activity: show the dumping thread ID starting at 1
 6307     - MINOR: task: export global_task_mask
 6308     - MINOR: cli/debug: add a thread dump function
 6309     - BUG/MEDIUM: streams: Don't use CF_EOI to decide if the request is complete.
 6310     - BUG/MEDIUM: streams: Try to L7 retry before aborting the connection.
 6311     - BUG/MINOR: debug: make ha_task_dump() always check the task before dumping it
 6312     - BUG/MINOR: debug: make ha_task_dump() actually dump the requested task
 6313     - MINOR: debug: make ha_thread_dump() and ha_task_dump() take a buffer
 6314     - BUG/MINOR: debug: don't check the call date on tasklets
 6315     - MINOR: thread: implement ha_thread_relax()
 6316     - MINOR: task: put barriers after each write to curr_task
 6317     - MINOR: task: always reset curr_task when freeing a task or tasklet
 6318     - MINOR: stream: detach the stream from its own task on stream_free()
 6319     - MEDIUM: debug/threads: implement an advanced thread dump system
 6320     - REGTEST: extend the check duration on tls_health_checks and mark it slow
 6321     - DOC: fix "successful" typo
 6322     - MINOR: init: setenv HAPROXY_CFGFILES
 6323     - MINOR: threads/init: synchronize the threads startup
 6324     - MEDIUM: init/mworker: make the pipe register function a regular initcall
 6325     - CLEANUP: memory: make the fault injection code use the OTHER_LOCK label
 6326     - CLEANUP: threads: remove the now unused START_LOCK label
 6327     - MINOR: init/threads: make the global threads an array of structs
 6328     - MINOR: threads: add each thread's clockid into the global thread_info
 6329     - CLEANUP: stream: remove an obsolete debugging test
 6330     - MINOR: tools: add dump_hex()
 6331     - MINOR: debug: implement ha_panic()
 6332     - MINOR: debug/cli: add some debugging commands for developers
 6333     - MINOR: tools: provide a may_access() function and make dump_hex() use it
 6334     - MINOR: debug: make ha_panic() report threads starting at 1
 6335     - REORG: compat: move some integer limit definitions from standard.h to compat.h
 6336     - REORG: threads: move the struct thread_info from global.h to hathreads.h
 6337     - MINOR: compat: make sure to always define clockid_t
 6338     - MINOR: threads: always place the clockid in the struct thread_info
 6339     - MINOR: threads: add a thread-local thread_info pointer "ti"
 6340     - MINOR: time: move the cpu, mono, and idle time to thread_info
 6341     - MINOR: time: add a function to retrieve another thread's cputime
 6342     - MINOR: debug: report each thread's cpu usage in "show thread"
 6343     - BUILD: threads: only assign the clock_id when supported
 6344     - BUILD: makefile: use USE_OBSOLETE_LINKER for solaris
 6345     - BUILD: makefile: remove -fomit-frame-pointer optimisation (solaris)
 6346     - MAJOR: polling: add event ports support (Solaris)
 6347     - BUG/MEDIUM: streams: Don't switch from SI_ST_CON to SI_ST_DIS on read0.
 6348     - CLEANUP: time: refine the test on _POSIX_TIMERS
 6349     - MINOR: compat: define a new empty type empty_t for non-implemented fields
 6350     - CLEANUP: time: switch clockid_t to empty_t when not available
 6351     - BUG/MINOR: mworker: Fix memory leak of mworker_proc members
 6352     - CLEANUP: objtype: make obj_type() and obj_type_name() take consts
 6353     - MINOR: debug: switch to SIGURG for thread dumps
 6354     - CLEANUP: threads: really move thread_info to hathreads.c
 6355     - MINOR: threads: make threads_{harmless|want_rdv}_mask constant 0 without threads
 6356     - CLEANUP: debug: always report harmless/want_rdv even without threads
 6357     - MINOR: threads: implement ha_tkill() and ha_tkillall()
 6358     - CLEANUP: debug: make use of ha_tkill() and remove ifdefs
 6359     - MINOR: stream: introduce a stream_dump() function and use it in stream_dump_and_crash()
 6360     - MINOR: debug: dump streams when an applet, iocb or stream is known
 6361     - MINOR: threads: add a "stuck" flag to the thread_info struct
 6362     - MINOR: threads: add a timer_t per thread in thread_info
 6363     - MAJOR: watchdog: implement a thread lockup detection mechanism
 6364     - MINOR: stream: remove the cpu time detection from process_stream()
 6365     - MINOR: connection: report the mux names in "haproxy -vv"
 6366     - CLEANUP: mux-h1: use "H1" and not "h1" as the mux's name
 6367     - BUG/MEDIUM: WURFL: segfault in wurfl-get() with missing info.
 6368     - MINOR: WURFL: call header_retireve_callback() in dummy library
 6369     - MINOR: WURFL: fixed Engine load failed error when wurfl-information-list contains wurfl_root_id
 6370     - MINOR: WURFL: shows log messages during module initialization
 6371     - MINOR: WURFL: removes heading wurfl-information-separator from wurfl-get-all() and wurfl-get() results
 6372     - MINOR: WURFL: wurfl_get() and wurfl_get_all() now return an empty string if device detection fails
 6373     - MEDIUM: WURFL: HTX awareness.
 6374     - MINOR: WURFL: module version bump to 2.0
 6375     - MINOR: WURFL: do not emit warnings when not configured
 6376     - CONTRIB: wurfl: address 3 build issues in the wurfl dummy library
 6377     - BUG/MEDIUM: init/threads: provide per-thread alloc/free function callbacks
 6378     - BUILD: travis: add sanitizers to travis-ci builds
 6379     - BUILD: time: remove the test on _POSIX_C_SOURCE
 6380     - CLEANUP: build: rename some build macros to use the USE_* ones
 6381     - CLEANUP: raw_sock: remove support for very old linux splice bug workaround
 6382     - BUG/MEDIUM: dns: make the port numbers unsigned
 6383     - MEDIUM: config: deprecate the antique req* and rsp* commands
 6384 
 6385 2019/05/15 : 2.0-dev3
 6386     - BUG/MINOR: peers: Really close the sessions with no heartbeat.
 6387     - CLEANUP: peers: remove useless annoying tabulations.
 6388     - CLEANUP: peers: replace timeout constants by macros.
 6389     - REGTEST: Enable again reg tests with HEAD HTTP method usage.
 6390     - DOC: The option httplog is no longer valid in a backend.
 6391     - DOC: peers: Peers protocol documentation update.
 6392     - REGTEST: remove unexpected "nbthread" statement from Lua test cases
 6393     - BUILD: Makefile: remove 11-years old workarounds for deprecated options
 6394     - BUILD: remove 10-years old error message for obsolete option USE_TCPSPLICE
 6395     - BUILD: Makefile: remove outdated support for dlmalloc
 6396     - BUILD: Makefile: consider a variable's origin and not its value for the options list
 6397     - BUILD: Makefile: also report disabled options in the BUILD_OPTIONS variable
 6398     - BUILD: Makefile: shorten default settings declaration
 6399     - BUILD: Makefile: clean up the target declarations
 6400     - BUILD: report the whole feature set with their status in haproxy -vv
 6401     - BUILD: pass all "USE_*" variables as -DUSE_* to the compiler
 6402     - REGTEST: script: make the script use the new features list
 6403     - REGTEST: script: remove platform-specific assigments of OPTIONS
 6404     - BUG/MINOR: peers: Missing initializations after peer session shutdown.
 6405     - BUG/MINOR: contrib/prometheus-exporter: Fix applet accordingly to recent changes
 6406     - BUILD/MINOR: listener: Silent a few signedness warnings.
 6407     - BUG/MINOR: mux-h1: Only skip invalid C-L headers on output
 6408     - BUG/MEDIUM: mworker: don't free the wrong child when not found
 6409     - BUG/MEDIUM: checks: Don't bother subscribing if we have a connection error.
 6410     - BUG/MAJOR: checks: segfault during tcpcheck_main
 6411     - BUILD: makefile: work around an old bug in GNU make-3.80
 6412     - BUILD: makefile: work around another bug in make 3.80
 6413     - BUILD: http: properly mark some struct as extern
 6414     - BUILD: chunk: properly declare pool_head_trash as extern
 6415     - BUILD: cache: avoid a build warning with some compilers/linkers
 6416     - MINOR: tools: make memvprintf() never pass a NULL target to vsnprintf()
 6417     - MINOR: tools: add an unsetenv() implementation
 6418     - BUILD: re-implement an initcall variant without using executable sections
 6419     - BUILD: use inttypes.h instead of stdint.h
 6420     - BUILD: connection: fix naming of ip_v field
 6421     - BUILD: makefile: fix build of IPv6 header on aix51
 6422     - BUILD: makefile: add _LINUX_SOURCE_COMPAT to build on AIX-51
 6423     - BUILD: define unsetenv on AIX 5.1
 6424     - BUILD: Makefile: disable shared cache on AIX 5.1
 6425     - MINOR: ssl: Add aes_gcm_dec converter
 6426     - REORG: mworker: move serializing functions to mworker.c
 6427     - REORG: mworker: move signals functions to mworker.c
 6428     - REORG: mworker: move IPC functions to mworker.c
 6429     - REORG: mworker: move signal handlers and related functions
 6430     - REORG: mworker: move mworker_cleanlisteners to mworker.c
 6431     - MINOR: mworker: calloc mworker_proc structures
 6432     - MINOR: mworker: don't use children variable anymore
 6433     - MINOR: cli: export cli_parse_default() definition in cli.h
 6434     - REORG: mworker/cli: move CLI functions to mworker.c
 6435     - MEDIUM: mworker-prog: implement program for master-worker
 6436     - MINOR: mworker/cli: show programs in 'show proc'
 6437     - BUG/MINOR: cli: correctly handle abns in 'show cli sockets'
 6438     - MINOR: cli: start addresses by a prefix in 'show cli sockets'
 6439     - MINOR: cli: export HAPROXY_CLI environment variable
 6440     - BUG/MINOR: htx: Preserve empty HTX messages with an unprocessed parsing error
 6441     - BUG/MINOR: proto_htx: Reset to_forward value when a message is set to DONE
 6442     - REGTEST: http-capture/h00000: Relax a regex matching the log message
 6443     - REGTEST: http-messaging/h00000: Fix the test when the HTX is enabled
 6444     - REGTEST: http-rules/h00003: Use a different client for requests expecting a 301
 6445     - REGTEST: log/b00000: Be sure the client always hits its timeout
 6446     - REGTEST: lua/b00003: Relax the regex matching the log message
 6447     - REGTEST: lua/b00003: Specify the HAProxy pid when the command ss is executed
 6448     - BUG/MEDIUM: peers: fix a case where peer session is not cleanly reset on release.
 6449     - BUG/MEDIUM: h2: Don't attempt to recv from h2_process_demux if we subscribed.
 6450     - BUG/MEDIUM: htx: fix random premature abort of data transfers
 6451     - BUG/MEDIUM: streams: Don't remove the SI_FL_ERR flag in si_update_both().
 6452     - BUG/MEDIUM: streams: Store prev_state before calling si_update_both().
 6453     - BUG/MEDIUM: stream: Don't clear the stream_interface flags in si_update_both.
 6454     - MINOR: initcall: Don't forget to define the __start/stop_init_##stg symbols.
 6455     - MINOR: threads: Implement thread_cpus_enabled() for FreeBSD.
 6456     - BUG/MEDIUM: pattern: assign pattern IDs after checking the config validity
 6457     - MINOR: skip get_gmtime where tm is unused
 6458     - MINOR: ssl: Activate aes_gcm_dec converter for BoringSSL
 6459     - BUG/MEDIUM: streams: Only re-run process_stream if we're in a connected state.
 6460     - BUG/MEDIUM: stream_interface: Don't bother doing chk_rcv/snd if not connected.
 6461     - BUG/MEDIUM: task/threads: address a fairness issue between local and global tasks
 6462     - BUG/MINOR: tasks: make sure the first task to be queued keeps its nice value
 6463     - BUG/MINOR: listener: renice the accept ring processing task
 6464     - MINOR: cli/listener: report the number of accepts on "show activity"
 6465     - MINOR: cli/activity: report the accept queue sizes in "show activity"
 6466     - BUG/MEDIUM: spoe: Queue message only if no SPOE applet is attached to the stream
 6467     - BUG/MEDIUM: spoe: Return an error if nothing is encoded for fragmented messages
 6468     - BUG/MINOR: spoe: Be sure to set tv_request when each message fragment is encoded
 6469     - BUG/MEDIUM: htx: Defrag if blocks position is changed and the payloads wrap
 6470     - BUG/MEDIUM: htx: Don't crush blocks payload when append is done on a data block
 6471     - MEDIUM: htx: Deprecate the option 'http-tunnel' and ignore it in HTX
 6472     - MINOR: proto_htx: Don't adjust transaction mode anymore in HTX analyzers
 6473     - BUG/MEDIUM: htx: Fix the process of HTTP CONNECT with h2 connections
 6474     - MINOR: mux-h1: Simplify handling of 1xx responses
 6475     - MINOR: stats/htx: Don't add "Connection: close" header anymore in stats responses
 6476     - MEDIUM: h1: Add an option to sanitize connection headers during parsing
 6477     - MEDIUM: mux-h1: Simplify the connection mode management by sanitizing headers
 6478     - MINOR: mux-h1: Don't release the conn_stream anymore when h1s is destroyed
 6479     - BUG/MINOR: mux-h1: Handle the flag CS_FL_KILL_CONN during a shutdown read/write
 6480     - MINOR: mux-h2: Add a mux_ops dedicated to the HTX mode
 6481     - MINOR: muxes: Add a flag to specify a multiplexer uses the HTX
 6482     - MINOR: stream: Set a flag when the stream uses the HTX
 6483     - MINOR: http: update the macro IS_HTX_STRM() to check the stream flag SF_HTX
 6484     - MINOR: http_fetch/htx: Use stream flags instead of px mode in smp_prefetch_htx
 6485     - MINOR: filters/htx: Use stream flags instead of px mode to instanciate a filter
 6486     - MINOR: muxes: Rely on conn_is_back() during init to handle front/back conn
 6487     - MEDIUM: muxes: Add an optional input buffer during mux initialization
 6488     - MINOR: muxes: Pass the context of the mux to destroy() instead of the connection
 6489     - MEDIUM: muxes: Be prepared to don't own connection during the release
 6490     - MEDIUM: connection: Add conn_upgrade_mux_fe() to handle mux upgrades
 6491     - MEDIUM: htx: Allow the option http-use-htx to be used on TCP proxies too
 6492     - MAJOR: proxy/htx: Handle mux upgrades from TCP to HTTP in HTX mode
 6493     - MAJOR: muxes/htx: Handle inplicit upgrades from h1 to h2
 6494     - MAJOR: htx: Enable the HTX mode by default for all proxies
 6495     - REGTEST: Use HTX by default and add '--no-htx' option to disable it
 6496     - BUG/MEDIUM: muxes: Don't dereference mux context if null in release functions
 6497     - CLEANUP: task: do not export rq_next anymore
 6498     - MEDIUM: tasks: improve fairness between the local and global queues
 6499     - MEDIUM: tasks: only base the nice offset on the run queue depth
 6500     - MINOR: tasks: restore the lower latency scheduling when niced tasks are present
 6501     - BUG/MEDIUM: map: Fix memory leak in the map converter
 6502     - BUG/MINOR: ssl: Fix 48 byte TLS ticket key rotation
 6503     - BUILD: task/thread: fix single-threaded build of task.c
 6504     - BUILD: cli/threads: fix build in single-threaded mode
 6505     - BUG/MEDIUM: muxes: Make sure we unsubcribed when destroying mux ctx.
 6506     - BUG/MEDIUM: h2: Make sure we're not already in the send_list in h2_subscribe().
 6507     - BUG/MEDIUM: h2: Revamp the way send subscriptions works.
 6508     - MINOR: connections: Remove the SUB_CALL_UNSUBSCRIBE flag.
 6509     - BUG/MEDIUM: Threads: Only use the gcc >= 4.7 builtins when using gcc >= 4.7.
 6510     - BUILD: address a few cases of "static <type> inline foo()"
 6511     - BUILD: do not specify "const" on functions returning structs or scalars
 6512     - BUILD: htx: fix a used uninitialized warning on is_cookie2
 6513     - MINOR: peers: Add a new command to the CLI for peers.
 6514     - DOC: update for "show peers" CLI command.
 6515     - BUG/MAJOR: lb/threads: fix insufficient locking on round-robin LB
 6516     - MEDIUM: mworker: store the leaving state of a process
 6517     - MEDIUM: mworker-prog: implements 'option start-on-reload'
 6518     - CLEANUP: mworker: remove the type field in mworker_proc
 6519     - MEDIUM: mworker/cli: export the HAPROXY_MASTER_CLI variable
 6520     - MINOR: cli: don't add a semicolon at the end of HAPROXY_CLI
 6521     - MINOR: mworker: export HAPROXY_MWORKER=1 when running in mworker mode
 6522     - MINOR: init: add a "set-dumpable" global directive to enable core dumps
 6523     - BUG/MINOR: listener/mq: correctly scan all bound threads under low load
 6524     - BUG/MINOR: mworker: mworker_kill should apply on every children
 6525     - BUG/MINOR: mworker: don't exit with an ambiguous value
 6526     - BUG/MINOR: mworker: ensure that we still quits with SIGINT
 6527     - REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled
 6528     - BUG/MINOR: mux-h1: Process input even if the input buffer is empty
 6529     - BUG/MINOR: mux-h1: Don't switch the parser in busy mode if other side has done
 6530     - BUG/MEDIUM: mux-h1: Notify the stream waiting for TCP splicing if ibuf is empty
 6531     - BUG/MEDIUM: mux-h1: Enable TCP splicing to exchange data only
 6532     - MINOR: mux-h1: Handle read0 during TCP splicing
 6533     - BUG/MEDIUM: htx: Don't return the start-line if the HTX message is empty
 6534     - BUG/MAJOR: http_fetch: Get the channel depending on the keyword used
 6535     - BUG/MINOR: http_fetch/htx: Allow permissive sample prefetch for the HTX
 6536     - BUG/MINOR: http_fetch/htx: Use HTX versions if the proxy enables the HTX mode
 6537     - BUG/MEDIUM: tasks: Make sure we set TASK_QUEUED before adding a task to the rq.
 6538     - BUG/MEDIUM: tasks: Make sure we modify global_tasks_mask with the rq_lock.
 6539     - MINOR: tasks: Don't consider we can wake task with tasklet_wakeup().
 6540     - MEDIUM: tasks: No longer use rq.node.leaf_p as a lock.
 6541     - MINOR: tasks: Don't set the TASK_RUNNING flag when adding in the tasklet list.
 6542     - BUG/MEDIUM: applets: Don't use task_in_rq().
 6543     - BUG/MAJOR: task: make sure never to delete a queued task
 6544     - MINOR: task/thread: factor out a wake-up condition
 6545     - CLEANUP: task: remain consistent when using the task's handler
 6546     - MEDIUM: tasks: Merge task_delete() and task_free() into task_destroy().
 6547     - MEDIUM: tasks: Don't account a destroyed task as a runned task.
 6548     - BUG/MINOR: contrib/prometheus-exporter: Fix a typo in the run-queue metric type
 6549     - MINOR: contrib/prometheus-exporter: Remove usless rate metrics
 6550     - MINOR: contrib/prometheus-exporter: Rename some metrics to be more usable
 6551     - MINOR: contrib/prometheus-exporter: Follow best practices about metrics type
 6552     - BUG/MINOR: mworker: disable busy polling in the master process
 6553     - MEDIUM: tasks: Use __ha_barrier_store after modifying global_tasks_mask.
 6554     - MEDIUM: ssl: Give ssl_sock its own context.
 6555     - MEDIUM: connections: Move some fields from struct connection to ssl_sock_ctx.
 6556     - MEDIUM: ssl: provide its own subscribe/unsubscribe function.
 6557     - MEDIUM: connections: Provide a xprt_ctx for each xprt method.
 6558     - MEDIUM: ssl: provide our own BIO.
 6559     - BUILD/medium: ssl: Fix build with OpenSSL < 1.1.0
 6560     - MINOR: peers: adds counters on show peers about tasks calls.
 6561     - MEDIUM: enable travis-ci builds
 6562     - MINOR: fd: Add a counter of used fds.
 6563     - MEDIUM: connections: Add a way to control the number of idling connections.
 6564     - BUG/MEDIUM: maps: only try to parse the default value when it's present
 6565     - BUG/MINOR: acl: properly detect pattern type SMP_T_ADDR
 6566     - REGTEST: Missing REQUIRE_VERSION declarations.
 6567     - MINOR: proto_tcp: tcp-request content: enable set-dst and set-dst-var
 6568     - BUG/MEDIUM: h1: Don't parse chunks CRLF if not enough data are available
 6569     - BUG/MEDIUM: thread/http: Add missing locks in set-map and add-acl HTTP rules
 6570     - BUG/MEDIUM: stream: Don't request a server connection if a shutw was scheduled
 6571     - BUG/MINOR: 51d: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
 6572     - BUG/MINOR: da: Get the request channel to call CHECK_HTTP_MESSAGE_FIRST()
 6573     - MINOR: gcc: Fix a silly gcc warning in connect_server()
 6574     - MINOR: ssl/cli: async fd io-handlers printable on show fd
 6575     - Revert "CLEANUP: wurfl: remove dead, broken and unmaintained code"
 6576     - BUILD: add USE_WURFL to the list of known build options
 6577     - MINOR: wurfl: indicate in haproxy -vv the wurfl version in use
 6578     - BUILD: wurfl: build fix for 1.9/2.0 code base
 6579     - CLEANUP: wurfl: removed deprecated methods
 6580     - DOC: wurfl: added point of contact in MAINTAINERS file
 6581     - MINOR: wurfl: enabled multithreading mode
 6582     - MINOR: contrib: dummy wurfl library
 6583     - MINOR: dns: dns_requester structures are now in a memory pool
 6584     - MINOR: dns: move callback affection in dns_link_resolution()
 6585     - MINOR: obj_type: new object type for struct stream
 6586     - MINOR: action: new '(http-request|tcp-request content) do-resolve' action
 6587     - MINOR: log: Extract some code to send syslog messages.
 6588     - REGTEST: replace LEVEL option by a more human readable one.
 6589     - REGTEST: rename the reg test files.
 6590     - REGTEST: adapt some reg tests after renaming.
 6591     - REGTEST: make the "run-regtests" script search for tests in reg-tests by default
 6592     - BUG/MAJOR: stream: Missing DNS context initializations.
 6593     - BUG/MEDIUM: stream: Fix the way early aborts on the client side are handled
 6594     - BUG/MINOR: spoe: Don't systematically wakeup SPOE stream in the applet handler
 6595     - BUG/MEDIUM: ssl: Return -1 on recv/send if we got EAGAIN.
 6596     - BUG/MAJOR: lb/threads: fix AB/BA locking issue in round-robin LB
 6597     - BUG/MAJOR: muxes: Use the HTX mode to find the best mux for HTTP proxies only
 6598     - BUG/MINOR: htx: Exclude TCP proxies when the HTX mode is handled during startup
 6599     - CLEANUP: task: report calls as unsigned in show sess
 6600     - MINOR: tasks/activity: report the context switch and task wakeup rates
 6601     - MINOR: stream: measure and report a stream's call rate in "show sess"
 6602     - MINOR: applet: measure and report an appctx's call rate in "show sess"
 6603     - BUILD: extend Travis CI config to support more platforms
 6604     - REGTEST: exclude osx and generic targets for 40be_2srv_odd_health_checks
 6605     - REGTEST: relax the IPv6 address format checks in converters_ipmask_concat_strcmp_field_word
 6606     - REGTEST: exclude OSX and generic targets from abns_socket.vtc
 6607     - BUILD: travis: remove the "allow_failures" entry
 6608     - BUG/MINOR: activity: always initialize the profiling variable
 6609     - MINOR: activity: make the profiling status per thread and not global
 6610     - MINOR: activity: enable automatic profiling turn on/off
 6611     - CLEANUP: standard: use proper const to addr_to_str() and port_to_str()
 6612     - BUG/MINOR: proto_http: properly reset the stream's call rate on keep-alive
 6613     - MINOR: connection: make the debugging helper functions safer
 6614     - MINOR: stream/debug: make a stream dump and crash function
 6615     - MEDIUM: appctx/debug: force a crash if an appctx spins over itself forever
 6616     - MEDIUM: stream/debug: force a crash if a stream spins over itself forever
 6617     - MEDIUM: streams: measure processing time and abort when detecting bugs
 6618     - BUILD/MEDIUM: contrib: Dummy DeviceAtlas API.
 6619     - MEDIUM: da: HTX mode support.
 6620     - BUG/MEDIUM: mux-h2: properly deal with too large headers frames
 6621     - BUG/MINOR: http: Call stream_inc_be_http_req_ctr() only one time per request
 6622     - BUG/MEDIUM: spoe: arg len encoded in previous frag frame but len changed
 6623     - MINOR: spoe: Use the sample context to pass frag_ctx info during encoding
 6624     - DOC: contrib/modsecurity: Typos and fix the reject example
 6625     - BUG/MEDIUM: contrib/modsecurity: If host header is NULL, don't try to strdup it
 6626     - MINOR: log: Add "sample" new keyword to "log" lines.
 6627     - MINOR: log: Enable the log sampling and load-balancing feature.
 6628     - DOC: log: Document the sampling and load-balancing logging feature.
 6629     - REGTEST: Add a new reg test for log load-balancing feature.
 6630     - BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
 6631     - REGTEST: Make this reg test be Linux specific.
 6632     - CLEANUP: task: move the task_per_thread definition to task.h
 6633     - MINOR: activity: report context switch counts instead of rates
 6634     - MINOR: threads: Implement HA_ATOMIC_LOAD().
 6635     - BUG/MEDIUM: port_range: Make the ring buffer lock-free.
 6636     - BUG/MEDIUM: listener: Fix how unlimited number of consecutive accepts is handled
 6637     - MINOR: config: Test validity of tune.maxaccept during the config parsing
 6638     - CLEANUP: config: Don't alter listener->maxaccept when nbproc is set to 1
 6639     - BUG/MEDIUM: servers: fix typo "src" instead of "srv"
 6640     - BUG/MEDIUM: ssl: Don't pretend we can retry a recv/send if we got a shutr/w.
 6641     - BUG/MINOR: haproxy: fix rule->file memory leak
 6642     - BUG/MINOR: log: properly free memory on logformat parse error and deinit()
 6643     - BUG/MINOR: checks: free memory allocated for tasklets
 6644     - BUG/MEDIUM: pattern: fix memory leak in regex pattern functions
 6645     - BUG/MEDIUM: channels: Don't forget to reset output in channel_erase().
 6646     - BUG/MEDIUM: connections: Make sure we remove CO_FL_SESS_IDLE on disown.
 6647     - MINOR: threads: flatten the per-thread cpu-map
 6648     - MINOR: init/threads: remove the useless tids[] array
 6649     - MINOR: init/threads: make the threads array global
 6650     - BUG/MEDIUM: ssl: Use the early_data API the right way.
 6651     - BUG/MEDIUM: streams: Don't add CF_WRITE_ERROR if early data were rejected.
 6652     - MEDIUM: streams: Add the ability to retry a request on L7 failure.
 6653     - MEDIUM: streams: Add a way to replay failed 0rtt requests.
 6654     - MEDIUM: streams: Add a new keyword for retry-on, "junk-response"
 6655     - BUG/MINOR: stream: also increment the retry stats counter on L7 retries
 6656     - BUG/MEDIUM: checks: make sure the warmup task takes the server lock
 6657     - BUG/MINOR: logs/threads: properly split the log area upon startup
 6658     - BUILD: extend travis-ci matrix
 6659     - CLEANUP: Remove appsession documentation
 6660     - DOC: Fix typo in keyword matrix
 6661     - BUILD: remove "build_libressl" duplicate declaration
 6662     - BUILD: travis-ci: get back to osx without openssl support
 6663     - BUILD: enable several LibreSSL hacks, including
 6664     - BUILD: temporarily mark LibreSSL builds as allowed to fail
 6665     - BUILD: travis: TMPDIR replacement.
 6666     - BUG/MEDIUM: ssl: Don't attempt to use early data with libressl.
 6667     - MINOR: doc: Document allow-0rtt on the server line.
 6668     - MINOR: doc: Document the interaction of allow-0rtt and retry-on 0rtt-rejected.
 6669     - MEDIUM: proto: Change the prototype of the connect() method.
 6670     - MEDIUM: tcp: add the "tfo" option to support TCP fastopen on the server
 6671     - MINOR: config: Extract the code of "stick-table" line parsing.
 6672     - BUILD/MINOR: stick-table: Compilation fix.
 6673     - MEDIUM: stick-table: Stop handling stick-tables as proxies.
 6674     - MINOR: stick-tables: Add peers process binding computing.
 6675     - MINOR: stick-table: Add prefixes to stick-table names.
 6676     - MINOR: peers: Do not emit global stick-table names.
 6677     - DOC: Update for "table" lines in "peers" section.
 6678     - REGTEST: Add reg tests for "table" lines in "peers" sections.
 6679     - MEDIUM: regex: modify regex_comp() to atomically allocate/free the my_regex struct
 6680     - REGTEST: make the tls_health_checks test much faster
 6681     - REGTEST: make the "table in peers" test require v2.0
 6682     - BUG/MINOR: mux-h2: rely on trailers output not input to turn them to empty data
 6683     - BUG/MEDIUM: h2/htx: always fail on too large trailers
 6684     - MEDIUM: mux-h2: discard contents that are to be sent after a shutdown
 6685     - BUG/MEDIUM: mux-h2/htx: never wait for EOM when processing trailers
 6686     - BUG/MEDIUM: h2/htx: never leave a trailers block alone with no EOM block
 6687     - REGTEST: Flag some slow reg tests.
 6688     - REGTEST: Reg tests file renaming.
 6689     - REGTEST: Wrong renaming for one reg test.
 6690     - REGTEST: Wrong assumption in IP:port logging test.
 6691     - BUG/MINOR: mworker/ssl: close OpenSSL FDs on reload
 6692     - MINOR: systemd: Use the variables from /etc/default/haproxy
 6693     - MINOR: systemd: Make use of master socket in systemd unit
 6694     - MINOR: systemd: support /etc/sysconfig/ for redhat based distrib
 6695     - BUG/MEDIUM: stick-table: fix regression caused by a change in proxy struct
 6696     - BUG/MEDIUM: tasks: fix possible segfault on task_destroy()
 6697     - CLEANUP: task: remove unneeded tests before task_destroy()
 6698     - MINOR: mworker: support a configurable maximum number of reloads
 6699     - BUG/MINOR: mux-h2: fix the condition to close a cs-less h2s on the backend
 6700     - BUG/MEDIUM: spoe: Be sure the sample is found before setting its context
 6701     - BUG/MINOR: mux-h1: Fix the parsing of trailers
 6702     - BUG/MINOR: htx: Never transfer more than expected in htx_xfer_blks()
 6703     - MINOR: htx: Split on DATA blocks only when blocks are moved to an HTX message
 6704     - MINOR: htx: Don't try to append a trailer block with the previous one
 6705     - MINOR: htx: Remove support for unused OOB HTX blocks
 6706     - BUILD: travis-ci bugfixes and improvements
 6707     - BUG/MEDIUM: servers: Don't use the same srv flag for cookie-set and TFO.
 6708     - BUG/MEDIUM: h2: Make sure we set send_list to NULL in h2_detach().
 6709     - BUILD: ssl: fix again a libressl build failure after the openssl FD leak fix
 6710     - CLEANUP: ssl-sock: use HA_OPENSSL_VERSION_NUMBER instead of OPENSSL_VERSION_NUMBER
 6711     - BUILD: ssl: make libressl use its own version numbers
 6712     - CLEANUP: ssl: remove 57 occurrences of useless tests on LIBRESSL_VERSION_NUMBER
 6713     - MINOR: ssl: enable aes_gcm_dec on LibreSSL
 6714     - BUILD: ssl: fix libressl build again after aes-gcm-enc
 6715     - REORG: ssl: move openssl-compat from proto to common
 6716     - REORG: ssl: move some OpenSSL defines from ssl_sock to openssl-compat
 6717     - CLEANUP: ssl: never include openssl/*.h outside of openssl-compat.h anymore
 6718     - CLEANUP: ssl: make inclusion of openssl headers safe
 6719     - BUILD: add BoringSSL to travis-ci build matrix
 6720     - BUILD: threads: Add __ha_cas_dw fallback for single threaded builds
 6721     - BUG/MINOR: stream: Attach the read side on the response as soon as possible
 6722     - BUG/MEDIUM: http: Use pointer to the begining of input to parse message headers
 6723     - BUG/MEDIUM: h2: Don't check send_wait to know if we're in the send_list.
 6724     - BUG/MEDIUM: streams: Make sur SI_FL_L7_RETRY is set before attempting a retry.
 6725     - MEDIUM: streams: Add a new http action, disable-l7-retry.
 6726     - MINOR: streams: Introduce a new retry-on keyword, all-retryable-errors.
 6727     - BUG/MINOR: vars: Fix memory leak in vars_check_arg
 6728     - BUILD: travis-ci: make TMPDIR global variable in travis-ci
 6729     - CLEANUP: ssl: move the SSL_OP_* and SSL_MODE_* definitions to openssl-compat
 6730     - CLEANUP: ssl: remove ifdef around SSL_CTX_get_extra_chain_certs()
 6731     - CLEANUP: ssl: move all BIO_* definitions to openssl-compat
 6732     - BUILD: threads: fix again the __ha_cas_dw() definition
 6733     - BUG/MAJOR: mux-h2: do not add a stream twice to the send list
 6734     - Revert "BUG/MINOR: vars: Fix memory leak in vars_check_arg"
 6735     - BUG/MINOR: peers: Fix memory leak in cfg_parse_peers
 6736     - BUG/MINOR: htx: make sure to always initialize the HTTP method when parsing a buffer
 6737     - REGTEST: fix tls_health_checks random failures on MacOS in Travis-CI
 6738     - MINOR: spoe: Set the argument chunk size to 0 when SPOE variables are checked
 6739     - BUG/MINOR: vars: Fix memory leak in vars_check_arg
 6740     - BUG/MAJOR: ssl: segfault upon an heartbeat request
 6741     - MINOR: spoa-server: Clone the v1.7 spoa-example project
 6742     - MINOR: spoa-server: move some definition from spoa_server.c to spoa_server.h
 6743     - MINOR: spoa-server: Externalise debug functions
 6744     - MINOR: spoe-server: rename "worker" functions
 6745     - MINOR: spoa-server: Replace the thread init system by processes
 6746     - MINOR: spoa-server: With debug mode, start only one process
 6747     - MINOR: spoa-server: Allow registering external processes
 6748     - MINOR: spoa-server: Allow registering message processors
 6749     - MINOR: spoa-server: Load files
 6750     - MINOR: spoa-server: Prepare responses
 6751     - MINOR: spoa-server: Execute registered callbacks
 6752     - MINOR: spoa-server: Add Lua processing
 6753     - MINOR: spoa-server: Add python
 6754     - MINOR/DOC: spoe-server: Add documentation
 6755     - BUG/MEDIUM: connections: Don't forget to set xprt_ctx to NULL on close.
 6756     - MINOR: lists: add LIST_ADDED() to check if an element belongs to a list
 6757     - CLEANUP: mux-h2: use LIST_ADDED() instead of LIST_ISEMPTY() where relevant
 6758     - MINOR: mux-h2: add two H2S flags to report the need for shutr/shutw
 6759     - CLEANUP: mux-h2: simply use h2s->flags instead of ret in h2_deferred_shut()
 6760     - CLEANUP: connection: remove the handle field from the wait_event struct
 6761     - BUG/MINOR: log: Wrong log format initialization.
 6762     - BUG/MINOR: mux-h2: make the do_shut{r,w} functions more robust against retries
 6763     - BUG/MINOR: mworker: use after free when the PID not assigned
 6764     - MINOR: mux-h2: remove useless test on stream ID vs last in wake function
 6765     - MINOR: mux-h2: make h2_wake_some_streams() not depend on the CS flags
 6766     - MINOR: mux-h2: make h2s_wake_one_stream() the only function to deal with CS
 6767     - MINOR: mux-h2: make h2s_wake_one_stream() not depend on temporary CS flags
 6768     - BUG/MINOR: mux-h2: make sure to honor KILL_CONN in do_shut{r,w}
 6769     - CLEANUP: mux-h2: don't test for impossible CS_FL_REOS conditions
 6770     - MINOR: mux-h2: add macros to check multiple stream states at once
 6771     - MINOR: mux-h2: stop relying on CS_FL_REOS
 6772     - BUG/MEDIUM: mux-h2: Set EOI on the conn_stream during h2_rcv_buf()
 6773     - BUILD: debug: make gcc not complain on the ABORT_NOW() macro
 6774     - MINOR: debug: add a new BUG_ON macro
 6775     - MINOR: h2: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
 6776     - MINOR: h1: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
 6777     - MINOR: connections: Use BUG_ON() to enforce rules in subscribe/unsubscribe.
 6778     - BUILD: ist: turn the lower/upper case tables to literal on obsolete linkers
 6779 
 6780 2019/03/26 : 2.0-dev2
 6781     - CLEANUP: http: Remove unreachable code in parse_http_req_capture
 6782     - CLEANUP: stream: Remove bogus loop in conn_si_send_proxy
 6783     - MINOR: lists: Implement locked variations.
 6784     - MEDIUM: servers: Used a locked list for idle_orphan_conns.
 6785     - MEDIUM: servers: Reorganize the way idle connections are cleaned.
 6786     - BUG/MEDIUM: lists: Properly handle the case we're removing the first elt.
 6787     - MINOR: cfgparse: Add a cast to make gcc happier.
 6788     - BUG/MEDIUM: standard: Wrong reallocation size.
 6789     - BUG/MINOR: listener: keep accept rate counters accurate under saturation
 6790     - DOC: fix alphabetic ordering for "tune.fail-alloc" setting
 6791     - MAJOR: config: disable support for nbproc and nbthread in parallel
 6792     - MEDIUM: listener: keep a single thread-mask and warn on "process" misuse
 6793     - MAJOR: listener: do not hold the listener lock in listener_accept()
 6794     - MINOR: listener: maintain a per-thread count of the number of connections on a listener
 6795     - MINOR: tools: implement functions to look up the nth bit set in a mask
 6796     - MINOR: listener: pre-compute some thread counts per bind_conf
 6797     - MINOR: listener: implement multi-queue accept for threads
 6798     - MAJOR: listener: use the multi-queue for multi-thread listeners
 6799     - MINOR: activity: add accept queue counters for pushed and overflows
 6800     - MINOR: config: add global tune.listener.multi-queue setting
 6801     - MAJOR: threads: enable one thread per CPU by default
 6802     - DOC: update management.txt to reflect that threads are used by default
 6803     - BUG/MINOR: config: don't over-count the global maxsock value
 6804     - BUG/MEDIUM: list: fix the rollback on addq in the locked liss
 6805     - BUG/MEDIUM: list: fix LIST_POP_LOCKED's removal of the last pointer
 6806     - BUG/MEDIUM: list: add missing store barriers when updating elements and head
 6807     - MINOR: list: make the delete and pop operations idempotent
 6808     - MINOR: server: remove a few unneeded LIST_INIT calls after LIST_DEL_LOCKED
 6809     - BUG/MEDIUM: listener: use a self-locked list for the dequeue lists
 6810     - BUG/MEDIUM: listener: make sure the listener never accepts too many conns
 6811     - BUG/MEDIUM: list: correct fix for LIST_POP_LOCKED's removal of last element
 6812     - MINOR: listener: introduce listener_backlog() to report the backlog value
 6813     - MINOR: listener: do not needlessly set l->maxconn
 6814     - MINOR: proxy: do not change the listeners' maxconn when updating the frontend's
 6815     - MEDIUM: config: don't enforce a low frontend maxconn value anymore
 6816     - MINOR: peers: Add a message for heartbeat.
 6817     - MINOR: global: keep a copy of the initial rlim_fd_cur and rlim_fd_max values
 6818     - BUG/MINOR: init: never lower rlim_fd_max
 6819     - BUG/MINOR: checks: make external-checks restore the original rlim_fd_cur/max
 6820     - BUG/MINOR: mworker: be careful to restore the original rlim_fd_cur/max on reload
 6821     - MINOR: init: make the maxpipe computation more accurate
 6822     - MINOR: init: move some maxsock updates earlier
 6823     - MEDIUM: init: make the global maxconn default to what rlim_fd_cur permits
 6824     - REGTEST: fix a spurious "nbthread 4" in the connection test
 6825     - DOC: update the text related to the global maxconn value
 6826     - BUG/MAJOR: mux-h2: fix race condition between close on both ends
 6827     - MINOR: sample: Replace "req.ungrpc" smp fetch by a "ungrpc" converter.
 6828     - BUG/MEDIUM: list: fix again LIST_ADDQ_LOCKED
 6829     - MINOR: htx: unconditionally handle parsing errors in requests or responses
 6830     - MINOR: mux-h2: always pass HTX_FL_PARSING_ERROR between h2s and buf on RX
 6831     - BUG/MEDIUM: h2/htx: verify that :path doesn't contain invalid chars
 6832     - MINOR: sample: Code factorization "ungrpc" converter.
 6833     - MINOR: sample: Rework gRPC converter code.
 6834     - CLEANUP: wurfl: remove dead, broken and unmaintained code
 6835     - MINOR: config: relax the range checks on cpu-map
 6836     - BUG/MINOR: ssl: fix warning about ssl-min/max-ver support
 6837     - MINOR: sample: Extract some protocol buffers specific code.
 6838     - DOC: Remove tabs and fixed punctuation.
 6839     - MINOR: sample: Add a protocol buffers specific converter.
 6840     - REGTEST: Peers reg tests.
 6841     - REGTEST: Enable reg tests with HEAD HTTP method usage.
 6842     - MINOR: lists: add a LIST_DEL_INIT() macro
 6843     - MINOR: task: use LIST_DEL_INIT() to remove a task from the queue
 6844     - MINOR: listener: improve incoming traffic distribution
 6845     - MINOR: tools: implement my_flsl()
 6846     - MEDIUM: listener: change the LB algorithm again to use two round robins instead
 6847     - CLEANUP: listener: remove old thread bit mapping
 6848     - MINOR: listener: move thr_idx from the bind_conf to the listener
 6849     - BUG/MEDIUM: logs: Only attempt to free startup_logs once.
 6850     - BUG/MAJOR: config: Wrong maxconn adjustment.
 6851     - BUG/MEDIUM: 51d: fix possible segfault on deinit_51degrees()
 6852     - OPTIM: task: limit the impact of memory barriers in taks_remove_from_task_list()
 6853     - MINOR: fd: Remove debugging code.
 6854     - BUG/MEDIUM: listeners: Don't call fd_stop_recv() if fd_updt is NULL.
 6855     - MINOR: threads: Implement __ha_barrier_atomic*.
 6856     - MEDIUM: threads: Use __ATOMIC_SEQ_CST when using the newer atomic API.
 6857     - MINOR: threads: Add macros to do atomic operation with no memory barrier.
 6858     - MEDIUM: various: Use __ha_barrier_atomic* when relevant.
 6859     - MEDIUM: applets: Use the new _HA_ATOMIC_* macros.
 6860     - MEDIUM: xref: Use the new _HA_ATOMIC_* macros.
 6861     - MEDIUM: fd: Use the new _HA_ATOMIC_* macros.
 6862     - MEDIUM: freq_ctr: Use the new _HA_ATOMIC_* macros.
 6863     - MEDIUM: proxy: Use the new _HA_ATOMIC_* macros.
 6864     - MEDIUM: server: Use the new _HA_ATOMIC_* macros.
 6865     - MEDIUM: task: Use the new _HA_ATOMIC_* macros.
 6866     - MEDIUM: activity: Use the new _HA_ATOMIC_* macros.
 6867     - MEDIUM: backend: Use the new _HA_ATOMIC_* macros.
 6868     - MEDIUM: cache: Use the new _HA_ATOMIC_* macros.
 6869     - MEDIUM: checks: Use the new _HA_ATOMIC_* macros.
 6870     - MEDIUM: pollers: Use the new _HA_ATOMIC_* macros.
 6871     - MEDIUM: compression: Use the new _HA_ATOMIC_* macros.
 6872     - MEDIUM: spoe: Use the new _HA_ATOMIC_* macros.
 6873     - MEDIUM: threads: Use the new _HA_ATOMIC_* macros.
 6874     - MEDIUM: http: Use the new _HA_ATOMIC_* macros.
 6875     - MEDIUM: lb/threads: Use the new _HA_ATOMIC_* macros.
 6876     - MEDIUM: listeners: Use the new _HA_ATOMIC_* macros.
 6877     - MEDIUM: logs: Use the new _HA_ATOMIC_* macros.
 6878     - MEDIUM: memory: Use the new _HA_ATOMIC_* macros.
 6879     - MEDIUM: peers: Use the new _HA_ATOMIC_* macros.
 6880     - MEDIUM: proto_tcp: Use the new _HA_ATOMIC_* macros.
 6881     - MEDIUM: queues: Use the new _HA_ATOMIC_* macros.
 6882     - MEDIUM: sessions: Use the new _HA_ATOMIC_* macros.
 6883     - MEDIUM: ssl: Use the new _HA_ATOMIC_* macros.
 6884     - MEDIUM: stream: Use the new _HA_ATOMIC_* macros.
 6885     - MEDIUM: tcp_rules: Use the new _HA_ATOMIC_* macros.
 6886     - MEDIUM: time: Use the new _HA_ATOMIC_* macros.
 6887     - MEDIUM: vars: Use the new _HA_ATOMIC_* macros.
 6888     - MINOR: config: remove obsolete use of DEFAULT_MAXCONN at various places
 6889     - MINOR: config: continue to rely on DEFAULT_MAXCONN to set the minimum maxconn
 6890     - BUG/MEDIUM: list: fix incorrect pointer unlocking in LIST_DEL_LOCKED()
 6891     - BUG/MEDIUM: listener: make sure we don't pick stopped threads
 6892     - MEDIUM: list: Remove useless barriers.
 6893     - MEDIUM: list: Use _HA_ATOMIC_*
 6894     - MEDIUM: connections: Use _HA_ATOMIC_*
 6895     - BUG/MAJOR: tasks: Use the TASK_GLOBAL flag to know if we're in the global rq.
 6896     - BUG/MEDIUM: threads/fd: do not forget to take into account epoll_fd/pipes
 6897     - BUG/MEDIUM: init/threads: consider epoll_fd/pipes for automatic maxconn calculation
 6898     - BUG/MEDIUM: tasks: Make sure we wake sleeping threads if needed.
 6899     - BUG/MINOR: mux-h1: Don't report an error on EOS if no message was received
 6900     - BUG/MINOR: stats/htx: Call channel_add_input() when response headers are sent
 6901     - BUG/MINOR: lua/htx: Use channel_add_input() when response data are added
 6902     - BUG/MINOR: lua/htx: Don't forget to call htx_to_buf() when appropriate
 6903     - MINOR: stats: Add the status code STAT_STATUS_IVAL to handle invalid requests
 6904     - MINOR: stats: Move stuff about the stats status codes in stats files
 6905     - BUG/MINOR: stats: Be more strict on what is a valid request to the stats applet
 6906     - Revert "REGTEST: Enable reg tests with HEAD HTTP method usage."
 6907     - BUILD: listener: shut up a build warning when threads are disabled
 6908     - BUILD: Makefile: allow the reg-tests target to be verbose
 6909     - BUILD: Makefile: resolve LEVEL before calling run-regtests
 6910     - BUG/MAJOR: spoe: Fix initialization of thread-dependent fields
 6911     - BUG/MAJOR: stats: Fix how huge POST data are read from the channel
 6912     - BUG/MINOR: http/counters: fix missing increment of fe->srv_aborts
 6913     - BUG/MEDIUM: mux-h2: Always wakeup streams with no id to avoid frozen streams
 6914     - MINOR: mux-h2: Set REFUSED_STREAM error to reset a stream if no data was never sent
 6915     - MINOR: muxes: Report the Last read with a dedicated flag
 6916     - MINOR: proto-http/proto-htx: Make error handling clearer during data forwarding
 6917     - BUILD: tools: fix a build warning on some 32-bit archs
 6918     - MINOR: init: report the list of optionally available services
 6919     - MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter
 6920     - BUG/MINOR: cache: Fully consume large requests in the cache applet
 6921     - BUG/MINOR: stats: Fully consume large requests in the stats applet
 6922     - BUG/MEDIUM: lua: Fully consume large requests when an HTTP applet ends
 6923     - MINOR: proto_http: Add function to handle the header "Expect: 100-continue"
 6924     - MINOR: proto_htx: Add function to handle the header "Expect: 100-continue"
 6925     - MINOR: stats/cache: Handle the header Expect when applets are registered
 6926     - MINOR: http/applets: Handle all applets intercepting HTTP requests the same way
 6927     - CLEANUP: cache: don't export http_cache_applet anymore
 6928     - MINOR: lua: Don't handle the header Expect in lua HTTP applets anymore
 6929     - BUG/MINOR: doc: Be accurate on the behavior on pool-purge-delay.
 6930     - Revert "MEDIUM: proto_htx: Switch to infinite forwarding if there is no data filter"
 6931     - BUG/MEDIUM: mux-h2: Make sure we destroyed the h2s once shutr/shutw is done.
 6932     - BUG/MEDIUM: mux-h2: Don't bother keeping the h2s if detaching and nothing to send.
 6933     - BUG/MEDIUM: mux-h2: Use the right list in h2_stop_senders().
 6934     - MINOR: mux-h2: copy small data blocks more often and reduce the number of pauses
 6935     - CLEANUP: mux-h2: add some comments to help understand the code
 6936     - BUG/MEDIUM: ssl: ability to set TLS 1.3 ciphers using ssl-default-server-ciphersuites
 6937     - BUG/MINOR: log: properly format IPv6 address when LOG_OPT_HEXA modifier is used.
 6938     - BUG/MEDIUM: h2: Try to be fair when sending data.
 6939     - BUG/MINOR: proto-http: Don't forward request body anymore on error
 6940     - MINOR: mux-h2: Remove useless test on ES flag in h2_frt_transfer_data()
 6941     - MINOR: connection: and new flag to mark end of input (EOI)
 6942     - MINOR: channel: Report EOI on the input channel if it was reached in the mux
 6943     - MEDIUM: mux-h2: Don't mix the end of the message with the end of stream
 6944     - MINOR: mux-h1: Set CS_FL_EOI the end of the message is reached
 6945     - BUG/MEDIUM: http/htx: Fix handling of the option abortonclose
 6946     - CLEANUP: muxes/stream-int: Remove flags CS_FL_READ_NULL and SI_FL_READ_NULL
 6947     - MEDIUM: proto_htx: Reintroduce the infinite forwarding on data
 6948     - BUG/MEDIUM: h2: only destroy the h2s if h2s->cs is NULL.
 6949     - BUG/MEDIUM: h2: Use the new sending_list in h2s_notify_send().
 6950     - BUG/MEDIUM: h2: Follow the same logic in h2_deferred_shut than in h2_snd_buf.
 6951     - BUG/MEDIUM: h2: Remove the tasklet from the task list if unsubscribing.
 6952     - BUG/MEDIUM: task/h2: add an idempotent task removal fucntion
 6953     - CLEANUP: task: only perform a LIST_DEL() when the list is not empty
 6954     - BUG/MEDIUM: mux-h2: make sure to always notify streams of EOS condition
 6955     - CONTRIB: debug: report the CS and CF's EOI flags
 6956     - MINOR: channel: don't unset CF_SHUTR_NOW after shutting down.
 6957 
 6958 2019/02/26 : 2.0-dev1
 6959     - MINOR: mux-h2: only increase the connection window with the first update
 6960     - REGTESTS: remove the expected window updates from H2 handshakes
 6961     - BUG/MINOR: mux-h2: make empty HEADERS frame return a connection error
 6962     - BUG/MEDIUM: mux-h2: mark that we have too many CS once we have more than the max
 6963     - MEDIUM: mux-h2: remove padlen during headers phase
 6964     - MINOR: h2: add a bit-based frame type representation
 6965     - MINOR: mux-h2: remove useless check for empty frame length in h2s_decode_headers()
 6966     - MEDIUM: mux-h2: decode HEADERS frames before allocating the stream
 6967     - MINOR: mux-h2: make h2c_send_rst_stream() use the dummy stream's error code
 6968     - MINOR: mux-h2: add a new dummy stream for the REFUSED_STREAM error code
 6969     - MINOR: mux-h2: fail stream creation more cleanly using RST_STREAM
 6970     - MINOR: buffers: add a new b_move() function
 6971     - MINOR: mux-h2: make h2_peek_frame_hdr() support an offset
 6972     - MEDIUM: mux-h2: handle decoding of CONTINUATION frames
 6973     - CLEANUP: mux-h2: remove misleading comments about CONTINUATION
 6974     - BUG/MEDIUM: servers: Don't try to reuse connection if we switched server.
 6975     - BUG/MEDIUM: tasks: Decrement tasks_run_queue in tasklet_free().
 6976     - BUG/MINOR: htx: send the proper authenticate header when using http-request auth
 6977     - BUG/MEDIUM: mux_h2: Don't add to the idle list if we're full.
 6978     - BUG/MEDIUM: servers: Fail if we fail to allocate a conn_stream.
 6979     - BUG/MAJOR: servers: Use the list api correctly to avoid crashes.
 6980     - BUG/MAJOR: servers: Correctly use LIST_ELEM().
 6981     - BUG/MAJOR: sessions: Use an unlimited number of servers for the conn list.
 6982     - BUG/MEDIUM: servers: Flag the stream_interface on handshake error.
 6983     - MEDIUM: servers: Be smarter when switching connections.
 6984     - MEDIUM: sessions: Keep track of which connections are idle.
 6985     - MINOR: payload: add sample fetch for TLS ALPN
 6986     - BUG/MEDIUM: log: don't mark log FDs as non-blocking on terminals
 6987     - MINOR: channel: Add the function channel_add_input
 6988     - MINOR: stats/htx: Call channel_add_input instead of updating channel state by hand
 6989     - BUG/MEDIUM: cache: Be sure to end the forwarding when XFER length is unknown
 6990     - BUG/MAJOR: htx: Return the good block address after a defrag
 6991     - MINOR: lb: allow redispatch when using consistent hash
 6992     - CLEANUP: mux-h2: fix end-of-stream flag name when processing headers
 6993     - BUG/MEDIUM: mux-h2: always restart reading if data are available
 6994     - BUG/MINOR: mux-h2: set the stream-full flag when leaving h2c_decode_headers()
 6995     - BUG/MINOR: mux-h2: don't check the CS count in h2c_bck_handle_headers()
 6996     - BUG/MINOR: mux-h2: mark end-of-stream after processing response HEADERS, not before
 6997     - BUG/MINOR: mux-h2: only update rxbuf's length for H1 headers
 6998     - BUG/MEDIUM: mux-h1: use per-direction flags to indicate transitions
 6999     - BUG/MEDIUM: mux-h1: make HTX chunking consistent with H2
 7000     - BUG/MAJOR: stream-int: Update the stream expiration date in stream_int_notify()
 7001     - BUG/MEDIUM: proto-htx: Set SI_FL_NOHALF on server side when request is done
 7002     - BUG/MEDIUM: mux-h1: Add a task to handle connection timeouts
 7003     - MINOR: mux-h2: make h2c_decode_headers() return a status, not a count
 7004     - MINOR: mux-h2: add a new dummy stream : h2_error_stream
 7005     - MEDIUM: mux-h2: make h2c_decode_headers() support recoverable errors
 7006     - BUG/MINOR: mux-h2: detect when the HTX EOM block cannot be added after headers
 7007     - MINOR: mux-h2: remove a misleading and impossible test
 7008     - CLEANUP: mux-h2: clean the stream error path on HEADERS frame processing
 7009     - MINOR: mux-h2: check for too many streams only for idle streams
 7010     - MINOR: mux-h2: set H2_SF_HEADERS_RCVD when a HEADERS frame was decoded
 7011     - BUG/MEDIUM: mux-h2: decode trailers in HEADERS frames
 7012     - MINOR: h2: add h2_make_h1_trailers to turn H2 headers to H1 trailers
 7013     - MEDIUM: mux-h2: pass trailers to H1 (legacy mode)
 7014     - MINOR: htx: add a new function to add a block without filling it
 7015     - MINOR: h2: add h2_make_htx_trailers to turn H2 headers to HTX trailers
 7016     - MEDIUM: mux-h2: pass trailers to HTX
 7017     - MINOR: mux-h1: parse the content-length header on output and set H1_MF_CLEN
 7018     - BUG/MEDIUM: mux-h1: don't enforce chunked encoding on requests
 7019     - MINOR: mux-h2: make HTX_BLK_EOM processing idempotent
 7020     - MINOR: h1: make the H1 headers block parser able to parse headers only
 7021     - MEDIUM: mux-h2: emit HEADERS frames when facing HTX trailers blocks
 7022     - MINOR: stream/htx: Add info about the HTX structs in "show sess all" command
 7023     - MINOR: stream: Add the subscription events of SIs in "show sess all" command
 7024     - MINOR: mux-h1: Add the subscription events in "show fd" command
 7025     - BUG/MEDIUM: h1: Get the h1m state when restarting the headers parsing
 7026     - BUG/MINOR: cache/htx: Be sure to count partial trailers
 7027     - BUG/MEDIUM: h1: In h1_init(), wake the tasklet instead of calling h1_recv().
 7028     - BUG/MEDIUM: server: Defer the mux init until after xprt has been initialized.
 7029     - MINOR: connections: Remove a stall comment.
 7030     - BUG/MEDIUM: cli: make "show sess" really thread-safe
 7031     - BUILD: add a new file "version.c" to carry version updates
 7032     - MINOR: stream/htx: add the HTX flags output in "show sess all"
 7033     - MINOR: stream/cli: fix the location of the waiting flag in "show sess all"
 7034     - MINOR: stream/cli: report more info about the HTTP messages on "show sess all"
 7035     - BUG/MINOR: lua: bad args are returned for Lua actions
 7036     - BUG/MEDIUM: lua: dead lock when Lua tasks are trigerred
 7037     - MINOR: htx: Add an helper function to get the max space usable for a block
 7038     - MINOR: channel/htx: Add HTX version for some helper functions
 7039     - BUG/MEDIUM: cache/htx: Respect the reserve when cached objects are served
 7040     - BUG/MINOR: stats/htx: Respect the reserve when the stats page is dumped
 7041     - DOC: regtest: make it clearer what the purpose of the "broken" series is
 7042     - REGTEST: mailers: add new test for 'mailers' section
 7043     - REGTEST: Add a reg test for health-checks over SSL/TLS.
 7044     - BUG/MINOR: mux-h1: Close connection on shutr only when shutw was really done
 7045     - MEDIUM: mux-h1: Clarify how shutr/shutw are handled
 7046     - BUG/MINOR: compression: Disable it if another one is already in progress
 7047     - BUG/MINOR: filters: Detect cache+compression config on legacy HTTP streams
 7048     - BUG/MINOR: cache: Disable the cache if any compression filter precedes it
 7049     - REGTEST: Add some informatoin to test results.
 7050     - MINOR: htx: Add a function to truncate all blocks after a specific offset
 7051     - MINOR: channel/htx: Add the HTX version of channel_truncate/erase
 7052     - BUG/MINOR: proto_htx: Use HTX versions to truncate or erase a buffer
 7053     - BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY is used
 7054     - DOC: Fix typo in req.ssl_alpn example (commit 4afdd138424ab...)
 7055     - DOC: http-request cache-use / http-response cache-store expects cache name
 7056     - REGTEST: "capture (request|response)" regtest.
 7057     - BUG/MINOR: lua/htx: Respect the reserve when data are send from an HTX applet
 7058     - REGTEST: filters: add compression test
 7059     - BUG/MEDIUM: init: Initialize idle_orphan_conns for first server in server-template
 7060     - BUG/MEDIUM: ssl: Disable anti-replay protection and set max data with 0RTT.
 7061     - DOC: Be a bit more explicit about allow-0rtt security implications.
 7062     - MINOR: mux-h1: make the mux_h1_ops struct static
 7063     - BUILD: makefile: add an EXTRA_OBJS variable to help build optional code
 7064     - BUG/MEDIUM: connection: properly unregister the mux on failed initialization
 7065     - BUG/MAJOR: cache: fix confusion between zero and uninitialized cache key
 7066     - REGTESTS: test case for map_regm commit 271022150d
 7067     - REGTESTS: Basic tests for concat,strcmp,word,field,ipmask converters
 7068     - REGTESTS: Basic tests for using maps to redirect requests / select backend
 7069     - DOC: REGTESTS README varnishtest -Dno-htx= define.
 7070     - MINOR: spoe: Make the SPOE filter compatible with HTX proxies
 7071     - MINOR: checks: Store the proxy in checks.
 7072     - BUG/MEDIUM: checks: Avoid having an associated server for email checks.
 7073     - REGTEST: Switch to vtest.
 7074     - REGTEST: Adapt reg test doc files to vtest.
 7075     - BUG/MEDIUM: h1: Make sure we destroy an inactive connectin that did shutw.
 7076     - BUG/MINOR: base64: dec func ignores padding for output size checking
 7077     - BUG/MEDIUM: ssl: missing allocation failure checks loading tls key file
 7078     - MINOR: ssl: add support of aes256 bits ticket keys on file and cli.
 7079     - BUG/MINOR: backend: don't use url_param_name as a hint for BE_LB_ALGO_PH
 7080     - BUG/MINOR: backend: balance uri specific options were lost across defaults
 7081     - BUG/MINOR: backend: BE_LB_LKUP_CHTREE is a value, not a bit
 7082     - MINOR: backend: move url_param_name/len to lbprm.arg_str/len
 7083     - MINOR: backend: make headers and RDP cookie also use arg_str/len
 7084     - MINOR: backend: add new fields in lbprm to store more LB options
 7085     - MINOR: backend: make the header hash use arg_opt1 for use_domain_only
 7086     - MINOR: backend: remap the balance uri settings to lbprm.arg_opt{1,2,3}
 7087     - MINOR: backend: move hash_balance_factor out of chash
 7088     - MEDIUM: backend: move all LB algo parameters into an union
 7089     - MINOR: backend: make the random algorithm support a number of draws
 7090     - BUILD/MEDIUM: da: Necessary code changes for new buffer API.
 7091     - BUG/MINOR: stick_table: Prevent conn_cur from underflowing
 7092     - BUG: 51d: Changes to the buffer API in 1.9 were not applied to the 51Degrees code.
 7093     - BUG/MEDIUM: stats: Get the right scope pointer depending on HTX is used or not
 7094     - DOC: add a missing space in the documentation for bc_http_major
 7095     - REGTEST: checks basic stats webpage functionality
 7096     - BUG/MEDIUM: servers: Make assign_tproxy_address work when ALPN is set.
 7097     - BUG/MEDIUM: connections: Add the CO_FL_CONNECTED flag if a send succeeded.
 7098     - DOC: add github issue templates
 7099     - MINOR: cfgparse: Extract some code to be re-used.
 7100     - CLEANUP: cfgparse: Return asap from cfg_parse_peers().
 7101     - CLEANUP: cfgparse: Code reindentation.
 7102     - MINOR: cfgparse: Useless frontend initialization in "peers" sections.
 7103     - MINOR: cfgparse: Rework peers frontend init.
 7104     - MINOR: cfgparse: Simplication.
 7105     - MINOR: cfgparse: Make "peer" lines be parsed as "server" lines.
 7106     - MINOR: peers: Make outgoing connection to SSL/TLS peers work.
 7107     - MINOR: cfgparse: SSL/TLS binding in "peers" sections.
 7108     - DOC: peers: SSL/TLS documentation for "peers"
 7109     - BUG/MINOR: startup: certain goto paths in init_pollers fail to free
 7110     - BUG/MEDIUM: checks: fix recent regression on agent-check making it crash
 7111     - BUG/MINOR: server: don't always trust srv_check_health when loading a server state
 7112     - BUG/MINOR: check: Wake the check task if the check is finished in wake_srv_chk()
 7113     - BUG/MEDIUM: ssl: Fix handling of TLS 1.3 KeyUpdate messages
 7114     - DOC: mention the effect of nf_conntrack_tcp_loose on src/dst
 7115     - BUG/MINOR: proto-htx: Return an error if all headers cannot be received at once
 7116     - BUG/MEDIUM: mux-h2/htx: Respect the channel's reserve
 7117     - BUG/MINOR: mux-h1: Apply the reserve on the channel's buffer only
 7118     - BUG/MINOR: mux-h1: avoid copying output over itself in zero-copy
 7119     - BUG/MAJOR: mux-h2: don't destroy the stream on failed allocation in h2_snd_buf()
 7120     - BUG/MEDIUM: backend: also remove from idle list muxes that have no more room
 7121     - BUG/MEDIUM: mux-h2: properly abort on trailers decoding errors
 7122     - MINOR: h2: declare new sets of frame types
 7123     - BUG/MINOR: mux-h2: CONTINUATION in closed state must always return GOAWAY
 7124     - BUG/MINOR: mux-h2: headers-type frames in HREM are always a connection error
 7125     - BUG/MINOR: mux-h2: make it possible to set the error code on an already closed stream
 7126     - BUG/MINOR: hpack: return a compression error on invalid table size updates
 7127     - MINOR: server: make sure pool-max-conn is >= -1
 7128     - BUG/MINOR: stream: take care of synchronous errors when trying to send
 7129     - CLEANUP: server: fix indentation mess on idle connections
 7130     - BUG/MINOR: mux-h2: always check the stream ID limit in h2_avail_streams()
 7131     - BUG/MINOR: mux-h2: refuse to allocate a stream with too high an ID
 7132     - BUG/MEDIUM: backend: never try to attach to a mux having no more stream available
 7133     - MINOR: server: add a max-reuse parameter
 7134     - MINOR: mux-h2: always consider a server's max-reuse parameter
 7135     - MEDIUM: stream-int: always mark pending outgoing SI_ST_CON
 7136     - MINOR: stream: don't wait before retrying after a failed connection reuse
 7137     - MEDIUM: h2: always parse and deduplicate the content-length header
 7138     - BUG/MINOR: mux-h2: always compare content-length to the sum of DATA frames
 7139     - CLEANUP: h2: Remove debug printf in mux_h2.c
 7140     - MINOR: cfgparse: make the process/thread parser support a maximum value
 7141     - MINOR: threads: make MAX_THREADS configurable at build time
 7142     - DOC: nbthread is no longer experimental.
 7143     - BUG/MINOR: listener: always fill the source address for accepted socketpairs
 7144     - BUG/MINOR: mux-h2: do not report available outgoing streams after GOAWAY
 7145     - BUG/MINOR: spoe: corrected fragmentation string size
 7146     - BUG/MINOR: task: fix possibly missed event in inter-thread wakeups
 7147     - BUG/MEDIUM: servers: Attempt to reuse an unfinished connection on retry.
 7148     - BUG/MEDIUM: backend: always call si_detach_endpoint() on async connection failure
 7149     - SCRIPTS: add the issue tracker URL to the announce script
 7150     - MINOR: peers: Extract some code to be reused.
 7151     - CLEANUP: peers: Indentation fixes.
 7152     - MINOR: peers: send code factorization.
 7153     - MINOR: peers: Add new functions to send code and reduce the I/O handler.
 7154     - MEDIUM: peers: synchronizaiton code factorization to reduce the size of the I/O handler.
 7155     - MINOR: peers: Move update receive code to reduce the size of the I/O handler.
 7156     - MINOR: peers: Move ack, switch and definition receive code to reduce the size of the I/O handler.
 7157     - MINOR: peers: Move high level receive code to reduce the size of I/O handler.
 7158     - CLEANUP: peers: Be more generic.
 7159     - MINOR: peers: move error handling to reduce the size of the I/O handler.
 7160     - MINOR: peers: move messages treatment code to reduce the size of the I/O handler.
 7161     - MINOR: peers: move send code to reduce the size of the I/O handler.
 7162     - CLEANUP: peers: Remove useless statements.
 7163     - MINOR: peers: move "hello" message treatment code to reduce the size of the I/O handler.
 7164     - MINOR: peers: move peer initializations code to reduce the size of the I/O handler.
 7165     - CLEANUP: peers: factor the error handling code in peer_treet_updatemsg()
 7166     - CLEANUP: peers: factor error handling in peer_treat_definedmsg()
 7167     - BUILD/MINOR: peers: shut up a build warning introduced during last cleanup
 7168     - BUG/MEDIUM: mux-h2: only close connection on request frames on closed streams
 7169     - CLEANUP: mux-h2: remove two useless but misleading assignments
 7170     - BUG/MEDIUM: checks: Check that conn_install_mux succeeded.
 7171     - BUG/MEDIUM: servers: Only destroy a conn_stream we just allocated.
 7172     - BUG/MEDIUM: servers: Don't add an incomplete conn to the server idle list.
 7173     - BUG/MEDIUM: checks: Don't try to set ALPN if connection failed.
 7174     - BUG/MEDIUM: h2: In h2_send(), stop the loop if we failed to alloc a buf.
 7175     - BUG/MEDIUM: peers: Handle mux creation failure.
 7176     - BUG/MEDIUM: servers: Close the connection if we failed to install the mux.
 7177     - BUG/MEDIUM: compression: Rewrite strong ETags
 7178     - BUG/MINOR: deinit: tcp_rep.inspect_rules not deinit, add to deinit
 7179     - CLEANUP: mux-h2: remove misleading leftover test on h2s' nullity
 7180     - BUG/MEDIUM: mux-h2: wake up flow-controlled streams on initial window update
 7181     - BUG/MEDIUM: mux-h2: fix two half-closed to closed transitions
 7182     - BUG/MEDIUM: mux-h2: make sure never to send GOAWAY on too old streams
 7183     - BUG/MEDIUM: mux-h2: do not abort HEADERS frame before decoding them
 7184     - BUG/MINOR: mux-h2: make sure response HEADERS are not received in other states than OPEN and HLOC
 7185     - MINOR: h2: add a generic frame checker
 7186     - MEDIUM: mux-h2: check the frame validity before considering the stream state
 7187     - CLEANUP: mux-h2: remove stream ID and frame length checks from the frame parsers
 7188     - BUG/MINOR: mux-h2: make sure request trailers on aborted streams don't break the connection
 7189     - DOC: compression: Update the reasons for disabled compression
 7190     - BUG/MEDIUM: buffer: Make sure b_is_null handles buffers waiting for allocation.
 7191     - DOC: htx: make it clear that htxbuf() and htx_from_buf() always return valid pointers
 7192     - MINOR: htx: never check for null htx pointer in htx_is_{,not_}empty()
 7193     - MINOR: mux-h2: consistently rely on the htx variable to detect the mode
 7194     - BUG/MEDIUM: peers: Peer addresses parsing broken.
 7195     - BUG/MEDIUM: mux-h1: Don't add "transfer-encoding" if message-body is forbidden
 7196     - BUG/MEDIUM: connections: Don't forget to remove CO_FL_SESS_IDLE.
 7197     - BUG/MINOR: stream: don't close the front connection when facing a backend error
 7198     - BUG/MEDIUM: mux-h2: wait for the mux buffer to be empty before closing the connection
 7199     - MINOR: stream-int: add a new flag to mention that we want the connection to be killed
 7200     - MINOR: connstream: have a new flag CS_FL_KILL_CONN to kill a connection
 7201     - BUG/MEDIUM: mux-h2: do not close the connection on aborted streams
 7202     - BUG/MINOR: server: fix logic flaw in idle connection list management
 7203     - MINOR: mux-h2: max-concurrent-streams should be unsigned
 7204     - MINOR: mux-h2: make sure to only check concurrency limit on the frontend
 7205     - MINOR: mux-h2: learn and store the peer's advertised MAX_CONCURRENT_STREAMS setting
 7206     - BUG/MEDIUM: mux-h2: properly consider the peer's advertised max-concurrent-streams
 7207     - MINOR: xref: Add missing barriers.
 7208     - MINOR: muxes: Don't bother to LIST_DEL(&conn->list) before calling conn_free().
 7209     - MINOR: debug: Add an option that causes random allocation failures.
 7210     - BUG/MEDIUM: backend: always release the previous connection into its own target srv_list
 7211     - BUG/MEDIUM: htx: check the HTX compatibility in dynamic use-backend rules
 7212     - BUG/MINOR: tune.fail-alloc: Don't forget to initialize ret.
 7213     - BUG/MINOR: backend: check srv_conn before dereferencing it
 7214     - BUG/MEDIUM: mux-h2: always omit :scheme and :path for the CONNECT method
 7215     - BUG/MEDIUM: mux-h2: always set :authority on request output
 7216     - BUG/MEDIUM: stream: Don't forget to free s->unique_id in stream_free().
 7217     - BUG/MINOR: threads: fix the process range of thread masks
 7218     - BUG/MINOR: config: fix bind line thread mask validation
 7219     - CLEANUP: threads: fix misleading comment about all_threads_mask
 7220     - CLEANUP: threads: use nbits to calculate the thread mask
 7221     - OPTIM: listener: optimize cache-line packing for struct listener
 7222     - MINOR: tools: improve the popcount() operation
 7223     - MINOR: config: keep an all_proc_mask like we have all_threads_mask
 7224     - MINOR: global: add proc_mask() and thread_mask()
 7225     - MINOR: config: simplify bind_proc processing using proc_mask()
 7226     - MINOR: threads: make use of thread_mask() to simplify some thread calculations
 7227     - BUG/MINOR: compression: properly report compression stats in HTX mode
 7228     - BUG/MINOR: task: close a tiny race in the inter-thread wakeup
 7229     - BUG/MAJOR: config: verify that targets of track-sc and stick rules are present
 7230     - BUG/MAJOR: spoe: verify that backends used by SPOE cover all their callers' processes
 7231     - BUG/MAJOR: htx/backend: Make all tests on HTTP messages compatible with HTX
 7232     - BUG/MINOR: config: make sure to count the error on incorrect track-sc/stick rules
 7233     - DOC: ssl: Clarify when pre TLSv1.3 cipher can be used
 7234     - DOC: ssl: Stop documenting ciphers example to use
 7235     - BUG/MINOR: spoe: do not assume agent->rt is valid on exit
 7236     - BUG/MINOR: lua: initialize the correct idle conn lists for the SSL sockets
 7237     - BUG/MEDIUM: spoe: initialization depending on nbthread must be done last
 7238     - BUG/MEDIUM: server: initialize the idle conns list after parsing the config
 7239     - BUG/MEDIUM: server: initialize the orphaned conns lists and tasks at the end
 7240     - MINOR: config: make MAX_PROCS configurable at build time
 7241     - BUG/MAJOR: spoe: Don't try to get agent config during SPOP healthcheck
 7242     - BUG/MINOR: config: Reinforce validity check when a process number is parsed
 7243     - BUG/MEDIUM: peers: check that p->srv actually exists before using p->srv->use_ssl
 7244     - CONTRIB: contrib/prometheus-exporter: Add a Prometheus exporter for HAProxy
 7245     - BUG/MINOR: mux-h1: verify the request's version before dropping connection: keep-alive
 7246     - BUG: 51d: In Hash Trie, multi header matching was affected by the header names stored globaly.
 7247     - MEDIUM: 51d: Enabled multi threaded operation in the 51Degrees module.
 7248     - BUG/MAJOR: stream: avoid double free on unique_id
 7249     - BUILD/MINOR: stream: avoid a build warning with threads disabled
 7250     - BUILD/MINOR: tools: fix build warning in the date conversion functions
 7251     - BUILD/MINOR: peers: remove an impossible null test in intencode()
 7252     - BUILD/MINOR: htx: fix some potential null-deref warnings with http_find_stline
 7253     - BUG/MEDIUM: peers: Missing peer initializations.
 7254     - BUG/MEDIUM: http_fetch: fix the "base" and "base32" fetch methods in HTX mode
 7255     - BUG/MEDIUM: proto_htx: Fix data size update if end of the cookie is removed
 7256     - BUG/MEDIUM: http_fetch: fix "req.body_len" and "req.body_size" fetch methods in HTX mode
 7257     - BUILD/MEDIUM: initcall: Fix build on MacOS.
 7258     - BUG/MEDIUM: mux-h2/htx: Always set CS flags before exiting h2_rcv_buf()
 7259     - MINOR: h2/htx: Set the flag HTX_SL_F_BODYLESS for messages without body
 7260     - BUG/MINOR: mux-h1: Add "transfer-encoding" header on outgoing requests if needed
 7261     - BUG/MINOR: mux-h2: Don't add ":status" pseudo-header on trailers
 7262     - BUG/MINOR: proto-htx: Consider a XFER_LEN message as chunked by default
 7263     - BUG/MEDIUM: h2/htx: Correctly handle interim responses when HTX is enabled
 7264     - MINOR: mux-h2: Set HTX extra value when possible
 7265     - BUG/MEDIUM: htx: count the amount of copied data towards the final count
 7266     - MINOR: mux-h2: make the H2 MAX_FRAME_SIZE setting configurable
 7267     - BUG/MEDIUM: mux-h2/htx: send an empty DATA frame on empty HTX trailers
 7268     - BUG/MEDIUM: servers: Use atomic operations when handling curr_idle_conns.
 7269     - BUG/MEDIUM: servers: Add a per-thread counter of idle connections.
 7270     - MINOR: fd: add a new my_closefrom() function to close all FDs
 7271     - MINOR: checks: use my_closefrom() to close all FDs
 7272     - MINOR: fd: implement an optimised my_closefrom() function
 7273     - BUG/MINOR: fd: make sure my_closefrom() doesn't miss some FDs
 7274     - BUG/MAJOR: fd/threads, task/threads: ensure all spin locks are unlocked
 7275     - BUG/MAJOR: listener: Make sure the listener exist before using it.
 7276     - MINOR: fd: Use closefrom() as my_closefrom() if supported.
 7277     - BUG/MEDIUM: mux-h1: Report the right amount of data xferred in h1_rcv_buf()
 7278     - BUG/MINOR: channel: Set CF_WROTE_DATA when outgoing data are skipped
 7279     - MINOR: htx: Add function to drain data from an HTX message
 7280     - MINOR: channel/htx: Add function to skips output bytes from an HTX channel
 7281     - BUG/MAJOR: cache/htx: Set the start-line offset when a cached object is served
 7282     - BUG/MEDIUM: cache: Get objects from the cache only for GET and HEAD requests
 7283     - BUG/MINOR: cache/htx: Return only the headers of cached objects to HEAD requests
 7284     - BUG/MINOR: mux-h1: Always initilize h1m variable in h1_process_input()
 7285     - BUG/MEDIUM: proto_htx: Fix functions applying regex filters on HTX messages
 7286     - BUG/MEDIUM: h2: advertise to servers that we don't support push
 7287     - MINOR: standard: Add a function to parse uints (dotted notation).
 7288     - MINOR: arg: Add support for ARGT_PBUF_FNUM arg type.
 7289     - MINOR: http_fetch: add "req.ungrpc" sample fetch for gRPC.
 7290     - MINOR: sample: Add two sample converters for protocol buffers.
 7291     - DOC: sample: Add gRPC related documentation.
 7292 
 7293 2018/12/22 : 2.0-dev0
 7294     - BUG/MAJOR: connections: Close the connection before freeing it.
 7295     - REGTEST: Require the option LUA to run lua tests
 7296     - REGTEST: script: Process script arguments before everything else
 7297     - REGTEST: script: Evaluate the varnishtest command to allow quoted parameters
 7298     - REGTEST: script: Add the option --clean to remove previous log direcotries
 7299     - REGTEST: script: Add the option --debug to show logs on standard ouput
 7300     - REGTEST: script: Add the option --keep-logs to keep all log directories
 7301     - REGTEST: script: Add the option --use-htx to enable the HTX in regtests
 7302     - REGTEST: script: Print only errors in the results report
 7303     - REGTEST: Add option to use HTX prefixed by the macro 'no-htx'
 7304     - REGTEST: Make reg-tests target support argument.
 7305     - REGTEST: Fix a typo about barrier type.
 7306     - REGTEST: Be less Linux specific with a syslog regex.
 7307     - REGTEST: Missing enclosing quotes for ${tmpdir} macro.
 7308     - REGTEST: Exclude freebsd target for some reg tests.
 7309     - BUG/MEDIUM: h2: Don't forget to quit the sending_list if SUB_CALL_UNSUBSCRIBE.
 7310     - BUG/MEDIUM: mux-h2: Don't forget to quit the send list on error reports
 7311     - BUG/MEDIUM: dns: Don't prevent reading the last byte of the payload in dns_validate_response()
 7312     - BUG/MEDIUM: dns: overflowed dns name start position causing invalid dns error
 7313     - BUG/MINOR: compression/htx: Don't compress responses with unknown body length
 7314     - BUG/MINOR: compression/htx: Don't add the last block of data if it is empty
 7315     - MEDIUM: mux_h1: Implement h1_show_fd.
 7316     - REGTEST: script: Add support of alternatives in requited options list
 7317     - REGTEST: Add a basic test for the compression
 7318     - BUG/MEDIUM: mux-h2: don't needlessly wake up the demux on short frames
 7319     - REGTEST: A basic test for "http-buffer-request"
 7320     - BUG/MEDIUM: server: Also copy "check-sni" for server templates.
 7321     - MINOR: ssl: Add ssl_sock_set_alpn().
 7322     - MEDIUM: checks: Add check-alpn.
 7323     - wip
 7324 
 7325 2018/12/19 : 1.9.0
 7326     - BUG/MEDIUM: compression: Use the right buffer pointers to compress input data
 7327     - BUG/MINOR: mux_pt: Set CS_FL_WANT_ROOM when count is zero in rcv_buf() callback
 7328     - BUG/MEDIUM: connection: Add a new CS_FL_ERR_PENDING flag to conn_streams.
 7329     - CONTRIB: debug: teach the "flags" utility about new conn_stream flags
 7330     - BUG/MEDIUM: stream-int: always clear CS_FL_WANT_ROOM before receiving
 7331     - BUG/MEDIUM: mux-h2: also restart demuxing when data are pending in demux
 7332     - BUG/MEDIUM: mux-h2: restart demuxing as soon as demux data are available
 7333     - BUG/MEDIUM: h2: fix aggregated cookie length computation in HTX mode
 7334     - MINOR: mux-h2: report more h2c, last h2s and cs information on "show fd"
 7335     - CONTRIB: debug: report stream-int's flag SI_FL_CLEAN_ABRT
 7336     - MINOR: cli/stream: add the conn_stream in "show sess" output
 7337     - BUG/MINOR: mux-h2: don't report a fantom h2s in "show fd"
 7338     - BUG/MINOR: cli/fd: don't isolate the thread for each individual fd
 7339     - MINOR: objtype: report a few missing types in names and base pointers
 7340     - BUG/MEDIUM: mux-h2: make sure to report synchronous errors after EOS
 7341     - BUG/MEDIUM: mux-h2: report asynchronous errors in h2_wake_some_streams()
 7342     - BUG/MEDIUM: mux-h2: make sure the demux also wakes streams up on errors
 7343     - BUG/MINOR: mux-h1: report the correct frontend in error captures
 7344     - BUG/MEDIUM: stream-int: also wake the stream up on end of transfer
 7345     - MEDIUM: h2: properly check and deduplicate the content-length header in HTX
 7346     - BUG/MEDIUM: stream: Forward the right amount of data before infinite forwarding
 7347     - BUG/MINOR: proto_htx: Call the HTX version of the function managing client cookies
 7348     - BUG/MEDIUM: lua/htx: Handle EOM in receive/get_line calls in HTTP applets
 7349     - BUG/MINOR: lua: Return an error if a legacy HTTP applet doesn't send anything
 7350     - MINOR: compression: Remove the thread_local variable buf_output
 7351     - CLEANUP: connection: rename subscription events values and event field
 7352     - CLEANUP: connection: rename conn->mux_ctx to conn->ctx
 7353     - MINOR: connection: remove an unwelcome dependency on struct stream
 7354     - CLEANUP: stream-int: consistently call the si/stream_int functions
 7355     - BUG/MEDIUM: h1: Don't shutw/shutr the connection if we have keepalive.
 7356     - BUG/MEDIUM: H2: Make sure htx is set even on empty frames.
 7357     - BUG/MEDIUM: mux-h2: pass CS_FL_ERR_PENDING to h2_wake_some_streams()
 7358     - MEDIUM: stream-int: always consider all CS errors on the send side
 7359     - BUG/MEDIUM: h2: Make sure we don't set CS_FL_ERROR if there's still data.
 7360     - CLEANUP: mux-h2: implement h2s_notify_{send,recv} to report events to subscribers
 7361     - MINOR: mux-h2: add a new function h2s_alert() to call the data layer
 7362     - BUG/MEDIUM: mux-h2: make use of h2s_alert() to report aborts
 7363     - MINOR: connection: add cs_set_error() to set the error bits
 7364     - CLEANUP: mux-h2: make use of cs_set_error()
 7365     - BUG/MINOR: mux-h2: make sure we check the conn_stream in early data
 7366     - BUG/MEDIUM: h2: Don't wait for flow control if the connection had a shutr.
 7367     - MINOR: cli/show_fd: report that a connection is back or not
 7368     - SCRIPTS: add the slack channel URL to the announce script
 7369     - CLEANUP: remove my name and address from the copyright banner
 7370     - DOC: mention in the readme that 1.9 is a stable version now
 7371 
 7372 2018/12/16 : 1.9-dev11
 7373     - BUG/MEDIUM: connection: Don't use the provided conn_stream if it was tried.
 7374     - REGTEST/MINOR: remove double body specification for server txresp
 7375     - BUG/MEDIUM: connections: Remove error flags when retrying.
 7376     - REGTEST/MINOR: skip seamless-reload test with abns socket on freebsd
 7377     - REGTEST/MINOR: remove health-check that can make the test fail
 7378     - DOC: clarify that check-sni needs an argument.
 7379     - DOC: refer to check-sni in the documentation of sni
 7380     - BUG/MEDIUM: mux-h2: fix encoding of non-GET/POST methods
 7381     - BUG/MINOR: mux-h1: Fix conn_mode processing for headerless outgoing messages
 7382     - BUG/MEDIUM: mux-h1: Add a BUSY mode to not loop on pipelinned requests
 7383     - BUG/MEDIUM: mux-h1: Don't loop on the headers parsing if the read0 was received
 7384     - BUG/MEDIUM: htx: Always do a defrag if a block value is replace by a bigger one
 7385     - BUG/MEDIUM: mux-h2: Don't forget to set the CS_FL_EOS flag with htx.
 7386     - BUG/MINOR: hpack: fix off-by-one in header name encoding length calculation
 7387     - CLEANUP: hpack: no need to include chunk.h, only include buf.h
 7388     - MINOR: hpack: simplify the len to bytes conversion
 7389     - MINOR: hpack: use ist2bin() to copy header names in hpack_encode_header()
 7390     - MINOR: hpack: optimize header encoding for short names
 7391     - CONTRIB: hpack: add a compressed stream generator for the encoder
 7392     - MEDIUM: hpack: make it possible to encode any static header name
 7393     - MINOR: hpack: move the length computation and encoding functions to .h
 7394     - MINOR: hpack: provide a function to encode a short indexed header
 7395     - MINOR: hpack: provide a function to encode a long indexed header
 7396     - MINOR: hpack: provide new functions to encode the ":status" header
 7397     - MEDIUM: mux-h2: make use of standard HPACK encoding functions for the status
 7398     - MINOR: hpack: provide a function to encode an HTTP method
 7399     - MEDIUM: mux-h2: make use of hpack_encode_method() to encode the method
 7400     - MINOR: hpack: provide a function to encode an HTTP scheme
 7401     - MEDIUM: mux-h2: make use of hpack_encode_scheme() to encode the scheme
 7402     - MINOR: hpack: provide a function to encode an HTTP path
 7403     - MEDIUM: mux-h2: make use of hpack_encode_path() to encode the path
 7404     - REGTEST: add the HTTP rules test involving HTX processing
 7405     - REORG: connection: centralize the conn_set_{tos,mark,quickack} functions
 7406     - MEDIUM: cli: rework the CLI proxy parser
 7407     - MINOR: cli: parse prompt command in the CLI proxy
 7408     - MINOR: cli: implements 'quit' in the CLI proxy
 7409     - BUG/MINOR: cli: wait for payload data even without prompt
 7410     - MEDIUM: cli: handle payload in CLI proxy
 7411     - MINOR: cli: use pcli_flags for prompt activation
 7412     - MINOR: compression: Rename the function check_legacy_http_comp_flt()
 7413     - MINOR: cache/htx: Don't use the same cache on HTX and legacy HTTP proxies
 7414     - MINOR: cache: Register the cache as a data filter only if response is cacheable
 7415     - MEDIUM: cache/htx: Add the HTX support into the cache
 7416     - MINOR: cache: Improve and simplify the cache configuration check
 7417     - MINOR: filters: Export the name of known filters
 7418     - MEDIUM: cache/compression: Add a way to safely combined compression and cache
 7419     - MEDIUM: cache: Require an explicit filter declaration if other filters are used
 7420     - REORG: htx: merge types+proto into common/htx.h
 7421     - REORG: http: create http_msg.c to place there some legacy HTTP parts
 7422     - REORG: h1: move legacy http functions to http_msg.c
 7423     - REORG: h1: move the h1_state definition to proto_http
 7424     - CLEANUP: h1: remove some occurrences of unneeded h1.h inclusions
 7425     - REORG: h1: merge types+proto into common/h1.h
 7426     - CLEANUP: stream: remove SF_TUNNEL, SF_INITIALIZED, SF_CONN_TAR
 7427     - MEDIUM: mux-h1: implement true zero-copy of DATA blocks
 7428     - MINOR: config: round up global.tune.bufsize to the next multiple of 2 void*
 7429     - BUG/MINOR: mux-h2: refrain from muxing during the preface
 7430     - BUG/MINOR: mux-h2: advertise a larger connection window size
 7431     - DOC: master CLI documentation in management.txt
 7432     - MINOR: mux-h2: avoid copying large blocks into full buffers
 7433     - MEDIUM: mux-h2: implement true zero-copy send of large HTX DATA blocks
 7434     - MINOR: mux-h2: force reads to be HTX-aligned in HTX mode
 7435     - MINOR: cli: change 'show proc' output of old processes
 7436     - BUG/MEDIUM: mux-h1: Fix the zero-copy on output for chunked messages
 7437     - BUG: dns: Prevent stack-exhaustion via recursion loop in dns_read_name
 7438     - BUG: dns: Prevent out-of-bounds read in dns_read_name()
 7439     - BUG: dns: Prevent out-of-bounds read in dns_validate_dns_response()
 7440     - BUG: dns: Fix out-of-bounds read via signedness error in dns_validate_dns_response()
 7441     - BUG: dns: Fix off-by-one write in dns_validate_dns_response()
 7442     - REGTEST: the cache regtest requires haproxy 1.9
 7443     - MEDIUM: cli: store CLI level in the appctx
 7444     - MEDIUM: cli: show and change CLI permissions
 7445     - CLEANUP: cli: use dedicated define instead of appctx ones
 7446     - MEDIUM: cli: handle CLI level from the master CLI
 7447     - BUG/MEDIUM: cli: handle correctly prefix and payload
 7448     - BUILD: Makefile: Implements the help target
 7449     - REGTESTS: adjust the http-rules regtest to support window updates
 7450     - BUG/MEDIUM: connections: Remove CS_FL_EOS | CS_FL_REOS on retry.
 7451     - BUG/MEDIUM: stream_interface: Don't report read0 if we were not connected.
 7452     - BUG/MEDIUM: connection: Just make sure we closed the fd on connection failure.
 7453     - MEDIUM: mux: Add an optional "reset" method.
 7454     - BUG/MEDIUM: mux-h1: Fix loop if server closes its connection with unparsed data
 7455     - MINOR: mux-h1: Add helper functions to wake a stream from recv or send
 7456     - BUG/MEDIUM: mux-h1: Wake the stream for send once the connection is established
 7457     - BUG/MEDIUM: connections: Don't attempt to reuse an unusable connection.
 7458     - MEDIUM: htx: Try to take a connection over if it has no owner.
 7459     - REGTEST: Reg testing improvements.
 7460     - REGTEST: Add a first test for health-checks.
 7461     - REGTEST: Reg test for "check" health-check option.
 7462     - REGTEST: level 1 health-check test 2.
 7463     - REGTEST: Add miscellaneous reg tests for health-checks.
 7464     - REGTEST: add a few HTTP messaging tests
 7465     - MINOR: lb: make the leastconn algorithm more accurate
 7466     - REGTEST: fix missing space in checks/s00001
 7467     - REGTEST: http-messaging: add "option http-buffer-request" for H2 tests
 7468     - BUG/MEDIUM: cache: fix random crash on filter parser's error path
 7469     - MINOR: connection: realign empty buffers in muxes, not transport layers
 7470     - MINOR: mux_h1/h2: simplify the zero-copy Rx alignment
 7471     - MINOR: backend: count the number of connect and reuse per server and per backend
 7472     - BUG/MINOR: stats: fix inversion of failed header rewrites and other statuses
 7473     - MINOR: tools: increase the number of ITOA strings to 16
 7474     - MINOR: cache: report the number of cache lookups and cache hits
 7475     - MEDIUM: tasks: check the global task mask instead of the thread number
 7476     - MINOR: mworker: set all_threads_mask and pid_bit to 1
 7477     - BUG/MINOR: proto_htx: Fix htx_res_set_status to also set the reason
 7478     - BUG/MINOR: stats: Parse post data for HTX streams
 7479     - MINOR: payload/htx: Adapt smp_fetch_len to be HTX aware
 7480     - MINOR: http_fecth: Implement body_len and body_size sample fetches for the HTX
 7481     - MAJOR: lua: Forbid calls to Channel functions for LUA scripts in HTTP proxies
 7482     - MEDIUM: lua/htx: Adapt functions of the HTTP to be compatible with HTX
 7483     - MINOR: lua/htx: Adapt the functions get_in_length and is_full to be HTX aware
 7484     - MAJOR: lua/htx: Adapt HTTP applets to support HTX messages
 7485     - MINOR: lua: Remove useless check on the messages state in HTTP functions
 7486     - BUG/MEDIUM: htx: When performing zero-copy, start from the right offset.
 7487     - BUG/MINOR: mworker: don't use unitialized mworker_proc struct
 7488     - MINOR: mworker/cli: indicate in the master prompt when a reload failed
 7489     - MINOR: cli: implements 'reload' on master CLI
 7490     - BUG/MEDIUM: log: Don't call sample_fetch_as_type if we don't have a stream.
 7491     - BUG/MEDIUM: mux-h1: make sure we always have at least one HTX block to send
 7492     - BUG/MAJOR: backend: only update server's counters when the server exists
 7493     - MINOR: tools: preset the port of fd-based "sockets" to zero
 7494     - BUG/MINOR: log: fix logging to both FD and IP
 7495     - REGTEST: Add a reg test for HTTP cookies.
 7496     - BUILD: ssl: Fix compilation without deprecated OpenSSL 1.1 APIs
 7497     - BUILD: thread: properly report multi-thread support
 7498     - BUG/MINOR: logs: leave startup-logs global and not per-thread
 7499     - BUG/MEDIUM: threads: don't close the thread waker pipe if not init
 7500     - BUG/MAJOR: compression/cache: Make it really works with these both filters
 7501     - BUG/MEDIUM: h2: Don't forget to destroy the h2s after deferred shut.
 7502     - MEDIUM: proxy: Set http-reuse safe as default.
 7503     - MEDIUM: servers: Add a command to limit the number of idling connections.
 7504     - MEDIUM: servers: Replace idle-timeout with pool-purge-delay.
 7505     - MEDIUM: mux: Destroy the stream before trying to add the conn to the idle list.
 7506     - MEDIUM: mux: provide the session to the init() and attach() method.
 7507     - MEDIUM: sessions: Don't keep an infinite number of idling connections.
 7508     - MEDIUM: servers: Be more agressive when adding H2 connection to idle lists.
 7509     - MEDIUM: mux_h2: Always set CS_FL_NOT_FIRST for new conn_streams.
 7510     - BUG/MEDIUM: htx/cache: use the correct class of error codes on abort
 7511     - BUG/MINOR: cache: also consider CF_SHUTR to abort delivery
 7512     - MINOR: pools: Cast to volatile int * instead of int *.
 7513     - MINOR: debug: make the ABORT_NOW macro use a volatile int
 7514     - BUG/MEDIUM: h2: Don't destroy the h2s if it still has a cs attached.
 7515     - BUG/MEDIUM: mux-h1: don't try to process an empty input buffer
 7516     - DOC: clarify the agent-check status line syntax
 7517     - BUG/MAJOR: hpack: fix length check for short names encoding
 7518     - DOC: split the README into README + INSTALL
 7519 
 7520 2018/12/08 : 1.9-dev10
 7521     - MINOR: htx: Rename functions htx_*_to_str() to be H1 specific
 7522     - BUG/MINOR: htx: Force HTTP/1.1 on H1 formatting when version is 1.1 or above
 7523     - BUG/MINOR: fix ssl_fc_alpn and actually add ssl_bc_alpn
 7524     - BUG/MEDIUM: mworker: stop proxies which have no listener in the master
 7525     - BUG/MEDIUM: h1: Destroy a connection after detach if it has no owner.
 7526     - BUG/MEDIUM: h2: Don't forget to wake the tasklet after shutr/shutw.
 7527     - BUG/MINOR: flt_trace/compression: Use the right flag to add the HTX support
 7528     - BUG/MEDIUM: stream_interface: Make REALLY sure we read all the data.
 7529     - MEDIUM: mux-h1: Revamp the way subscriptions are handled.
 7530     - BUG/MEDIUM: mux-h1: Always set CS_FL_RCV_MORE when data are received in h1_recv()
 7531     - MINOR: mux-h1: Make sure to return 1 in h1_recv() when needed
 7532     - BUG/MEDIUM: mux-h1: Release the mux H1 in h1_process() if there is no h1s
 7533     - BUG/MINOR: proto_htx: Truncate the request when an error is detected
 7534     - BUG/MEDIUM: h2: When sending in HTX, make sure the caller knows we sent all.
 7535     - BUG/MEDIUM: mux-h2: properly update the window size in HTX mode
 7536     - BUG/MEDIUM: mux-h2: make sure to always report HTX EOM when consumed by headers
 7537     - BUG/MEDIUM: mux-h2: stop sending HTX once the mux is blocked
 7538     - BUG/MEDIUM: mux-h2: don't send more HTX data than requested
 7539     - MINOR: mux-h2: stop on non-DATA and non-EOM HTX blocks
 7540     - BUG/MEDIUM: h1: Correctly report used data with no len.
 7541     - MEDIUM: h1: Realign the ibuf before calling rcv_buf if needed.
 7542     - BUG/MEDIUM: mux_pt: Always set CS_FL_RCV_MORE.
 7543     - MINOR: htx: make htx_from_buf() adjust the size only on new buffers
 7544     - MINOR: htx: add buf_room_for_htx_data() to help optimize buffer transfers
 7545     - MEDIUM: mux-h1: make use of buf_room_for_htx_data() instead of b_room()
 7546     - MEDIUM: mux-h1: attempt to zero-copy Rx DATA transfers
 7547     - MEDIUM: mux-h1: avoid a double copy on the Tx path whenever possible
 7548     - BUG/MEDIUM: stream-int: don't mark as blocked an empty buffer on Rx
 7549     - BUG/MINOR: mux-h1: Check h1m flags to set the server conn_mode on request path
 7550     - MEDIUM: htx: Rework conversion from a buffer to an htx structure
 7551     - MEDIUM: channel/htx: Add functions for forward HTX data
 7552     - MINOR: mux-h1: Don't adjust anymore the amount of data sent in h1_snd_buf()
 7553     - CLEANUP: htx: Fix indentation here and there in HTX files
 7554     - MINOR: mux-h1: Allow partial data consumption during outgoing data processing
 7555     - BUG/MEDIUM: mux-h2: use the correct offset for the HTX start line
 7556     - BUG/MEDIUM: mux-h2: stop sending using HTX on errors
 7557     - MINOR: mux-h1: Drain obuf if the output is closed after sending data
 7558     - BUG/MEDIUM: mworker: stop every tasks in the master
 7559     - BUG/MEDIUM: htx: Set the right start-line offset after a defrag
 7560     - BUG/MEDIUM: stream: Don't dereference s->txn when it is not there yet.
 7561     - BUG/MEDIUM: connections: Reuse an already attached conn_stream.
 7562     - MINOR: stream-int: add a new blocking condition on the remote connection
 7563     - BUG/MEDIUM: stream-int: don't attempt to receive if the connection is not established
 7564     - BUG/MEDIUM: lua: block on remote connection establishment
 7565     - BUG/MEDIUM: mworker: fix several typos in mworker_cleantasks()
 7566     - SCRIPTS/REGTEST: merge grep+sed into sed in run-regtests
 7567     - BUG/MEDIUM: connections: Split CS_FL_RCV_MORE into 2 flags.
 7568     - BUG/MEDIUM: h1: Don't free the connection if it's an outgoing connection.
 7569     - BUG/MEDIUM: h1: Set CS_FL_REOS if we had a read0.
 7570     - BUG/MEDIUM: mux-h1: Be sure to have a conn_stream to set CS_FL_REOS in h1_recv
 7571     - REGTEST: Move LUA reg test 4 to level 1.
 7572     - MINOR: ist: add functions to copy/uppercase/lowercase into a buffer or string
 7573     - MEDIUM: ist: always turn header names to lower case
 7574     - MINOR: h2: don't turn HTX header names to lower case anymore
 7575     - MEDIUM: ist: use local conversion arrays to case conversion
 7576     - MINOR: htx: switch to case sensitive search of lower case header names
 7577     - MINOR: mux-h1: Set CS_FL_EOS when read0 is detected and no data are pending
 7578     - BUG/MINOR: stream-int: Process read0 even if no data was received in si_cs_recv
 7579     - REGTEST: fix the Lua test file name in test lua/h00002 :-)
 7580     - REGTEST: add a basic test for HTTP rules manipulating headers
 7581     - BUG/MEDIUM: sample: Don't treat SMP_T_METH as SMP_T_STR.
 7582     - MINOR: sample: add bc_http_major
 7583     - BUG/MEDIUM: htx: fix typo in htx_replace_stline() making it fail all the time
 7584     - REGTEST: make the HTTP rules test compatible with HTTP/2 as well
 7585     - BUG/MEDIUM: h2: Don't try to chunk data when using HTX.
 7586     - MINOR: compiler: add a new macro ALREADY_CHECKED()
 7587     - BUILD: h2: mark the start line already checked to avoid warnings
 7588     - BUG/MINOR: mux-h1: Remove the connection header when it is useless
 7589 
 7590 2018/12/02 : 1.9-dev9
 7591     - BUILD/MINOR: ssl: fix build with non-alpn/non-npn libssl
 7592     - BUG/MINOR: mworker: Do not attempt to close(2) fd -1
 7593     - BUILD: compression: fix build error with DEFAULT_MAXZLIBMEM
 7594     - MINOR: compression: always create the compression pool
 7595     - BUG/MEDIUM: mworker: fix FD leak upon reload
 7596     - BUILD: htx: fix fprintf format inconsistency on 32-bit platforms
 7597     - BUILD: buffers: buf.h requires unistd to get ssize_t on libmusl
 7598     - MINOR: initcall: introduce a way to register init functions to call at boot
 7599     - MINOR: init: process all initcalls in order at boot time
 7600     - MEDIUM: init: convert all trivial registration calls to initcalls
 7601     - MINOR: thread: provide a set of lock initialisers
 7602     - MINOR: threads: add new macros to declare self-initializing locks
 7603     - MEDIUM: init: use self-initializing spinlocks and rwlocks
 7604     - MINOR: initcall: apply initcall to all register_build_opts() calls
 7605     - MINOR: initcall: use initcalls for most post_{check,deinit} and per_thread*
 7606     - MINOR: initcall: use initcalls for section parsers
 7607     - MINOR: memory: add a callback function to create a pool
 7608     - MEDIUM: init: use initcall for all fixed size pool creations
 7609     - MEDIUM: memory: use pool_destroy_all() to destroy all pools on deinit()
 7610     - MEDIUM: initcall: use initcalls for a few initialization functions
 7611     - MEDIUM: memory: make the pool cache an array and not a thread_local
 7612     - MINOR: ssl: free ctx when libssl doesn't support NPN
 7613     - BUG/MINOR: proto_htx: only mark connections private if NTLM is detected
 7614     - MINOR: h2: make struct h2_ops static
 7615     - BUG/MEDIUM: mworker: avoid leak of client socket
 7616     - REORG: mworker: declare master variable in global.h
 7617     - BUG/MEDIUM: listeners: CLOEXEC flag is not correctly set
 7618     - CLEANUP: http: Fix typo in init_http's comment
 7619     - BUILD: Makefile: Disable -Wcast-function-type if it exists.
 7620     - BUG/MEDIUM: h2: Don't bogusly error if the previous stream was closed.
 7621     - REGTEST/MINOR: script: add run-regtests.sh script
 7622     - REGTEST: Add a basic test for the cache.
 7623     - BUG/MEDIUM: mux_pt: Don't forget to unsubscribe() on attach.
 7624     - BUG/MINOR: ssl: ssl_sock_parse_clienthello ignores session id
 7625     - BUG/MEDIUM: connections: Wake the stream once the mux is chosen.
 7626     - BUG/MEDIUM: connections: Don't forget to detach the connection from the SI.
 7627     - BUG/MEDIUM: stream_interface: Don't check if the handshake is done.
 7628     - BUG/MEDIUM: stream_interface: Make sure we read all the data available.
 7629     - BUG/MEDIUM: h2: Call h2_process() if there's an error on the connection.
 7630     - REGTEST: Fix several issues.
 7631     - REGTEST: lua: check socket functionality from a lua-task
 7632     - BUG/MEDIUM: session: Remove the session from the session_list in session_free.
 7633     - BUG/MEDIUM: streams: Don't assume we have a CS in sess_update_st_con_tcp.
 7634     - BUG/MEDIUM: connections: Don't assume we have a mux in connect_server().
 7635     - BUG/MEDIUM: connections: Remove the connection from the idle list before destroy.
 7636     - BUG/MEDIUM: session: properly clean the outgoing connection before freeing.
 7637     - BUG/MEDIUM: mux_pt: Don't try to send if handshake is not done.
 7638     - MEDIUM: connections: Put H2 connections in the idle list if http-reuse always.
 7639     - MEDIUM: h2: Destroy a connection with no stream if it has no owner.
 7640     - MAJOR: sessions: Store multiple outgoing connections in the session.
 7641     - MEDIUM: session: Steal owner-less connections on end of transaction.
 7642     - MEDIUM: server: Be smarter about deciding to reuse the last server.
 7643     - BUG/MEDIUM: Special-case http_proxy when dealing with outgoing connections.
 7644     - BUG/MINOR: cfgparse: Fix transition between 2 sections with the same name
 7645     - BUG/MINOR: http: Use out buffer instead of trash to display error snapshot
 7646     - BUG/MINOR: htx: Fix block size calculation when a start-line is added/replaced
 7647     - BUG/MINOR: mux-h1: Fix processing of "Connection: " header on outgoing messages
 7648     - BUG/MEDIUM: mux-h1: Reset the H1 parser when an outgoing message is processed
 7649     - BUG/MINOR: proto_htx: Send outgoing data to client to start response processing
 7650     - BUG/MINOR: htx: Stop a header or a start line lookup on the first EOH or EOM
 7651     - BUG/MINOR: connection: report mux modes when HTX is supported
 7652     - MINOR: htx: add a function to cut the beginning of a DATA block
 7653     - MEDIUM: conn_stream: Add a way to get mux's info on a CS from the upper layer
 7654     - MINOR: mux-h1: Implement get_cs_info() callback
 7655     - MINOR: stream: Rely on CS's info if it exists and fallback on session's ones
 7656     - MINOR: proto_htx: Use conn_stream's info to set t_idle duration when possible
 7657     - MINOR: mux-h1: Don't rely on the stream anymore in h1_set_srv_conn_mode()
 7658     - MINOR: mux-h1: Write last chunk and trailers if not found in the HTX message
 7659     - MINOR: mux-h1: Be prepare to fail when EOM is added during trailers parsing
 7660     - MINOR: mux-h1: Subscribe to send in h1_snd_buf() when not all data have been sent
 7661     - MINOR: mux-h1: Consume channel's data in a loop in h1_snd_buf()
 7662     - MEDIUM: mux-h1: Add keep-alive outgoing connections in connections list
 7663     - MINOR: htx: Add function to add an HTX block just before another one
 7664     - MINOR: htx: Add function to iterate on an HTX message using HTX blocks
 7665     - MINOR: htx: Add a function to find the HTX block corresponding to a data offset
 7666     - MINOR: stats: Don't add end-of-data marker and trailers in the HTX response
 7667     - MEDIUM: htx: Change htx_sl to be a struct instead of an union
 7668     - MINOR: htx: Add the start-line offset for the HTX message in the HTX structure
 7669     - MEDIUM: htx: Don't rely on h1_sl anymore except during H1 header parsing
 7670     - MINOR: proto-htx: Use the start-line flags to set the HTTP messsage ones
 7671     - MINOR: htx: Add BODYLESS flags on the HTX start-line and the HTTP message
 7672     - MINOR: proto_htx: Use full HTX messages to send 100-Continue responses
 7673     - MINOR: proto_htx: Use full HTX messages to send 103-Early-Hints responses
 7674     - MINOR: proto_htx: Use full HTX messages to send 401 and 407 responses
 7675     - MINOR: proto_htx: Send valid HTX message when redir mode is enabled on a server
 7676     - MINOR: proto_htx: Send valid HTX message to send 30x responses
 7677     - MEDIUM: proto_htx: Convert all HTTP error messages into HTX
 7678     - MINOR: mux-h1: Process conn_mode on the EOH when no connection header is found
 7679     - MINOR: mux-h1: Change client conn_mode on an explicit close for the response
 7680     - MINOR: mux-h1: Capture bad H1 messages
 7681     - MAJOR: filters: Adapt filters API to be compatible with the HTX represenation
 7682     - MEDIUM: proto_htx/filters: Add data filtering during the forwarding
 7683     - MINOR: flt_trace: Adapt to be compatible with the HTX representation
 7684     - MEDIUM: compression: Adapt to be compatible with the HTX representation
 7685     - MINOR: h2: implement H2->HTX request header frame transcoding
 7686     - MEDIUM: mux-h2: register mux for both HTTP and HTX modes
 7687     - MEDIUM: mux-h2: make h2_rcv_buf() support HTX transfers
 7688     - MEDIUM: mux-h2: make h2_snd_buf() HTX-aware
 7689     - MEDIUM: mux-h2: add basic H2->HTX transcoding support for headers
 7690     - MEDIUM: mux-h2: implement emission of H2 headers frames from HTX blocks
 7691     - MEDIUM: mux-h2: implement the emission of DATA frames from HTX DATA blocks
 7692     - MEDIUM: mux-h2: support passing H2 DATA frames to HTX blocks
 7693     - BUG/MINOR: cfgparse: Fix the call to post parser of the last sections parsed
 7694     - BUG/MEDIUM: mux-h2: don't lose the first response header in HTX mode
 7695     - BUG/MEDIUM: mux-h2: remove the HTX EOM block on H2 response headers
 7696     - MINOR: listener: the mux_proto entry in the bind_conf is const
 7697     - MINOR: connection: create conn_get_best_mux_entry()
 7698     - MINOR: server: the mux_proto entry in the server is const
 7699     - MINOR: config: make sure to associate the proper mux to bind and servers
 7700     - MINOR: hpack: add ":path" to the list of common header fields
 7701     - MINOR: h2: add new functions to produce an HTX message from an H2 response
 7702     - MINOR: mux-h2: mention that the mux is compatible with both sides
 7703     - MINOR: mux-h2: implement an outgoing stream allocator : h2c_bck_stream_new()
 7704     - MEDIUM: mux-h2: start to create the outgoing mux
 7705     - MEDIUM: mux-h2: implement encoding of H2 request on the backend side
 7706     - MEDIUM: mux-h2: make h2_frt_decode_headers() direction-agnostic
 7707     - MEDIUM: mux-h2: make h2_process_demux() capable of processing responses as well
 7708     - MEDIUM: mux-h2: Implement h2_attach().
 7709     - MEDIUM: mux-h2: Don't bother flagging outgoing connections as TOOMANY.
 7710     - REGTEST: Fix LEVEL 4 script 0 of "connection" module.
 7711     - MINOR: connection: Fix a comment.
 7712     - MINOR: mux: add a "max_streams" method.
 7713     - MEDIUM: servers: Add a way to keep idle connections alive.
 7714     - CLEANUP: fix typos in the htx subsystem
 7715     - CLEANUP: Fix typo in the chunk headers file
 7716     - CLEANUP: Fix typos in the h1 subsystem
 7717     - CLEANUP: Fix typos in the h2 subsystem
 7718     - CLEANUP: Fix a typo in the mini-clist header
 7719     - CLEANUP: Fix a typo in the proto_htx subsystem
 7720     - CLEANUP: Fix typos in the proto_tcp subsystem
 7721     - CLEANUP: Fix a typo in the signal subsystem
 7722     - CLEANUP: Fix a typo in the session subsystem
 7723     - CLEANUP: Fix a typo in the queue subsystem
 7724     - CLEANUP: Fix typos in the shctx subsystem
 7725     - CLEANUP: Fix typos in the socket pair protocol subsystem
 7726     - CLEANUP: Fix typos in the map management functions
 7727     - CLEANUP: Fix typo in the fwrr subsystem
 7728     - CLEANUP: Fix typos in the cli subsystem
 7729     - CLEANUP: Fix typo in the 51d subsystem
 7730     - CLEANUP: Fix a typo in the base64 subsystem
 7731     - CLEANUP: Fix a typo in the connection subsystem
 7732     - CLEANUP: Fix a typo in the protocol header file
 7733     - CLEANUP: Fix a typo in the checks header file
 7734     - CLEANUP: Fix typos in the file descriptor subsystem
 7735     - CLEANUP: Fix a typo in the listener subsystem
 7736     - BUG/MINOR: lb-map: fix unprotected update to server's score
 7737     - BUILD: threads: fix minor build warnings when threads are disabled
 7738 
 7739 2018/11/25 : 1.9-dev8
 7740     - REORG: config: extract the global section parser into cfgparse-global
 7741     - REORG: config: extract the proxy parser into cfgparse-listen.c
 7742     - BUILD: update the list of supported targets and compilers in makefile and readme
 7743     - BUILD: reorder the objects in the makefile
 7744     - BUILD: Makefile: make "V=1" show some of the commands that are executed
 7745     - BUILD: Makefile: add the quiet mode to a few more targets
 7746     - BUILD: Makefile: add "$(Q)" to clean, tags and cscope targets
 7747     - BUILD: Makefile: switch to quiet mode by default for CC/LD/AR
 7748     - MINOR: cli: format `show proc` to be more readable
 7749     - MINOR: cli: displays uptime in `show proc`
 7750     - MINOR: cli: show master information in 'show proc'
 7751     - BUG/MEDIUM: hpack: fix encoding of "accept-ranges" field
 7752     - MAJOR: mux-h1: Remove the rxbuf and decode HTTP messages in channel's buffer
 7753     - BUG/MINOR: mux-h1: Enable keep-alive on server side
 7754     - BUG/MEDIUM: mux-h1: Fix freeze when the kernel splicing is used
 7755     - BUG/MEDIUM: mux-h1: Don't set the flag CS_FL_RCV_MORE when nothing was parsed
 7756     - BUG/MINOR: stats/htx: Remove channel's output when the request is eaten
 7757     - BUG/MINOR: proto_htx: Fix request/response synchronisation on error
 7758     - MINOR: stream-int: Notify caller when an error is reported after a rcv_pipe()
 7759     - MINOR: stream-int: Notify caller when an error is reported after a rcv_buf()
 7760     - BUG/MINOR: stream-int: Don't call snd_buf() if there are still data in the pipe
 7761     - MINOR: stream-int: remove useless checks on CS and conn flags in si_cs_send()
 7762     - BUG/MINOR: config: Be aware of the HTX during the check of mux protocols
 7763     - BUG/MINOR: mux-htx: Fix bad test on h1c flags in h1_recv_allowed()
 7764     - MEDIUM: mworker: wait mode use standard init code path
 7765     - MINOR: log: introduce ha_notice()
 7766     - MINOR: mworker: use ha_notice to announce a new worker
 7767     - BUG/MEDIUM: http_fetch: Make sure name is initialized before http_find_header.
 7768     - MINOR: cli: add mworker_accept_wrapper to 'show fd'
 7769     - MEDIUM: signal: signal_unregister() removes every handlers
 7770     - BUG/MEDIUM: mworker: unregister the signals of main()
 7771     - MINOR: cli: add a few missing includes in proto/cli.h
 7772     - REORG: time/activity: move activity measurements to activity.{c,h}
 7773     - MINOR: activity: report the average loop time in "show activity"
 7774     - MINOR: activity: add configuration and CLI support for "profiling.tasks"
 7775     - MEDIUM: tasks: collect per-task CPU time and latency
 7776     - MINOR: sample: add cpu_calls, cpu_ns_avg, cpu_ns_tot, lat_ns_avg, lat_ns_tot
 7777     - MINOR: cli/activity: rename the stolen CPU time fields to mention milliseconds
 7778     - BUG/MINOR: cli: Fix memory leak
 7779     - BUG/MINOR: mworker: fix FD leak and memory leak in error path
 7780     - MINOR: poller: move the call of tv_update_date() back to the pollers
 7781     - MINOR: polling: add an option to support busy polling
 7782     - MINOR: server: Add "alpn" and "npn" keywords.
 7783     - MEDIUM: connection: Don't bother reactivating polling after connection retry.
 7784     - MAJOR: connections: Defer mux creation for outgoing connection if alpn is set.
 7785     - MEDIUM: ssl: Add ssl_bc_alpn and ssl_bc_npn sample fetches.
 7786     - MINOR: servers: Free [idle|safe|priv]_conns on exit.
 7787     - REGTEST: add the option to test only a specific set of files
 7788     - REGTEST: add a test for connections to a "dispatch" address
 7789     - BUG/MEDIUM: connections: Don't reset the conn flags in *connect_server().
 7790     - MINOR: server: Only defined conn_complete_server if USE_OPENSSL is set.
 7791     - BUG/MEDIUM: servers: Don't check if we have a conn_stream too soon.
 7792     - BUG/MEDIUM: sessions: Set sess->origin to NULL if the origin was destroyed.
 7793     - MEDIUM: servers: Store the connection in the SI until we have a mux.
 7794     - BUG/MEDIUM: h2: wake the processing task up after demuxing
 7795     - BUG/MEDIUM: h2: restart demuxing after releasing buffer space
 7796 
 7797 2018/11/18 : 1.9-dev7
 7798     - BUILD: cache: fix a build warning regarding too large an integer for the age
 7799     - CLEANUP: fix typos in the comments of the Makefile
 7800     - CLEANUP: fix a typo in a comment for the contrib/halog subsystem
 7801     - CLEANUP: fix typos in comments for the contrib/modsecurity subsystem
 7802     - CLEANUP: fix typos in comments for contrib/spoa_example
 7803     - CLEANUP: fix typos in comments for contrib/wireshark-dissectors
 7804     - DOC: Fix typos in README and CONTRIBUTING
 7805     - MINOR: log: slightly improve error message syntax on log failure
 7806     - DOC: logs: the format directive was missing from the second log part
 7807     - MINOR: log: report the number of dropped logs in the stats
 7808     - MEDIUM: log: add support for logging to existing file descriptors
 7809     - MEDIUM: log: support a new "short" format
 7810     - MEDIUM: log: add a new "raw" format
 7811     - BUG/MEDIUM: stream-int: change the way buffer room is requested by a stream-int
 7812     - BUG/MEDIUM: stream-int: convert some co_data() checks to channel_is_empty()
 7813     - MINOR: namespaces: don't build namespace.c if disabled
 7814     - BUILD/MEDIUM: threads/affinity: DragonFly build fix
 7815     - MINOR: http: Add new "early-hint" http-request action.
 7816     - MINOR: http: Make new "early-hint" http-request action really be parsed.
 7817     - MINOR: http: Implement "early-hint" http request rules.
 7818     - MINOR: doc: Add information about "early-hint" http-request action.
 7819     - DOC: early-hints: fix truncated line.
 7820     - MINOR: mworker: only close std{in,out,err} in daemon mode
 7821     - BUG/MEDIUM: log: don't CLOEXEC the inherited FDs
 7822     - BUG/MEDIUM: Make sure stksess is properly aligned.
 7823     - BUG/MEDIUM: stream-int: make failed splice_in always subscribe to recv
 7824     - BUG/MEDIUM: stream-int: clear CO_FL_WAIT_ROOM after splicing data in
 7825     - BUG/MINOR: stream-int: make sure not to go through the rcv_buf path after splice()
 7826     - CONTRIB: debug: fix build related to conn_stream flags change
 7827     - REGTEST: fix scripts 1 and 3 to accept development version
 7828     - BUG/MINOR: http_fetch: Remove the version part when capturing the request uri
 7829     - MINOR: http: Regroup return statements of http_req_get_intercept_rule at the end
 7830     - MINOR: http: Regroup return statements of http_res_get_intercept_rule at the end
 7831     - BUG/MINOR: http: Be sure to sent fully formed HTTP 103 responses
 7832     - MEDIUM: jobs: support unstoppable jobs for soft stop
 7833     - MEDIUM: listeners: support unstoppable listener
 7834     - MEDIUM: cli: worker socketpair is unstoppable
 7835     - BUG/MINOR: stream-int: set SI_FL_WANT_PUT in sess_establish()
 7836     - MINOR: stream: move the conn_stream specific calls to the stream-int
 7837     - BUG/MINOR: config: Copy default error messages when parsing of a backend starts
 7838     - CLEANUP: h2: minimum documentation for recent API changes
 7839     - MINOR: mux: implement a get_first_cs() method
 7840     - MINOR: stream-int: make conn_si_send_proxy() use cs_get_first()
 7841     - MINOR: stream-int: relax the forwarding rules in stream_int_notify()
 7842     - MINOR: stream-int: expand the flags to 32-bit
 7843     - MINOR: stream-int: rename SI_FL_WAIT_ROOM to SI_FL_RXBLK_ROOM
 7844     - MINOR: stream-int: introduce new SI_FL_RXBLK flags
 7845     - MINOR: stream-int: add new functions si_{rx,tx}_{blocked,endp_ready}()
 7846     - MINOR: stream-int: replace SI_FL_WANT_PUT with !SI_FL_RX_WAIT_EP
 7847     - MINOR: stream-int: use si_rx_blocked()/si_tx_blocked() to check readiness
 7848     - MEDIUM: stream-int: use si_rx_buff_{rdy,blk} to report buffer readiness
 7849     - MINOR: stream-int: replace si_{want,stop}_put() with si_rx_endp_{more,done}()
 7850     - MEDIUM: stream-int: update the endp polling status only at the end of si_cs_recv()
 7851     - MINOR: stream-int: make si_sync_recv() simply check ENDP before si_cs_recv()
 7852     - MINOR: stream-int: automatically mark applets as ready if they block on the channel
 7853     - MEDIUM: stream-int: fix the si_cant_put() calls used for end point readiness
 7854     - MEDIUM: stream-int: fix the si_cant_put() calls used for buffer readiness
 7855     - MEDIUM: stream-int: use si_rx_shut_blk() to indicate the SI is closed
 7856     - MEDIUM: stream-int: unconditionally call si_chk_rcv() in update and notify
 7857     - MEDIUM: stream-int: make use of si_rx_chan_{rdy,blk} to control the stream-int from the channel
 7858     - MINOR: stream-int: replace si_cant_put() with si_rx_room_{blk,rdy}()
 7859     - MEDIUM: connections: Wait until the connection is established to try to recv.
 7860     - MEDIUM: mux: Teach the mux_pt how to deal with idle connections.
 7861     - MINOR: mux: Add a new "avail_streams" method.
 7862     - MINOR: mux: Add a destroy() method.
 7863     - MINOR: sessions: Start to store the outgoing connection in sessions.
 7864     - MAJOR: connections: Detach connections from streams.
 7865     - MINOR: conn_stream: Add a flag to notify the mux it should flush its buffers
 7866     - MINOR: htx: Add proto_htx.c file
 7867     - MINOR: conn_stream: Add a flag to notify the mux it must respect the reserve
 7868     - MINOR: http: Add standalone functions to parse a start-line or a header
 7869     - MINOR: http: Call http_send_name_header with the stream instead of the txn
 7870     - MINOR: conn_stream: Add a flag to notify the SI some data were received
 7871     - MINOR: http: Add macros to check if a stream uses the HTX representation
 7872     - MEDIUM: proto_htx: Add HTX analyzers and use it when the mux H1 is used
 7873     - MEDIUM: mux-h1: Add dummy mux to handle HTTP/1.1 connections
 7874     - MEDIUM: mux-h1: Add parsing of incoming and ougoing HTTP messages
 7875     - MAJOR: mux-h1/proto_htx: Handle keep-alive connections in the mux
 7876     - MEDIUM: mux-h1: Add support of the kernel TCP splicing to forward data
 7877     - MEDIUM: htx: Add API to deal with the internal representation of HTTP messages
 7878     - MINOR: http_htx: Add functions to manipulate HTX messages in http_htx.c
 7879     - MINOR: proto_htx: Add some functions to handle HTX messages
 7880     - MAJOR: mux-h1/proto_htx: Switch mux-h1 and HTX analyzers on the HTX representation
 7881     - MINOR: http_htx: Add functions to replace part of the start-line
 7882     - MINOR: http_htx: Add functions to retrieve a specific occurrence of a header
 7883     - MINOR: proto_htx: Rewrite htx_apply_redirect_rule to handle HTX messages
 7884     - MINOR: proto_htx: Add the internal function htx_del_hdr_value
 7885     - MINOR: proto_htx: Add the internal function htx_fmt_res_line
 7886     - MINOR: proto_htx: Add functions htx_transform_header and htx_transform_header_str
 7887     - MINOR: proto_htx: Add functions htx_req_replace_stline and htx_res_set_status
 7888     - MINOR: proto_htx: Add function to build and send HTTP 103 responses
 7889     - MINOR: proto_htx: Add functions htx_req_get_intercept_rule and htx_res_get_intercept_rule
 7890     - MINOR: proto_htx: Add functions to apply req* and rsp* rules on HTX messages
 7891     - MINOR: proto_htx: Add functions to manage cookies on HTX messages
 7892     - MINOR: proto_htx: Add functions to check the cacheability of HTX messages
 7893     - MINOR: proto_htx: Add functions htx_send_name_header
 7894     - MINOR: proto_htx: Add functions htx_perform_server_redirect
 7895     - MINOR: proto_htx: Add functions to handle the stats applet
 7896     - MEDIUM: proto_htx: Adapt htx_process_req_common to handle HTX messages
 7897     - MEDIUM: proto_htx: Adapt htx_process_request to handle HTX messages
 7898     - MINOR: proto_htx: Adapt htx_process_tarpit to handle HTX messages
 7899     - MEDIUM: proto_htx: Adapt htx_wait_for_request_body to handle HTX messages
 7900     - MEDIUM: proto_htx: Adapt htx_process_res_common to handle HTX messages
 7901     - MINOR: http_fetch: Add smp_prefetch_htx
 7902     - MEDIUM: http_fetch: Adapt all fetches to handle HTX messages
 7903     - MEDIUM: mux-h1: Wait for connection establishment before consuming channel's data
 7904     - MINOR: stats/htx: Adapt the stats applet to handle HTX messages
 7905     - MINOR: stream: Don't reset sov value with HTX messages
 7906     - MEDIUM: mux-h1: Handle errors and timeouts in the stream
 7907     - MINOR: filters/htx: Forbid filters when the HTX is enabled on a proxy
 7908     - MINOR: lua/htx: Forbid lua usage when the HTX is enabled on a proxy
 7909     - CLEANUP: Fix some typos in the haproxy subsystem
 7910     - CLEANUP: Fix typos in the dns subsystem
 7911     - CLEANUP: Fix typos in the pattern subsystem
 7912     - CLEANUP: fix 2 typos in the xxhash subsystem
 7913     - CLEANUP: fix a few typos in the comments of the server subsystem
 7914     - CLEANUP: fix a misspell in tests/filltab25.c
 7915     - CLEANUP: fix a typo found in the stream subsystem
 7916     - CLEANUP: fix typos in comments in ebtree
 7917     - CLEANUP: fix typos in reg-tests
 7918     - CLEANUP: fix typos in the comments of the vars subsystem
 7919     - CLEANUP: fix typos in the hlua_fcn subsystem
 7920     - CLEANUP: fix typos in the proto_http subsystem
 7921     - CLEANUP: fix typos in the proxy subsystem
 7922     - CLEANUP: fix typos in the ssl_sock subsystem
 7923     - DOC: Fix typos in different subsections of the documentation
 7924     - DOC: fix a few typos in the documentation
 7925     - MINOR: Fix an error message thrown when we run out of memory
 7926     - MINOR: Fix typos in error messages in the proxy subsystem
 7927     - MINOR: fix typos in the examples files
 7928     - CLEANUP: Fix a typo in the stats subsystem
 7929     - CLEANUP: Fix typos in the acl subsystem
 7930     - CLEANUP: Fix typos in the cache subsystem
 7931     - CLEANUP: Fix typos in the cfgparse subsystem
 7932     - CLEANUP: Fix typos in the filters subsystem
 7933     - CLEANUP: Fix typos in the http subsystem
 7934     - CLEANUP: Fix typos in the log subsystem
 7935     - CLEANUP: Fix typos in the peers subsystem
 7936     - CLEANUP: Fix typos in the regex subsystem
 7937     - CLEANUP: Fix typos in the sample subsystem
 7938     - CLEANUP: Fix typos in the spoe subsystem
 7939     - CLEANUP: Fix typos in the standard subsystem
 7940     - CLEANUP: Fix typos in the stick_table subsystem
 7941     - CLEANUP: Fix typos in the task subsystem
 7942     - MINOR: Fix typo in error message in the standard subsystem
 7943     - CLEANUP: fix typos in the comments of hlua
 7944     - MINOR: Fix typo in the error 500 output of hlua
 7945     - MINOR: Fix a typo in a warning message in the spoe subsystem
 7946 
 7947 2018/11/11 : 1.9-dev6
 7948     - BUG/MEDIUM: tools: fix direction of my_ffsl()
 7949     - BUG/MINOR: cli: forward the whole command on master CLI
 7950     - BUG/MEDIUM: auth/threads: use of crypt() is not thread-safe
 7951     - MINOR: compat: automatically detect support for crypt_r()
 7952     - MEDIUM: auth/threads: make use of crypt_r() on systems supporting it
 7953     - DOC: split the http-request actions in their own section
 7954     - DOC: split the http-response actions in their own section
 7955     - BUG/MAJOR: stream-int: don't call si_cs_recv() in stream_int_chk_rcv_conn()
 7956     - BUG/MINOR: tasks: make sure wakeup events are properly reported to subscribers
 7957     - MINOR: stats: report the number of active jobs and listeners in "show info"
 7958     - MINOR: stats: report the number of active peers in "show info"
 7959     - MINOR: stats: report the number of currently connected peers
 7960     - MINOR: cli: show the number of reload in 'show proc'
 7961     - MINOR: cli: can't connect to the target CLI
 7962     - MEDIUM: mworker: does not create the CLI proxy when no listener
 7963     - MINOR: mworker: displays more information when leaving
 7964     - MEDIUM: mworker: exit with the incriminated exit code
 7965     - MINOR: mworker: displays a message when a worker is forked
 7966     - MEDIUM: mworker: leave when the master die
 7967     - CLEANUP: stream-int: retro-document si_cs_io_cb()
 7968     - BUG/MEDIUM: mworker: does not abort() in mworker_pipe_register()
 7969     - BUG/MEDIUM: stream-int: don't wake up for nothing during SI_ST_CON
 7970     - BUG/MEDIUM: cli: crash when trying to access a worker
 7971     - DOC: restore note about "independant" typo
 7972     - MEDIUM: stream: implement stream_buf_available()
 7973     - MEDIUM: appctx: check for allocation attempts in buffer allocation callbacks
 7974     - MINOR: stream-int: rename si_applet_{want|stop|cant}_{get|put}
 7975     - MINOR: stream-int: add si_done_{get,put} to indicate that we won't do it anymore
 7976     - MINOR: stream-int: use si_cant_put() instead of setting SI_FL_WAIT_ROOM
 7977     - MINOR: stream-int: make use of si_done_{get,put}() in shut{w,r}
 7978     - MINOR: stream-int: make it clear that si_ops cannot be null
 7979     - MEDIUM: stream-int: temporarily make si_chk_rcv() take care of SI_FL_WAIT_ROOM
 7980     - MINOR: stream-int: factor the SI_ST_EST state test into si_chk_rcv()
 7981     - MEDIUM: stream-int: make SI_FL_WANT_PUT reflect CF_DONT_READ
 7982     - MEDIUM: stream-int: always call si_chk_rcv() when we make room in the buffer
 7983     - MEDIUM: stream-int: make si_chk_rcv() check that SI_FL_WAIT_ROOM is cleared
 7984     - MINOR: stream-int: replace si_update() with si_update_both()
 7985     - MEDIUM: stream-int: make stream_int_update() aware of the lower layers
 7986     - CLEANUP: stream-int: remove the now unused si->update() function
 7987     - MEDIUM: stream-int: Rely only on SI_FL_WAIT_ROOM to stop data receipt
 7988     - MEDIUM: stream-int: Try to read data even if channel's buffer seems to be full
 7989     - BUG/MINOR: config: better detect the presence of the h2 pattern in npn/alpn
 7990 
 7991 2018/10/28 : 1.9-dev5
 7992     - BUILD: Makefile: add the new ERR variable to force -Werror
 7993     - MINOR: freq_ctr: add swrate_add_scaled() to work with large samples
 7994     - MINOR: stream_interface: Avoid calling si_cs_send/recv if not needed.
 7995     - CLEANUP: http: Remove the unused function http_find_header
 7996     - MINOR: h1: Export some functions parsing the value of some HTTP headers
 7997     - BUG/MEDIUM: stream-int: don't set SI_FL_WAIT_ROOM on CF_READ_DONTWAIT
 7998     - MINOR: proxy: add a new option "http-use-htx"
 7999     - BUG/MEDIUM: pools: fix the minimum allocation size
 8000     - MINOR: shctx: Shared objects block by block allocation.
 8001     - MINOR: cache: Larger HTTP objects caching.
 8002     - MINOR: shctx: Add a maximum object size parameter.
 8003     - MINOR: cache: Add "max-object-size" option.
 8004     - DOC: Update about the cache support for big objects.
 8005     - BUG/MINOR: cache: Crashes with "total-max-size" > 2047(MB).
 8006     - BUG/MINOR: cache: Wrong usage of shctx_init().
 8007     - BUG/MINOR: ssl: Wrong usage of shctx_init().
 8008     - MINOR: cache: Avoid usage of atoi() when parsing "max-object-size".
 8009     - MINOR: shctx: Change max. object size type to unsigned int.
 8010     - DOC: cache: Missing information about "total-max-size" and "max-object-size"
 8011     - CLEANUP: tools: fix misleading comment above function LIM2A
 8012     - MEDIUM: channel: merge back flags CF_WRITE_PARTIAL and CF_WRITE_EVENT
 8013     - BUG/MINOR: only mark connections private if NTLM is detected
 8014     - BUG/MINOR: only auto-prefer last server if lb-alg is non-deterministic
 8015     - MINOR: stream: don't prune variables if the list is empty
 8016     - MINOR: stream-int: add si_alloc_ibuf() to ease input buffer allocation
 8017     - MEDIUM: stream-int: replace channel_alloc_buffer() with si_alloc_ibuf() everywhere
 8018     - MEDIUM: stream: always call si_cs_recv() after a failed buffer allocation
 8019     - MEDIUM: stream: don't try to send first in process_stream()
 8020     - MEDIUM: stream-int: make si_update() synchronize flag changes before the I/O
 8021     - MEDIUM: stream-int: call si_cs_process() in stream_int_update_conn
 8022     - MINOR: stream-int: don't needlessly call tasklet_wakeup() in stream_int_chk_snd_conn()
 8023     - MINOR: stream-int: make stream_int_notify() not wake the tasklet up
 8024     - MINOR: stream-int: don't needlessly call si_cs_send() in si_cs_process()
 8025     - MINOR: mworker: number of reload in the life of a worker
 8026     - MEDIUM: mworker: each worker socketpair is a CLI listener
 8027     - REORG: mworker: move struct mworker_proc to global.h
 8028     - MINOR: server: export new_server() function
 8029     - MEDIUM: mworker: move proc_list gen before proxies startup
 8030     - MEDIUM: mworker: add proc_list in global.h
 8031     - MEDIUM: mworker: proxy for the master CLI
 8032     - MEDIUM: mworker: create CLI listeners from argv[]
 8033     - MEDIUM: cli: disable some keywords in the master
 8034     - MEDIUM: mworker: find the server ptr using a CLI prefix
 8035     - MEDIUM: cli: 'show proc' displays processus
 8036     - MEDIUM: cli: implement 'mode cli' proxy analyzers
 8037     - MINOR: cli: displays sockpair@ in "show cli sockets"
 8038     - MEDIUM: cli: enable "show cli sockets" for the master
 8039     - MINOR: cli: put @master @<relative pid> @!<pid> in the help
 8040     - MEDIUM: listeners: set O_CLOEXEC on the accepted FDs
 8041     - MEDIUM: mworker: stop the master proxy in the workers
 8042     - MEDIUM: channel: reorder the channel analyzers for the cli
 8043     - MEDIUM: cli: write a prompt for the CLI proxy of the master
 8044     - MINOR: cli: helper to write an response message and close
 8045     - MINOR: cache: Add "Age" header.
 8046     - REGTEST: make the IP+port logging test more reliable
 8047     - BUG/MINOR: memory: make the thread-local cache allocator set the debugging link
 8048     - BUG/MAJOR: http: http_txn_get_path() may deference an inexisting buffer
 8049     - BUG/MINOR: backend: assign the wait list after the error check
 8050 
 8051 2018/10/21 : 1.9-dev4
 8052     - BUILD: Allow configuration of pcre-config path
 8053     - DOC: clarify force-private-cache is an option
 8054     - BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2
 8055     - REORG: http: move the code to different files
 8056     - REORG: http: move HTTP rules parsing to http_rules.c
 8057     - CLEANUP: http: remove some leftovers from recent cleanups
 8058     - BUILD: Makefile: add a "make opts" target to simply show the build options
 8059     - BUILD: Makefile: speed up compiler options detection
 8060     - BUG/MINOR: backend: check that the mux installed properly
 8061     - BUG/MEDIUM: h2: check that the connection is still valid at the end of init()
 8062     - BUG/MEDIUM: h2: make h2_stream_new() return an error on memory allocation failure
 8063     - REGTEST/MINOR: compatibility: use unix@ instead of abns@ sockets
 8064     - MINOR: ssl: cleanup old openssl API call
 8065     - MINOR: ssl: generate-certificates for BoringSSL
 8066     - BUG/MEDIUM: buffers: Make sure we don't wrap in ci_insert_line2/b_rep_blk.
 8067     - MEDIUM: ssl: add support for ciphersuites option for TLSv1.3
 8068     - CLEANUP: haproxy: Remove unused variable
 8069     - CLEANUP: h1: Fix debug warnings for h1 headers
 8070     - CLEANUP: stick-tables: Remove unneeded double (()) around conditional clause
 8071     - MEDIUM: task: perform a single tree lookup per run queue batch
 8072     - BUG/MEDIUM: Cur/CumSslConns counters not threadsafe.
 8073     - BUG/MINOR: threads: move declaration of capabilities to config.h
 8074     - OPTIM: tools: optimize my_ffsl() for x86_64
 8075     - BUG/MINOR: h2: null-deref
 8076     - BUG/MINOR: checks: queues null-deref
 8077     - MINOR: connections: Introduce an unsubscribe method.
 8078     - MEDIUM: connections: Change struct wait_list to wait_event.
 8079     - BUG/MEDIUM: h2: Make sure we're not in the send list on flow control.
 8080     - BUG/MEDIUM: mworker: segfault receiving SIGUSR1 followed by SIGTERM.
 8081     - BUG/MEDIUM: stream: Make sure to unsubscribe before si_release_endpoint.
 8082     - MINOR: http: Move comment about some HTTP macros in the right header file
 8083     - MINOR: stats: Add missing include
 8084     - MINOR: http: Export some functions and do cleanup to prepare HTTP refactoring
 8085     - MEDIUM: http: Ignore http-pretend-keepalive option on frontend
 8086     - MEDIUM: http: Ignore http-tunnel option on backend
 8087     - MINOR: http: Use same flag for httpclose and forceclose options
 8088     - MINOR: h1: Add EOH marker during headers parsing
 8089     - MINOR: conn-stream: Add CL_FL_NOT_FIRST flag
 8090     - MINOR: h1: Change the union h1_sl to use indirect strings to store infos
 8091     - MINOR: h1: Add the flag H1_MF_NO_PHDR to not add pseudo-headers during parsing
 8092     - MINOR: log: make sess_log() support sess=NULL
 8093     - MINOR: chunk: add chunk_cpy() and chunk_cat()
 8094     - MEDIUM: h2: stop relying on H2_SS_IDLE / H2_SS_CLOSED
 8095     - CLEANUP: h2: rename h2c_snd_settings() to h2c_send_settings()
 8096     - MINOR: h2: don't try to send data before preface
 8097     - MINOR: h2: unify the mux init function
 8098     - MINOR: h2: retrieve the front proxy from the caller instead of the session
 8099     - MINOR: h2: split h2c_stream_new() into h2s_new() + h2c_frt_stream_new()
 8100     - MINOR: h2: add a new flag to quickly distinguish front vs back connection
 8101     - BUG/MEDIUM: mworker: don't poll on LI_O_INHERITED listeners
 8102     - BUG/MEDIUM: stream: don't crash on out-of-memory
 8103     - BUILD: compiler: add a new statement "__unreachable()"
 8104     - BUILD: lua: silence some compiler warnings about potential null derefs
 8105     - BUILD: ssl: fix null-deref warning in ssl_fc_cipherlist_str sample fetch
 8106     - BUILD: ssl: fix another null-deref warning in ssl_sock_switchctx_cbk()
 8107     - BUILD: stick-table: make sure not to fail on task_new() during initialization
 8108     - BUILD: peers: check allocation error during peers_init_sync()
 8109     - MINOR: tools: add a new function atleast2() to test masks for more than 1 bit
 8110     - MINOR: config: use atleast2() instead of my_popcountl() where relevant
 8111     - MEDIUM: fd/threads: only grab the fd's lock if the FD has more than one thread
 8112     - MAJOR: tasks: create per-thread wait queues
 8113     - OPTIM: tasks: group all tree roots per cache line
 8114     - DOC: Fix a few typos
 8115     - MINOR: pools: allocate most memory pools from an array
 8116     - MINOR: pools: split pool_free() in the lockfree variant
 8117     - MEDIUM: pools: implement a thread-local cache for pool entries
 8118     - BUG/MEDIUM: threads: fix thread_release() at the end of the rendez-vous point
 8119     - Revert "BUILD: lua: silence some compiler warnings about potential null derefs"
 8120     - BUILD: lua: silence some compiler warnings about potential null derefs (#2)
 8121     - MINOR: lua: all functions calling lua_yieldk() may return
 8122     - BUILD: lua: silence some compiler warnings after WILL_LJMP
 8123     - BUILD: Makefile: silence an option conflict warning with clang
 8124     - MINOR: server: Use memcpy() instead of strncpy().
 8125     - CLEANUP: state-file: make the path concatenation code a bit more consistent
 8126     - MINOR: build: Disable -Wstringop-overflow.
 8127     - MINOR: cfgparse: Write 130 as 128 as 0x82 and 0x80.
 8128     - MINOR: peers: use defines instead of enums to appease clang.
 8129     - DOC: fix reference to map files in MAINTAINERS
 8130     - MINOR: fd: centralize poll timeout computation in compute_poll_timeout()
 8131     - MINOR: poller: move time and date computation out of the pollers
 8132     - BUILD: memory: fix pointer declaration for atomic CAS
 8133     - BUILD: Makefile: add USE_RT to pass -lrt for clock_gettime() and friends
 8134     - MINOR: time: add now_mono_time() and now_cpu_time()
 8135     - MEDIUM: time: measure the time stolen by other threads
 8136     - BUILD: memory: fix free_list pointer declaration again for atomic CAS
 8137     - BUILD: compiler: rename __unreachable() to my_unreachable()
 8138     - BUG/MEDIUM: pools: Fix the usage of mmap()) with DEBUG_UAF.
 8139     - BUILD: memory: fix free_list pointer declaration again for atomic CAS
 8140     - BUG/MEDIUM: h2: Close connection if no stream is left an GOAWAY was sent.
 8141     - BUG/MEDIUM: connections: Remove subscription if going in idle mode.
 8142     - BUG/MEDIUM: stream: Make sure polling is right on retry.
 8143     - MINOR: h2: Make sure to return 1 in h2_recv() when needed.
 8144     - MEDIUM: connections: Don't directly mess with the polling from the upper layers.
 8145     - MINOR: streams: Call tasklet_free() after si_release_endpoint().
 8146     - MINOR: connection: Add a SUB_CALL_UNSUBSCRIBE event.
 8147     - MINOR: h2: Don't run tasks that are waiting to send if mux in full.
 8148     - MINOR: ebtree: save 8 bytes in struct eb32sc_node
 8149 
 8150 2018/09/29 : 1.9-dev3
 8151     - BUG/MINOR: h1: don't consider the status for each header
 8152     - MINOR: h1: report in the h1m struct if the HTTP version is 1.1 or above
 8153     - MINOR: h1: parse the Connection header field
 8154     - DOC: Fix typos in lua documentation
 8155     - MINOR: h1: Add H1_MF_XFER_LEN flag
 8156     - MINOR: http: add http_hdr_del() to remove a header from a list
 8157     - MINOR: h1: add headers to the list after controls, not before
 8158     - MEDIUM: h1: better handle transfer-encoding vs content-length
 8159     - MEDIUM: h1: deduplicate the content-length header
 8160     - BUG/MEDIUM: patterns: fix possible double free when reloading a pattern list
 8161     - BUG/MEDIUM: h1: Really skip all updates when incomplete messages are parsed
 8162     - CLEANUP/CONTRIB: hpack: remove some h1 build warnings
 8163     - BUG/MINOR: tools: fix set_net_port() / set_host_port() on IPv4
 8164     - BUG/MINOR: cli: make sure the "getsock" command is only called on connections
 8165     - MINOR: stktable: provide an unchecked version of stktable_data_ptr()
 8166     - MINOR: stream-int: make si_appctx() never fail
 8167     - BUILD: ssl_sock: remove build warnings on potential null-derefs
 8168     - BUILD: stats: remove build warnings on potential null-derefs
 8169     - BUILD: stream: address null-deref build warnings at -Wextra
 8170     - BUILD: http: address a couple of null-deref warnings at -Wextra
 8171     - BUILD: log: silent build warnings due to unchecked __objt_{server,applet}
 8172     - BUILD: dns: fix null-deref build warning at -Wextra
 8173     - BUILD: checks: silence a null-deref build warning at -Wextra
 8174     - BUILD: connection: silence a couple of null-deref build warnings at -Wextra
 8175     - BUILD: backend: fix 3 build warnings related to null-deref at -Wextra
 8176     - BUILD: sockpair: silence a build warning at -Wextra
 8177     - BUILD: build with -Wextra and sort out certain warnings
 8178     - BUG/CRITICAL: hpack: fix improper sign check on the header index value
 8179     - BUG/MEDIUM: http: Don't parse chunked body if there is no input data
 8180     - DOC: Update configuration doc about the maximum number of stick counters.
 8181     - BUG/MEDIUM: process_stream: Don't use si_cs_io_cb() in process_stream().
 8182     - MINOR: h2/stream_interface: Reintroduce te wake() method.
 8183     - BUG/MEDIUM: h2: Wake the task instead of calling h2_recv()/h2_process().
 8184     - BUG/MEDIUM: process_stream(): Don't wake the task if no new data was received.
 8185     - MEDIUM: lua: Add stick table support for Lua.
 8186 
 8187 2018/09/12 : 1.9-dev2
 8188     - BUG/MINOR: buffers: Fix b_slow_realign when a buffer is realign without output
 8189     - BUG/MEDIUM: threads: fix the no-thread case after the change to the sync point
 8190     - BUG/MEDIUM: servers: check the queues once enabling a server
 8191     - BUG/MEDIUM: queue: prevent a backup server from draining the proxy's connections
 8192     - MEDIUM: mux: Remove const on the buffer in mux->snd_buf()
 8193     - CLEANUP: backend: Move mux install to call it at only one place
 8194     - MINOR: conn_stream: add an tx buffer to the conn_stream
 8195     - MINOR: conn_stream: add cs_send() as a default snd_buf() function
 8196     - MINOR: backend: Try to find the best mux for outgoing connections
 8197     - MEDIUM: backend: don't rely on mux_pt_ops in connect_server()
 8198     - MINOR: mux: Add info about the supported side in alpn_mux_list structure
 8199     - MINOR: mux: Unlink ALPN and multiplexers to rather speak of mux protocols
 8200     - MINOR: mux: Print the list of existing mux protocols during HA startup
 8201     - MEDIUM: checks: use the new rendez-vous point to spread check result
 8202     - MEDIUM: haproxy: don't use sync_poll_loop() anymore in the main loop
 8203     - MINOR: threads: remove the previous synchronization point
 8204     - MAJOR: server: make server state changes synchronous again
 8205     - CLEANUP: server: remove the update list and the update lock
 8206     - BUG/MINOR: threads: Remove the unexisting lock label "UPDATED_SERVERS_LOCK"
 8207     - BUG/MEDIUM: stream_int: Don't check CO_FL_SOCK_RD_SH flag to trigger cs receive
 8208     - MINOR: mux: Change get_mux_proto to get an ist as parameter
 8209     - MINOR: mux: Improve the message with the list of existing mux protocols
 8210     - MINOR: mux/frontend: Add 'proto' keyword to force the mux protocol
 8211     - MINOR: mux/server: Add 'proto' keyword to force the multiplexer's protocol
 8212     - MEDIUM: mux: Use the mux protocol specified on bind/server lines
 8213     - BUG/MEDIUM: connection/mux: take care of serverless proxies
 8214     - MINOR: queue: make sure the pendconn is released before logging
 8215     - MINOR: stream: rename {srv,prx}_queue_size to *_queue_pos
 8216     - MINOR: queue: store the queue index in the stream when enqueuing
 8217     - MINOR: queue: replace the linked list with a tree
 8218     - MEDIUM: add set-priority-class and set-priority-offset
 8219     - MEDIUM: queue: adjust position based on priority-class and priority-offset
 8220     - DOC: update the roadmap about priority queues
 8221     - BUG/MINOR: ssl: empty connections reported as errors.
 8222     - MINOR: connections: Make rcv_buf mandatory and nuke cs_recv().
 8223     - MINOR: connections: Move rxbuf from the conn_stream to the h2s.
 8224     - MINOR: connections: Get rid of txbuf.
 8225     - MINOR: tasks: Allow tasklet_wakeup() to wakeup a task.
 8226     - MINOR: connections/mux: Add the wait reason(s) to wait_list.
 8227     - MINOR: stream_interface: Don't use si_cs_send() as a task handler.
 8228     - MINOR: stream_interface: Give stream_interface its own wait_list.
 8229     - MINOR: mux_h2: Don't use h2_send() as a callback.
 8230     - MINOR: checks: Add event_srv_chk_io().
 8231     - BUG/MEDIUM: tasks: Don't insert in the global rqueue if nbthread == 1
 8232     - BUG/MEDIUM: sessions: Don't use t->state.
 8233     - BUG/MEDIUM: ssl: fix missing error loading a keytype cert from a bundle.
 8234     - BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
 8235     - BUG/MINOR: map: fix map_regm with backref
 8236     - DOC: dns: explain set server ... fqdn requires resolver
 8237     - DOC: add documentation for prio_class and prio_offset sample fetches.
 8238     - DOC: ssl: Use consistent naming for TLS protocols
 8239     - DOC: update the layering design notes
 8240     - MINOR: tasks: Don't special-case when nbthreads == 1
 8241     - MINOR: fd cache: And the thread_mask with all_threads_mask.
 8242     - BUG/MEDIUM: lua: socket timeouts are not applied
 8243     - BUG/MINOR: lua: fix extra 500ms added to socket timeouts
 8244     - BUG/MEDIUM: server: update our local state before propagating changes
 8245     - BUG/MEDIUM: cli/threads: protect all "proxy" commands against concurrent updates
 8246     - DOC: server/threads: document which functions need to be called with/without locks
 8247     - BUG/MEDIUM: cli/threads: protect some server commands against concurrent operations
 8248     - BUG/MEDIUM: streams: Don't forget to remove the si from the wait list.
 8249     - BUG/MEDIUM: tasklets: Add the thread as active when waking a tasklet.
 8250     - BUG/MEDIUM: stream-int: Check if the conn_stream exist in si_cs_io_cb.
 8251     - BUG/MEDIUM: H2: Activate polling after successful h2_snd_buf().
 8252     - BUG/MEDIUM: stream_interface: Call the wake callback after sending.
 8253     - BUG/MAJOR: queue/threads: make pendconn_redistribute not lock the server
 8254     - BUG/MEDIUM: connection: don't forget to always delete the list's head
 8255     - BUG/MEDIUM: lb/threads: always properly lock LB algorithms on maintenance operations
 8256     - BUG/MEDIUM: check/threads: do not involve the rendez-vous point for status updates
 8257     - BUG/MINOR: chunks: do not store -1 into chunk_printf() in case of error
 8258     - BUG/MEDIUM: http: don't store exp_replace() result in the trash's length
 8259     - BUG/MEDIUM: http: don't store url_decode() result in the samples's length
 8260     - BUG/MEDIUM: dns: don't store dns_build_query() result in the trash's length
 8261     - BUG/MEDIUM: map: don't store exp_replace() result in the trash's length
 8262     - BUG/MEDIUM: connection: don't store recv() result into trash.data
 8263     - BUG/MEDIUM: cli/ssl: don't store base64dec() result in the trash's length
 8264     - MINOR: chunk: remove impossible tests on negative chunk->data
 8265     - MINOR: sample: remove impossible tests on negative smp->data.u.str.data
 8266     - DOC: Fix spelling error in configuration doc
 8267     - REGTEST/MINOR: Missing mandatory "ignore_unknown_macro".
 8268     - REGTEST/MINOR: Add a new class of regression testing files.
 8269     - BUG/MEDIUM: unix: provide a ->drain() function
 8270     - MINOR: connection: make conn_sock_drain() work for all socket families
 8271     - BUG/MINOR: lua: Bad HTTP client request duration.
 8272     - REGEST/MINOR: Add reg testing files.
 8273     - BUG/MEDIUM: mux_pt: dereference the connection with care in mux_pt_wake()
 8274     - REGTEST/MINOR: Add a reg testing file for b406b87 commit.
 8275     - BUG/MEDIUM: lua: reset lua transaction between http requests
 8276     - MINOR: add be_conn_free sample fetch
 8277     - MINOR: Add srv_conn_free sample fetch
 8278     - BUG/MEDIUM: hlua: Make sure we drain the output buffer when done.
 8279     - MINOR: checks: Call wake_srv_chk() when we can finally send data.
 8280     - BUG/MEDIUM: stream_interface: try to call si_cs_send() earlier.
 8281     - BUG/MAJOR: thread: lua: Wrong SSL context initialization.
 8282     - REGTEST/MINOR: Add a reg testing file for 3e60b11.
 8283     - BUG/MEDIUM: hlua: Don't call RESET_SAFE_LJMP if SET_SAFE_LJMP returns 0.
 8284     - REGTEST/MINOR: lua: Add reg testing files for 70d318c.
 8285     - BUG/MEDIUM: dns/server: fix incomatibility between SRV resolution and server state file
 8286     - BUG/MEDIUM: ECC cert should work with TLS < v1.2 and openssl >= 1.1.1
 8287     - MINOR: tools: make date2str_log() take some consts
 8288     - MINOR: thread: implement HA_ATOMIC_XADD()
 8289     - BUG/MINOR: stream: use atomic increments for the request counter
 8290     - BUG/MEDIUM: session: fix reporting of handshake processing time in the logs
 8291     - BUG/MEDIUM: h2: fix risk of memory leak on malformated wrapped frames
 8292     - BUG/MAJOR: buffer: fix incorrect check in __b_putblk()
 8293     - MINOR: log: move the log code to sess_build_logline() to add extra arguments
 8294     - MINOR: log: make the backend fall back to the frontend when there's no stream
 8295     - MINOR: log: make sess_build_logline() not dereference a NULL stream for txn
 8296     - MINOR: log: don't unconditionally pick log info from s->logs
 8297     - CLEANUP: log: make the low_level lf_{ip,port,text,text_len} functions take consts
 8298     - MINOR: log: keep a copy of the backend connection early in sess_build_logline()
 8299     - MINOR: log: do not dereference a null stream to access captures
 8300     - MINOR: log: be sure not to dereference a null stream for a target
 8301     - MINOR: log: don't check the stream-int's conn_retries if the stream is NULL
 8302     - MINOR: log: use NULL for the unique_id if there is no stream
 8303     - MINOR: log: keep a copy of s->flags early to avoid a dereference
 8304     - MINOR: log: use zero as the request counter if there is no stream
 8305     - MEDIUM: log: make sess_build_logline() support being called with no stream
 8306     - MINOR: log: provide a function to emit a log for a session
 8307     - MEDIUM: h2: produce some logs on early errors that prevent streams from being created
 8308     - BUG/MINOR: h1: fix buffer shift after realignment
 8309     - MINOR: connection: make the initialization more consistent
 8310     - MINOR: connection: add new function conn_get_proxy()
 8311     - MINOR: connection: add new function conn_is_back()
 8312     - MINOR: log: One const should be enough.
 8313     - BUG/MINOR: dns: check and link servers' resolvers right after config parsing
 8314     - BUG/MINOR: http/threads: atomically increment the error snapshot ID
 8315     - MINOR: snapshot: restart on the event ID and not the stream ID
 8316     - MINOR: snapshot: split the error snapshots into common and proto-specific parts
 8317     - MEDIUM: snapshot: start to reorder the HTTP snapshot output a little bit
 8318     - MEDIUM: snapshot: implement a show() callback and use it for HTTP
 8319     - MINOR: proxy: add a new generic proxy_capture_error()
 8320     - MINOR: http: make the HTTP error capture rely on the generic proxy code
 8321     - MINOR: http: remove the pointer to the error snapshot in http_capture_bad_message()
 8322     - REORG: cli: move the "show errors" handler from http to proxy
 8323     - BUG/MEDIUM: snapshot: take the proxy's lock while dumping errors
 8324     - MEDIUM: snapshots: dynamically allocate the snapshots
 8325     - MEDIUM: snapshot: merge the captured data after the descriptor
 8326     - MEDIUM: mworker: remove register/unregister signal functions
 8327     - MEDIUM: mworker: use the haproxy poll loop
 8328     - BUG/MINOR: mworker: no need to stop peers for each proxy
 8329     - MINOR: mworker: mworker_cleanlisteners() delete the listeners
 8330     - MEDIUM: mworker: block SIGCHLD until the master is ready
 8331     - MEDIUM: mworker: never block SIG{TERM,INT} during reload
 8332     - MEDIUM: startup: unify signal init between daemon and mworker mode
 8333     - MINOR: mworker: don't deinit the poller fd when in wait mode
 8334     - MEDIUM: mworker: master wait mode use its own initialization
 8335     - MEDIUM: mworker: replace the master pipe by socketpairs
 8336     - MINOR: mworker: keep and clean the listeners
 8337     - MEDIUM: threads: close the thread-waker pipe during deinit
 8338     - MEDIUM: mworker: call per_thread deinit in mworker_reload()
 8339     - REORG: http: move the HTTP semantics definitions to http.h/http.c
 8340     - REORG: http: move http_get_path() to http.c
 8341     - REORG: http: move error codes production and processing to http.c
 8342     - REORG: http: move the log encoding tables to log.c
 8343     - REORG: http: move some header value processing functions to http.c
 8344     - BUG/MAJOR: kqueue: Don't reset the changes number by accident.
 8345     - MEDIUM: protocol: use a custom AF_MAX to help protocol parser
 8346     - MEDIUM: protocol: sockpair protocol
 8347     - TESTS: add a python wrapper for sockpair@
 8348     - BUG/MINOR: server: Crash when setting FQDN via CLI.
 8349     - BUG/MINOR: h2: report asynchronous end of stream on closed connections
 8350     - BUILD: fix build without thread
 8351     - BUG/MEDIUM: tasks: Don't forget to decrement task_list_size in tasklet_free().
 8352     - MEDIUM: connections: Don't reset the polling flags in conn_fd_handler().
 8353     - MEDIUM: connections/mux: Add a recv and a send+recv wait list.
 8354     - MEDIUM: connections: Get rid of the recv() method.
 8355     - MINOR: h2: Let user of h2_recv() and h2_send() know xfer has been done.
 8356     - MEDIUM: h2: always subscribe to receive if allowed.
 8357     - MEDIUM: h2: Don't use a wake() method anymore.
 8358     - MEDIUM: stream_interface: Make recv() subscribe when more data is needed.
 8359     - MINOR: connections: Add a "handle" field to wait_list.
 8360     - MEDIUM: mux_h2: Revamp the send path when blocking.
 8361     - MEDIUM: stream_interfaces: Starts receiving from the upper layers.
 8362     - MINOR: checks: Give checks their own wait_list.
 8363     - MINOR: conn_streams: Remove wait_list from conn_streams.
 8364     - REORG: h1: create a new h1m_state
 8365     - MINOR: h1: add the restart offsets into struct h1m
 8366     - MINOR: h1: remove the unused states from h1m_state
 8367     - MINOR: h1: provide a distinct init() function for request and response
 8368     - MINOR: h1: add a message flag to indicate that a message carries a response
 8369     - MINOR: h2: make sure h1m->err_pos field is correct on chunk error
 8370     - MINOR: h1: properly pre-initialize err_pos to -2
 8371     - MINOR: mux_h2: replace the req,res h1 messages with a single h1 message
 8372     - MINOR: h2: pre-initialize h1m->err_pos to -1 on the output path
 8373     - MEDIUM: h1: consider err_pos before deciding to accept a header name or not
 8374     - MEDIUM: h1: make the parser support a pointer to a start line
 8375     - MEDIUM: h1: let the caller pass the initial parser's state
 8376     - MINOR: h1: make the message parser support a null <hdr> argument
 8377     - MEDIUM: h1: support partial message parsing
 8378     - MEDIUM: h1: remove the useless H1_MSG_BODY state
 8379     - MINOR: h2: store the HTTP status into the H2S, not the H1M
 8380     - MINOR: h1: remove the HTTP status from the H1M struct
 8381     - MEDIUM: h1: implement the request parser as well
 8382     - MINOR: h1: add H1_MF_TOLOWER to decide when to turn header names to lower case
 8383     - MINOR: connection: pass the proxy when creating a connection
 8384     - BUG/MEDIUM: h2: Don't forget to empty the wait lists on destroy.
 8385     - BUG/MEDIUM: h2: Don't forget to set recv_wait_list to NULL in h2_detach.
 8386     - BUG/MAJOR: h2: reset the parser's state on mux buffer full
 8387 
 8388 2018/08/02 : 1.9-dev1
 8389     - BUG/MEDIUM: kqueue: Don't bother closing the kqueue after fork.
 8390     - DOC: cache: update sections and fix some typos
 8391     - BUILD/MINOR: deviceatlas: enable thread support
 8392     - BUG/MEDIUM: tcp-check: Don't lock the server in tcpcheck_main
 8393     - BUG/MEDIUM: ssl: don't allocate shctx several time
 8394     - BUG/MEDIUM: cache: bad computation of the remaining size
 8395     - BUILD: checks: don't include server.h
 8396     - BUG/MEDIUM: stream: fix session leak on applet-initiated connections
 8397     - BUILD/MINOR: haproxy : FreeBSD/cpu affinity needs pthread_np header
 8398     - BUILD/MINOR: Makefile : enabling USE_CPU_AFFINITY
 8399     - BUG/MINOR: ssl: CO_FL_EARLY_DATA removal is managed by stream
 8400     - BUG/MEDIUM: threads/peers: decrement, not increment jobs on quitting
 8401     - BUG/MEDIUM: h2: don't report an error after parsing a 100-continue response
 8402     - BUG/MEDIUM: peers: fix some track counter rules dont register entries for sync.
 8403     - BUG/MAJOR: thread/peers: fix deadlock on peers sync.
 8404     - BUILD/MINOR: haproxy: compiling config cpu parsing handling when needed
 8405     - MINOR: config: report when "monitor fail" rules are misplaced
 8406     - BUG/MINOR: mworker: fix validity check for the pipe FDs
 8407     - BUG/MINOR: mworker: detach from tty when in daemon mode
 8408     - MINOR: threads: Fix pthread_setaffinity_np on FreeBSD.
 8409     - BUG/MAJOR: thread: Be sure to request a sync between threads only once at a time
 8410     - BUILD: Fix LDFLAGS vs. LIBS re linking order in various makefiles
 8411     - BUG/MEDIUM: checks: Be sure we have a mux if we created a cs.
 8412     - BUG/MINOR: hpack: fix debugging output of pseudo header names
 8413     - BUG/MINOR: hpack: must reject huffman literals padded with more than 7 bits
 8414     - BUG/MINOR: hpack: reject invalid header index
 8415     - BUG/MINOR: hpack: dynamic table size updates are only allowed before headers
 8416     - BUG/MAJOR: h2: correctly check the request length when building an H1 request
 8417     - BUG/MINOR: h2: immediately close if receiving GOAWAY after the last stream
 8418     - BUG/MINOR: h2: try to abort closed streams as soon as possible
 8419     - BUG/MINOR: h2: ":path" must not be empty
 8420     - BUG/MINOR: h2: fix a typo causing PING/ACK to be responded to
 8421     - BUG/MINOR: h2: the TE header if present may only contain trailers
 8422     - BUG/MEDIUM: h2: enforce the per-connection stream limit
 8423     - BUG/MINOR: h2: do not accept SETTINGS_ENABLE_PUSH other than 0 or 1
 8424     - BUG/MINOR: h2: reject incorrect stream dependencies on HEADERS frame
 8425     - BUG/MINOR: h2: properly check PRIORITY frames
 8426     - BUG/MINOR: h2: reject response pseudo-headers from requests
 8427     - BUG/MEDIUM: h2: remove connection-specific headers from request
 8428     - BUG/MEDIUM: h2: do not accept upper case letters in request header names
 8429     - BUG/MINOR: h2: use the H2_F_DATA_* macros for DATA frames
 8430     - BUG/MINOR: action: Don't check http capture rules when no id is defined
 8431     - BUG/MAJOR: hpack: don't pretend large headers fit in empty table
 8432     - BUG/MINOR: ssl: support tune.ssl.cachesize 0 again
 8433     - BUG/MEDIUM: mworker: also close peers sockets in the master
 8434     - BUG/MEDIUM: ssl engines: Fix async engines fds were not considered to fix fd limit automatically.
 8435     - BUG/MEDIUM: checks: a down server going to maint remains definitely stucked on down state.
 8436     - BUG/MEDIUM: peers: set NOLINGER on the outgoing stream interface
 8437     - BUG/MEDIUM: h2: fix handling of end of stream again
 8438     - MINOR: mworker: Update messages referencing exit-on-failure
 8439     - MINOR: mworker: Improve wording in `void mworker_wait()`
 8440     - CONTRIB: halog: Add help text for -s switch in halog program
 8441     - BUG/MEDIUM: email-alert: don't set server check status from a email-alert task
 8442     - BUG/MEDIUM: threads/vars: Fix deadlock in register_name
 8443     - MINOR: systemd: remove comment about HAPROXY_STATS_SOCKET
 8444     - DOC: notifications: add precisions about thread usage
 8445     - BUG/MEDIUM: lua/notification: memory leak
 8446     - MINOR: conn_stream: add new flag CS_FL_RCV_MORE to indicate pending data
 8447     - BUG/MEDIUM: stream-int: always set SI_FL_WAIT_ROOM on CS_FL_RCV_MORE
 8448     - BUG/MEDIUM: h2: automatically set CS_FL_RCV_MORE when the output buffer is full
 8449     - BUG/MEDIUM: h2: enable recv polling whenever demuxing is possible
 8450     - BUG/MEDIUM: h2: work around a connection API limitation
 8451     - BUG/MEDIUM: h2: debug incoming traffic in h2_wake()
 8452     - MINOR: h2: store the demux padding length in the h2c struct
 8453     - BUG/MEDIUM: h2: support uploading partial DATA frames
 8454     - MINOR: h2: don't demand that a DATA frame is complete before processing it
 8455     - BUG/MEDIUM: h2: don't switch the state to HREM before end of DATA frame
 8456     - BUG/MEDIUM: h2: don't close after the first DATA frame on tunnelled responses
 8457     - BUG/MEDIUM: http: don't disable lingering on requests with tunnelled responses
 8458     - BUG/MEDIUM: h2: fix stream limit enforcement
 8459     - BUG/MINOR: stream-int: don't try to receive again after receiving an EOS
 8460     - MINOR: sample: add len converter
 8461     - BUG: MAJOR: lb_map: server map calculation broken
 8462     - BUG: MINOR: http: don't check http-request capture id when len is provided
 8463     - MINOR: sample: rename the "len" converter to "length"
 8464     - BUG/MEDIUM: mworker: Set FD_CLOEXEC flag on log fd
 8465     - DOC/MINOR: intro: typo, wording, formatting fixes
 8466     - MINOR: netscaler: respect syntax
 8467     - MINOR: netscaler: remove the use of cip_magic only used once
 8468     - MINOR: netscaler: rename cip_len to clarify its uage
 8469     - BUG/MEDIUM: netscaler: use the appropriate IPv6 header size
 8470     - BUG/MAJOR: netscaler: address truncated CIP header detection
 8471     - MINOR: netscaler: check in one-shot if buffer is large enough for IP and TCP header
 8472     - MEDIUM: netscaler: do not analyze original IP packet size
 8473     - MEDIUM: netscaler: add support for standard NetScaler CIP protocol
 8474     - MINOR: spoe: add force-set-var option in spoe-agent configuration
 8475     - CONTRIB: iprange: Fix compiler warning in iprange.c
 8476     - CONTRIB: halog: Fix compiler warnings in halog.c
 8477     - BUG/MINOR: h2: properly report a stream error on RST_STREAM
 8478     - MINOR: mux: add flags to describe a mux's capabilities
 8479     - MINOR: stream-int: set flag SI_FL_CLEAN_ABRT when mux supports clean aborts
 8480     - BUG/MEDIUM: stream: don't consider abortonclose on muxes which close cleanly
 8481     - BUG/MEDIUM: checks: a server passed in maint state was not forced down.
 8482     - BUG/MEDIUM: lua: fix crash when using bogus mode in register_service()
 8483     - MINOR: http: adjust the list of supposedly cacheable methods
 8484     - MINOR: http: update the list of cacheable status codes as per RFC7231
 8485     - MINOR: http: start to compute the transaction's cacheability from the request
 8486     - BUG/MINOR: http: do not ignore cache-control: public
 8487     - BUG/MINOR: http: properly detect max-age=0 and s-maxage=0 in responses
 8488     - BUG/MINOR: cache: do not force the TX_CACHEABLE flag before checking cacheability
 8489     - MINOR: http: add a function to check request's cache-control header field
 8490     - BUG/MEDIUM: cache: do not try to retrieve host-less requests from the cache
 8491     - BUG/MEDIUM: cache: replace old object on store
 8492     - BUG/MEDIUM: cache: respect the request cache-control header
 8493     - BUG/MEDIUM: cache: don't cache the response on no-cache="set-cookie"
 8494     - BUG/MAJOR: connection: refine the situations where we don't send shutw()
 8495     - BUG/MEDIUM: checks: properly set servers to stopping state on 404
 8496     - BUG/MEDIUM: h2: properly handle and report some stream errors
 8497     - BUG/MEDIUM: h2: improve handling of frames received on closed streams
 8498     - DOC/MINOR: configuration: typo, formatting fixes
 8499     - BUG/MEDIUM: h2: ensure we always know the stream before sending a reset
 8500     - BUG/MEDIUM: mworker: don't close stdio several time
 8501     - MINOR: don't close stdio anymore
 8502     - BUG/MEDIUM: http: don't automatically forward request close
 8503     - BUG/MAJOR: hpack: don't return direct references to the dynamic headers table
 8504     - MINOR: h2: add a function to report pseudo-header names
 8505     - DEBUG: hpack: make hpack_dht_dump() expose the output file
 8506     - DEBUG: hpack: add more traces to the hpack decoder
 8507     - CONTRIB: hpack: add an hpack decoder
 8508     - MEDIUM: h2: prepare a graceful shutdown when the frontend is stopped
 8509     - BUG/MEDIUM: h2: properly handle the END_STREAM flag on empty DATA frames
 8510     - BUILD: ssl: silence a warning when building without NPN nor ALPN support
 8511     - CLEANUP: rbtree: remove
 8512     - BUG/MEDIUM: ssl: cache doesn't release shctx blocks
 8513     - BUG/MINOR: lua: Fix default value for pattern in Socket.receive
 8514     - DOC: lua: Fix typos in comments of hlua_socket_receive
 8515     - BUG/MEDIUM: lua: Fix IPv6 with separate port support for Socket.connect
 8516     - BUG/MINOR: lua: Fix return value of Socket.settimeout
 8517     - MINOR: dns: Handle SRV record weight correctly.
 8518     - BUG/MEDIUM: mworker: execvp failure depending on argv[0]
 8519     - MINOR: hathreads: add support for gcc < 4.7
 8520     - BUILD/MINOR: ancient gcc versions atomic fix
 8521     - BUG/MEDIUM: stream: properly handle client aborts during redispatch
 8522     - MINOR: spoe: add register-var-names directive in spoe-agent configuration
 8523     - MINOR: spoe: Don't queue a SPOE context if nothing is sent
 8524     - DOC: clarify the scope of ssl_fc_is_resumed
 8525     - CONTRIB: debug: fix a few flags definitions
 8526     - BUG/MINOR: poll: too large size allocation for FD events
 8527     - MINOR: sample: add date_us sample
 8528     - BUG/MEDIUM: peers: fix expire date wasn't updated if entry is modified remotely.
 8529     - MINOR: servers: Don't report duplicate dyncookies for disabled servers.
 8530     - MINOR: global/threads: move cpu_map at the end of the global struct
 8531     - MINOR: threads: add a MAX_THREADS define instead of LONGBITS
 8532     - MINOR: global: add some global activity counters to help debugging
 8533     - MINOR: threads/fd: Use a bitfield to know if there are FDs for a thread in the FD cache
 8534     - BUG/MEDIUM: threads/polling: Use fd_cache_mask instead of fd_cache_num
 8535     - BUG/MEDIUM: fd: maintain a per-thread update mask
 8536     - MINOR: fd: add a bitmask to indicate that an FD is known by the poller
 8537     - BUG/MEDIUM: epoll/threads: use one epoll_fd per thread
 8538     - BUG/MEDIUM: kqueue/threads: use one kqueue_fd per thread
 8539     - BUG/MEDIUM: threads/mworker: fix a race on startup
 8540     - BUG/MINOR: mworker: only write to pidfile if it exists
 8541     - MINOR: threads: Fix build when we're not compiling with threads.
 8542     - BUG/MINOR: threads: always set an owner to the thread_sync pipe
 8543     - BUG/MEDIUM: threads/server: Fix deadlock in srv_set_stopping/srv_set_admin_flag
 8544     - BUG/MEDIUM: checks: Don't try to release undefined conn_stream when a check is freed
 8545     - BUG/MINOR: kqueue/threads: Don't forget to close kqueue_fd[tid] on each thread
 8546     - MINOR: threads: Use __decl_hathreads instead of #ifdef/#endif
 8547     - BUILD: epoll/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
 8548     - BUILD: kqueue/threads: Add test on MAX_THREADS to avoid warnings when complied without threads
 8549     - CLEANUP: sample: Fix comment encoding of sample.c
 8550     - CLEANUP: sample: Fix outdated comment about sample casts functions
 8551     - BUG/MINOR: sample: Fix output type of c_ipv62ip
 8552     - CLEANUP: Fix typo in ARGT_MSK6 comment
 8553     - CLEANUP: standard: Use len2mask4 in str2mask
 8554     - MINOR: standard: Add str2mask6 function
 8555     - MINOR: config: Add support for ARGT_MSK6
 8556     - MEDIUM: sample: Add IPv6 support to the ipmask converter
 8557     - MINOR: config: Enable tracking of up to MAX_SESS_STKCTR stick counters.
 8558     - BUG/MINOR: cli: use global.maxsock and not maxfd to list all FDs
 8559     - MINOR: polling: make epoll and kqueue not depend on maxfd anymore
 8560     - MINOR: fd: don't report maxfd in alert messages
 8561     - MEDIUM: polling: start to move maxfd computation to the pollers
 8562     - CLEANUP: fd/threads: remove the now unused fdtab_lock
 8563     - MINOR: poll: more accurately compute the new maxfd in the loop
 8564     - CLEANUP: fd: remove the unused "new" field
 8565     - MINOR: fd: move the hap_fd_{clr,set,isset} functions to fd.h
 8566     - MEDIUM: select: make use of hap_fd_* functions
 8567     - MEDIUM: fd: use atomic ops for hap_fd_{clr,set} and remove poll_lock
 8568     - MEDIUM: select: don't use the old FD state anymore
 8569     - MEDIUM: poll: don't use the old FD state anymore
 8570     - MINOR: fd: pass the iocb and owner to fd_insert()
 8571     - BUG/MINOR: threads: Update labels array because of changes in lock_label enum
 8572     - MINOR: stick-tables: Adds support for new "gpc1" and "gpc1_rate" counters.
 8573     - BUG/MINOR: epoll/threads: only call epoll_ctl(DEL) on polled FDs
 8574     - DOC: don't suggest using http-server-close
 8575     - MINOR: introduce proxy-v2-options for send-proxy-v2
 8576     - BUG/MEDIUM: spoe: Always try to receive or send the frame to detect shutdowns
 8577     - BUG/MEDIUM: spoe: Allow producer to read and to forward shutdown on request side
 8578     - MINOR: spoe: Remove check on min_applets number when a SPOE context is queued
 8579     - MINOR: spoe: Always link a SPOE context with the applet processing it
 8580     - MINOR: spoe: Replace sending_rate by a frequency counter
 8581     - MINOR: spoe: Count the number of frames waiting for an ack for each applet
 8582     - MEDIUM: spoe: Use an ebtree to manage idle applets
 8583     - MINOR: spoa_example: Count the number of frames processed by each worker
 8584     - MINOR: spoe: Add max-waiting-frames directive in spoe-agent configuration
 8585     - MINOR: init: make stdout unbuffered
 8586     - MINOR: early data: Don't rely on CO_FL_EARLY_DATA to wake up streams.
 8587     - MINOR: early data: Never remove the CO_FL_EARLY_DATA flag.
 8588     - MINOR: compiler: introduce offsetoff().
 8589     - MINOR: threads: Introduce double-width CAS on x86_64 and arm.
 8590     - MINOR: threads: add test and set/reset operations
 8591     - MINOR: pools/threads: Implement lockless memory pools.
 8592     - MAJOR: fd/threads: Make the fdcache mostly lockless.
 8593     - MEDIUM: fd/threads: Make sure we don't miss a fd cache entry.
 8594     - MAJOR: fd: compute the new fd polling state out of the fd lock
 8595     - MINOR: epoll: get rid of the now useless fd_compute_new_polled_status()
 8596     - MINOR: kqueue: get rid of the now useless fd_compute_new_polled_status()
 8597     - MINOR: poll: get rid of the now useless fd_compute_new_polled_status()
 8598     - MINOR: select: get rid of the now useless fd_compute_new_polled_status()
 8599     - CLEANUP: fd: remove the now unused fd_compute_new_polled_status() function
 8600     - MEDIUM: fd: make updt_fd_polling() use atomics
 8601     - MEDIUM: poller: use atomic ops to update the fdtab mask
 8602     - MINOR: fd: move the fd_{add_to,rm_from}_fdlist functions to fd.c
 8603     - BUG/MINOR: fd/threads: properly dereference fdcache as volatile
 8604     - MINOR: fd: remove the unneeded last CAS when adding an fd to the list
 8605     - MINOR: fd: reorder fd_add_to_fd_list()
 8606     - BUG/MINOR: time/threads: ensure the adjusted time is always correct
 8607     - BUG/MEDIUM: standard: Fix memory leak in str2ip2()
 8608     - MINOR: init: emit warning when -sf/-sd cannot parse argument
 8609     - BUILD: fd/threads: fix breakage build breakage without threads
 8610     - DOC: Describe routing impact of using interface keyword on bind lines
 8611     - DOC: Mention -Ws in the list of available options
 8612     - BUG/MINOR: config: don't emit a warning when global stats is incompletely configured
 8613     - BUG/MINOR: fd/threads: properly lock the FD before adding it to the fd cache.
 8614     - BUG/MEDIUM: threads: fix the double CAS implementation for ARMv7
 8615     - BUG/MEDIUM: ssl: Don't always treat SSL_ERROR_SYSCALL as unrecovarable.
 8616     - BUILD/MINOR: memory: stdint is needed for uintptr_t
 8617     - BUG/MINOR: init: Add missing brackets in the code parsing -sf/-st
 8618     - DOC: lua: new prototype for function "register_action()"
 8619     - DOC: cfgparse: Warn on option (tcp|http)log in backend
 8620     - BUG/MINOR: ssl/threads: Make management of the TLS ticket keys files thread-safe
 8621     - MINOR: sample: add a new "concat" converter
 8622     - BUG/MEDIUM: ssl: Shutdown the connection for reading on SSL_ERROR_SYSCALL
 8623     - BUG/MEDIUM: http: Switch the HTTP response in tunnel mode as earlier as possible
 8624     - BUG/MEDIUM: ssl/sample: ssl_bc_* fetch keywords are broken.
 8625     - MINOR: ssl/sample: adds ssl_bc_is_resumed fetch keyword.
 8626     - CLEANUP: cfgparse: Remove unused label end
 8627     - CLEANUP: spoe: Remove unused label retry
 8628     - CLEANUP: h2: Remove unused labels from mux_h2.c
 8629     - CLEANUP: pools: Remove unused end label in memory.h
 8630     - CLEANUP: standard: Fix typo in IPv6 mask example
 8631     - BUG/MINOR: pools/threads: don't ignore DEBUG_UAF on double-word CAS capable archs
 8632     - BUG/MINOR: debug/pools: properly handle out-of-memory when building with DEBUG_UAF
 8633     - MINOR: debug/pools: make DEBUG_UAF also detect underflows
 8634     - MINOR: stats: display the number of threads in the statistics.
 8635     - BUG/MINOR: h2: Set the target of dbuf_wait to h2c
 8636     - BUG/MEDIUM: h2: always consume any trailing data after end of output buffers
 8637     - BUG/MEDIUM: buffer: Fix the wrapping case in bo_putblk
 8638     - BUG/MEDIUM: buffer: Fix the wrapping case in bi_putblk
 8639     - BUG/MEDIUM: spoe: Remove idle applets from idle list when HAProxy is stopping
 8640     - Revert "BUG/MINOR: send-proxy-v2: string size must include ('\0')"
 8641     - MINOR: ssl: extract full pkey info in load_certificate
 8642     - MINOR: ssl: add ssl_sock_get_pkey_algo function
 8643     - MINOR: ssl: add ssl_sock_get_cert_sig function
 8644     - MINOR: connection: add proxy-v2-options ssl-cipher,cert-sig,cert-key
 8645     - MINOR: connection: add proxy-v2-options authority
 8646     - MINOR: systemd: Add section for SystemD sandboxing to unit file
 8647     - MINOR: systemd: Add SystemD's Protect*= options to the unit file
 8648     - MINOR: systemd: Add SystemD's SystemCallFilter option to the unit file
 8649     - CLEANUP: h2: rename misleading h2c_stream_close() to h2s_close()
 8650     - MINOR: h2: provide and use h2s_detach() and h2s_free()
 8651     - MEDIUM: h2: use a single buffer allocator
 8652     - MINOR/BUILD: fix Lua build on Mac OS X
 8653     - BUILD/MINOR: fix Lua build on Mac OS X (again)
 8654     - BUG/MINOR: session: Fix tcp-request session failure if handshake.
 8655     - CLEANUP: .gitignore: Ignore binaries from the contrib directory
 8656     - BUG/MINOR: unix: Don't mess up when removing the socket from the xfer_sock_list.
 8657     - DOC: buffers: clarify the purpose of the <from> pointer in offer_buffers()
 8658     - BUG/MEDIUM: h2: also arm the h2 timeout when sending
 8659     - BUG/MINOR: cli: Fix a crash when passing a negative or too large value to "show fd"
 8660     - CLEANUP: ssl: Remove a duplicated #include
 8661     - CLEANUP: cli: Remove a leftover debug message
 8662     - BUG/MINOR: cli: Fix a typo in the 'set rate-limit' usage
 8663     - BUG/MEDIUM: fix a 100% cpu usage with cpu-map and nbthread/nbproc
 8664     - BUG/MINOR: force-persist and ignore-persist only apply to backends
 8665     - BUG/MEDIUM: threads/unix: Fix a deadlock when a listener is temporarily disabled
 8666     - BUG/MAJOR: threads/queue: Fix thread-safety issues on the queues management
 8667     - BUG/MINOR: dns: don't downgrade DNS accepted payload size automatically
 8668     - TESTS: Add a testcase for multi-port + multi-server listener issue
 8669     - CLEANUP: dns: remove duplicate code in src/dns.c
 8670     - BUG/MINOR: seemless reload: Fix crash when an interface is specified.
 8671     - BUG/MINOR: cli: Ensure all command outputs end with a LF
 8672     - BUG/MINOR: cli: Fix a crash when sending a command with too many arguments
 8673     - BUILD: ssl: Fix build with OpenSSL without NPN capability
 8674     - BUG/MINOR: spoa-example: unexpected behavior for more than 127 args
 8675     - BUG/MINOR: lua: return bad error messages
 8676     - CLEANUP: lua/syntax: lua is a name and not an acronym
 8677     - BUG/MEDIUM: tcp-check: single connect rule can't detect DOWN servers
 8678     - BUG/MINOR: tcp-check: use the server's service port as a fallback
 8679     - BUG/MEDIUM: threads/queue: wake up other threads upon dequeue
 8680     - MINOR: log: stop emitting alerts when it's not possible to write on the socket
 8681     - BUILD/BUG: enable -fno-strict-overflow by default
 8682     - BUG/MEDIUM: fd/threads: ensure the fdcache_mask always reflects the cache contents
 8683     - DOC: log: more than 2 log servers are allowed
 8684     - MINOR: hash: add new function hash_crc32c
 8685     - MINOR: proxy-v2-options: add crc32c
 8686     - MINOR: accept-proxy: support proxy protocol v2 CRC32c checksum
 8687     - REORG: compact "struct server"
 8688     - MINOR: samples: add crc32c converter
 8689     - BUG/MEDIUM: h2: properly account for DATA padding in flow control
 8690     - BUG/MINOR: h2: ensure we can never send an RST_STREAM in response to an RST_STREAM
 8691     - BUG/MINOR: listener: Don't decrease actconn twice when a new session is rejected
 8692     - CLEANUP: map, stream: remove duplicate code in src/map.c, src/stream.c
 8693     - BUG/MINOR: lua: the function returns anything
 8694     - BUG/MINOR: lua funtion hlua_socket_settimeout don't check negative values
 8695     - CLEANUP: lua: typo fix in comments
 8696     - BUILD/MINOR: fix build when USE_THREAD is not defined
 8697     - MINOR: lua: allow socket api settimeout to accept integers, float, and doubles
 8698     - BUG/MINOR: hpack: fix harmless use of uninitialized value in hpack_dht_insert
 8699     - MINOR: cli/threads: make "show fd" report thread_sync_io_handler instead of "unknown"
 8700     - MINOR: cli: make "show fd" report the mux and mux_ctx pointers when available
 8701     - BUILD/MINOR: cli: fix a build warning introduced by last commit
 8702     - BUG/MAJOR: h2: remove orphaned streams from the send list before closing
 8703     - MINOR: h2: always call h2s_detach() in h2_detach()
 8704     - MINOR: h2: fuse h2s_detach() and h2s_free() into h2s_destroy()
 8705     - BUG/MEDIUM: h2/threads: never release the task outside of the task handler
 8706     - BUG/MEDIUM: h2: don't consider pending data on detach if connection is in error
 8707     - BUILD/MINOR: threads: always export thread_sync_io_handler()
 8708     - MINOR: mux: add a "show_fd" function to dump debugging information for "show fd"
 8709     - MINOR: h2: implement a basic "show_fd" function
 8710     - MINOR: cli: report cache indexes in "show fd"
 8711     - BUG/MINOR: h2: remove accidental debug code introduced with show_fd function
 8712     - BUG/MEDIUM: h2: always add a stream to the send or fctl list when blocked
 8713     - BUG/MINOR: checks: check the conn_stream's readiness and not the connection
 8714     - BUG/MINOR: fd: Don't clear the update_mask in fd_insert.
 8715     - BUG/MINOR: email-alert: Set the mailer port during alert initialization
 8716     - BUG/MINOR: cache: fix "show cache" output
 8717     - BUG/MAJOR: cache: fix random crashes caused by incorrect delete() on non-first blocks
 8718     - BUG/MINOR: spoe: Initialize variables used during conf parsing before any check
 8719     - BUG/MINOR: spoe: Don't release the context buffer in .check_timeouts callbaclk
 8720     - BUG/MINOR: spoe: Register the variable to set when an error occurred
 8721     - BUG/MINOR: spoe: Don't forget to decrement fpa when a processing is interrupted
 8722     - MINOR: spoe: Add metrics in to know time spent in the SPOE
 8723     - MINOR: spoe: Add options to store processing times in variables
 8724     - MINOR: log: move 'log' keyword parsing in dedicated function
 8725     - MINOR: log: Keep the ref when a log server is copied to avoid duplicate entries
 8726     - MINOR: spoe: Add loggers dedicated to the SPOE agent
 8727     - MINOR: spoe: Add support for option dontlog-normal in the SPOE agent section
 8728     - MINOR: spoe: use agent's logger to log SPOE messages
 8729     - MINOR: spoe: Add counters to log info about SPOE agents
 8730     - BUG/MAJOR: cache: always initialize newly created objects
 8731     - MINOR: servers: Support alphanumeric characters for the server templates names
 8732     - BUG/MEDIUM: threads: Fix the max/min calculation because of name clashes
 8733     - BUG/MEDIUM: connection: Make sure we have a mux before calling detach().
 8734     - BUG/MINOR: http: Return an error in proxy mode when url2sa fails
 8735     - MINOR: proxy: Add fe_defbe fetcher
 8736     - MINOR: config: Warn if resolvers has no nameservers
 8737     - BUG/MINOR: cli: Guard against NULL messages when using CLI_ST_PRINT_FREE
 8738     - MINOR: cli: Ensure the CLI always outputs an error when it should
 8739     - MEDIUM: sample: Extend functionality for field/word converters
 8740     - MINOR: export localpeer as an environment variable
 8741     - BUG/MEDIUM: kqueue: When adding new events, provide an output to get errors.
 8742     - BUILD: sample: avoid build warning in sample.c
 8743     - BUG/CRITICAL: h2: fix incorrect frame length check
 8744     - DOC: lua: update the links to the config and Lua API
 8745     - BUG/MINOR: pattern: Add a missing HA_SPIN_INIT() in pat_ref_newid()
 8746     - BUG/MAJOR: channel: Fix crash when trying to read from a closed socket
 8747     - BUG/MINOR: log: t_idle (%Ti) is not set for some requests
 8748     - BUG/MEDIUM: lua: Fix segmentation fault if a Lua task exits
 8749     - MINOR: h2: detect presence of CONNECT and/or content-length
 8750     - BUG/MEDIUM: h2: implement missing support for chunked encoded uploads
 8751     - BUG/MINOR: spoe: Fix counters update when processing is interrupted
 8752     - BUG/MINOR: spoe: Fix parsing of dontlog-normal option
 8753     - MEDIUM: cli: Add payload support
 8754     - MINOR: map: Add payload support to "add map"
 8755     - MINOR: ssl: Add payload support to "set ssl ocsp-response"
 8756     - BUG/MINOR: lua/threads: Make lua's tasks sticky to the current thread
 8757     - MINOR: sample: Add strcmp sample converter
 8758     - MINOR: http: Add support for 421 Misdirected Request
 8759     - BUG/MINOR: config: disable http-reuse on TCP proxies
 8760     - MINOR: ssl: disable SSL sample fetches when unsupported
 8761     - MINOR: ssl: add fetch 'ssl_fc_session_key' and 'ssl_bc_session_key'
 8762     - BUG/MINOR: checks: Fix check->health computation for flapping servers
 8763     - BUG/MEDIUM: threads: Fix the sync point for more than 32 threads
 8764     - BUG/MINOR, BUG/MINOR: lua: Put tasks to sleep when waiting for data
 8765     - MINOR: backend: implement random-based load balancing
 8766     - DOC/MINOR: clean up LUA documentation re: servers & array/table.
 8767     - MINOR: lua: Add server name & puid to LUA Server class.
 8768     - MINOR: lua: add get_maxconn and set_maxconn to LUA Server class.
 8769     - BUG/MINOR: map: correctly track reference to the last ref_elt being dumped
 8770     - BUG/MEDIUM: task: Don't free a task that is about to be run.
 8771     - MINOR: fd: Make the lockless fd list work with multiple lists.
 8772     - BUG/MEDIUM: pollers: Use a global list for fd shared between threads.
 8773     - MINOR: pollers: move polled_mask outside of struct fdtab.
 8774     - BUG/MINOR: lua: schedule socket task upon lua connect()
 8775     - BUG/MINOR: lua: ensure large proxy IDs can be represented
 8776     - BUG/MEDIUM: pollers/kqueue: use incremented position in event list
 8777     - BUG/MINOR: cli: don't stop cli_gen_usage_msg() when kw->usage == NULL
 8778     - BUG/MEDIUM: http: don't always abort transfers on CF_SHUTR
 8779     - BUG/MEDIUM: ssl: properly protect SSL cert generation
 8780     - BUG/MINOR: lua: Socket.send threw runtime error: 'close' needs 1 arguments.
 8781     - BUG/MINOR: spoe: Mistake in error message about SPOE configuration
 8782     - BUG/MEDIUM: spoe: Flags are not encoded in network order
 8783     - CLEANUP: spoe: Remove unused variables the agent structure
 8784     - DOC: spoe: fix a typo
 8785     - BUG/MEDIUM: contrib/mod_defender: Use network order to encode/decode flags
 8786     - BUG/MEDIUM: contrib/modsecurity: Use network order to encode/decode flags
 8787     - DOC: add some description of the pending rework of the buffer structure
 8788     - BUG/MINOR: ssl/lua: prevent lua from affecting automatic maxconn computation
 8789     - MINOR: lua: Improve error message
 8790     - BUG/MEDIUM: cache: don't cache when an Authorization header is present
 8791     - MINOR: ssl: set SSL_OP_PRIORITIZE_CHACHA
 8792     - BUG/MEDIUM: dns: Delay the attempt to run a DNS resolution on check failure.
 8793     - BUG/BUILD: threads: unbreak build without threads
 8794     - BUG/MEDIUM: servers: Add srv_addr default placeholder to the state file
 8795     - BUG/MEDIUM: lua/socket: Length required read doesn't work
 8796     - MINOR: tasks: Change the task API so that the callback takes 3 arguments.
 8797     - MAJOR: tasks: Create a per-thread runqueue.
 8798     - MAJOR: tasks: Introduce tasklets.
 8799     - MINOR: tasks: Make the number of tasks to run at once configurable.
 8800     - MAJOR: applets: Use tasks, instead of rolling our own scheduler.
 8801     - BUG/MEDIUM: stick-tables: Decrement ref_cnt in table_* converters
 8802     - MINOR: http: Log warning if (add|set)-header fails
 8803     - DOC: management: add the new wrew stats column
 8804     - MINOR: stats: also report the failed header rewrites warnings on the stats page
 8805     - BUG/MEDIUM: tasks: Don't forget to increase/decrease tasks_run_queue.
 8806     - BUG/MEDIUM: task: Don't forget to decrement max_processed after each task.
 8807     - MINOR: task: Also consider the task list size when getting global tasks.
 8808     - MINOR: dns: Implement `parse-resolv-conf` directive
 8809     - BUG/MEDIUM: spoe: Return an error when the wrong ACK is received in sync mode
 8810     - MINOR: task/notification: Is notifications registered ?
 8811     - BUG/MEDIUM: lua/socket: wrong scheduling for sockets
 8812     - BUG/MAJOR: lua: Dead lock with sockets
 8813     - BUG/MEDIUM: lua/socket: Notification error
 8814     - BUG/MEDIUM: lua/socket: Sheduling error on write: may dead-lock
 8815     - BUG/MEDIUM: lua/socket: Buffer error, may segfault
 8816     - DOC: contrib/modsecurity: few typo fixes
 8817     - DOC: SPOE.txt: fix a typo
 8818     - MAJOR: spoe: upgrade the SPOP version to 2.0 and remove the support for 1.0
 8819     - BUG/MINOR: contrib/spoa_example: Don't reset the status code during disconnect
 8820     - BUG/MINOR: contrib/mod_defender: Don't reset the status code during disconnect
 8821     - BUG/MINOR: contrib/modsecurity: Don't reset the status code during disconnect
 8822     - BUG/MINOR: contrib/mod_defender: update pointer on the end of the frame
 8823     - BUG/MINOR: contrib/modsecurity: update pointer on the end of the frame
 8824     - MINOR: task: Fix a compiler warning by adding a cast.
 8825     - MINOR: stats: also report the nice and number of calls for applets
 8826     - MINOR: applet: assign the same nice value to a new appctx as its owner task
 8827     - MINOR: task: Fix compiler warning.
 8828     - BUG/MEDIUM: tasks: Use the local runqueue when building without threads.
 8829     - MINOR: tasks: Don't define rqueue if we're building without threads.
 8830     - BUG/MINOR: unix: Make sure we can transfer abns sockets on seamless reload.
 8831     - MINOR: lua: Increase debug information
 8832     - BUG/MEDIUM: threads: handle signal queue only in thread 0
 8833     - BUG/MINOR: don't ignore SIG{BUS,FPE,ILL,SEGV} during signal processing
 8834     - BUG/MINOR: signals: ha_sigmask macro for multithreading
 8835     - BUG/MAJOR: map: fix a segfault when using http-request set-map
 8836     - DOC: regression testing: Add a short starting guide.
 8837     - MINOR: tasks: Make sure we correctly init and deinit a tasklet.
 8838     - BUG/MINOR: tasklets: Just make sure we don't pass a tasklet to the handler.
 8839     - BUG/MINOR: lua: Segfaults with wrong usage of types.
 8840     - BUG/MAJOR: ssl: Random crash with cipherlist capture
 8841     - BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
 8842     - BUG/MEDIUM: ssl: do not store pkinfo with SSL_set_ex_data
 8843     - MINOR: tests: First regression testing file.
 8844     - MINOR: reg-tests: Add reg-tests/README file.
 8845     - MINOR: reg-tests: Add a few regression testing files.
 8846     - DOC: Add new REGTEST tag info about reg testing.
 8847     - BUG/MEDIUM: fd: Don't modify the update_mask in fd_dodelete().
 8848     - MINOR: Some spelling cleanup in the comments.
 8849     - BUG/MEDIUM: threads: Use the sync point to check active jobs and exit
 8850     - MINOR: threads: Be sure to remove threads from all_threads_mask on exit
 8851     - REGTEST/MINOR: Wrong URI in a reg test for SSL/TLS.
 8852     - REGTEST/MINOR: Set HAPROXY_PROGRAM default value.
 8853     - REGTEST/MINOR: Add levels to reg-tests target.
 8854     - BUG/MAJOR: Stick-tables crash with segfault when the key is not in the stick-table
 8855     - BUG/BUILD: threads: unbreak build without threads
 8856     - BUG/MAJOR: stick_table: Complete incomplete SEGV fix
 8857     - MINOR: stick-tables: make stktable_release() do nothing on NULL
 8858     - BUG/MEDIUM: lua: possible CLOSE-WAIT state with '\n' headers
 8859     - MINOR: startup: change session/process group settings
 8860     - MINOR: systemd: consider exit status 143 as successful
 8861     - REGTEST/MINOR: Wrong URI syntax.
 8862     - CLEANUP: dns: remove obsolete macro DNS_MAX_IP_REC
 8863     - CLEANUP: dns: inacurate comment about prefered IP score
 8864     - MINOR: dns: fix wrong score computation in dns_get_ip_from_response
 8865     - MINOR: dns: new DNS options to allow/prevent IP address duplication
 8866     - REGTEST/MINOR: Unexpected curl URL globling.
 8867     - BUG/MINOR: ssl: properly ref-count the tls_keys entries
 8868     - MINOR: h2: keep a count of the number of conn_streams attached to the mux
 8869     - BUG/MEDIUM: h2: don't accept new streams if conn_streams are still in excess
 8870     - MINOR: h2: add the mux and demux buffer lengths on "show fd"
 8871     - BUG/MEDIUM: h2: never leave pending data in the output buffer on close
 8872     - BUG/MEDIUM: h2: make sure the last stream closes the connection after a timeout
 8873     - MINOR: tasklet: Set process to NULL.
 8874     - MINOR: buffer: implement a new file for low-level buffer manipulation functions
 8875     - MINOR: buffer: switch buffer sizes and offsets to size_t
 8876     - MINOR: buffer: add a few basic functions for the new API
 8877     - MINOR: buffer: Introduce b_sub(), b_add(), and bo_add()
 8878     - MINOR: buffer: Add b_set_data().
 8879     - MINOR: buffer: introduce b_realign_if_empty()
 8880     - MINOR: compression: pass the channel to http_compression_buffer_end()
 8881     - MINOR: channel: add a few basic functions for the new buffer API
 8882     - MINOR: channel/buffer: use c_realign_if_empty() instead of buffer_realign()
 8883     - MINOR: channel/buffer: replace buffer_slow_realign() with channel_slow_realign() and b_slow_realign()
 8884     - MEDIUM: channel: make channel_slow_realign() take a swap buffer
 8885     - MINOR: h2: use b_slow_realign() with the trash as a swap buffer
 8886     - MINOR: buffer: remove buffer_slow_realign() and the swap_buffer allocation code
 8887     - MINOR: channel/buffer: replace b_{adv,rew} with c_{adv,rew}
 8888     - MINOR: buffer: replace calls to buffer_space_wraps() with b_space_wraps()
 8889     - MINOR: buffer: remove bi_getblk() and bi_getblk_nc()
 8890     - MINOR: buffer: split bi_contig_data() into ci_contig_data and b_config_data()
 8891     - MINOR: buffer: remove bi_ptr()
 8892     - MINOR: buffer: remove bo_ptr()
 8893     - MINOR: buffer: remove bo_end()
 8894     - MINOR: buffer: remove bi_end()
 8895     - MINOR: buffer: remove bo_contig_data()
 8896     - MINOR: buffer: merge b{i,o}_contig_space()
 8897     - MINOR: buffer: replace bo_getblk() with direction agnostic b_getblk()
 8898     - MINOR: buffer: replace bo_getblk_nc() with b_getblk_nc() which takes an offset
 8899     - MINOR: buffer: replace bi_del() and bo_del() with b_del()
 8900     - MINOR: buffer: convert most b_ptr() calls to c_ptr()
 8901     - MINOR: h1: make h1_measure_trailers() take the byte count in argument
 8902     - MINOR: h2: clarify the fact that the send functions are unsigned
 8903     - MEDIUM: h2: prevent the various mux encoders from modifying the buffer
 8904     - MINOR: h1: make h1_skip_chunk_crlf() not depend on b_ptr() anymore
 8905     - MINOR: h1: make h1_parse_chunk_size() not depend on b_ptr() anymore
 8906     - MINOR: h1: make h1_measure_trailers() use an offset and a count
 8907     - MEDIUM: h2: do not use buf->o anymore inside h2_snd_buf's loop
 8908     - MEDIUM: h2: don't use b_ptr() nor b_end() anymore
 8909     - MINOR: buffer: get rid of b_end() and b_to_end()
 8910     - MINOR: buffer: make b_getblk_nc() take const pointers
 8911     - MINOR: buffer: make b_getblk_nc() take size_t for the block sizes
 8912     - MEDIUM: connection: make xprt->snd_buf() take the byte count in argument
 8913     - MEDIUM: mux: make mux->snd_buf() take the byte count in argument
 8914     - MEDIUM: connection: make xprt->rcv_buf() use size_t for the count
 8915     - MEDIUM: mux: make mux->rcv_buf() take a size_t for the count
 8916     - MINOR: connection: add a flags argument to rcv_buf()
 8917     - MINOR: connection: add a new receive flag : CO_RFL_BUF_WET
 8918     - MINOR: buffer: get rid of b_ptr() and convert its last users
 8919     - MINOR: buffer: use b_room() to determine available space in a buffer
 8920     - MINOR: buffer: replace buffer_not_empty() with b_data() or c_data()
 8921     - MINOR: buffer: replace buffer_empty() with b_empty() or c_empty()
 8922     - MINOR: buffer: make bo_putchar() use b_tail()
 8923     - MINOR: buffer: replace buffer_full() with channel_full()
 8924     - MINOR: buffer: replace bi_space_for_replace() with ci_space_for_replace()
 8925     - MINOR: buffer: replace buffer_pending() with ci_data()
 8926     - MINOR: buffer: replace buffer_flush() with c_adv(chn, ci_data(chn))
 8927     - MINOR: buffer: use c_head() instead of buffer_wrap_sub(c->buf, p-o)
 8928     - MINOR: buffer: use b_orig() to replace most references to b->data
 8929     - MINOR: buffer: Use b_add()/bo_add() instead of accessing b->i/b->o.
 8930     - MINOR: channel: remove almost all references to buf->i and buf->o
 8931     - MINOR: channel: Add co_set_data().
 8932     - MEDIUM: channel: adapt to the new buffer API
 8933     - MINOR: checks: adapt to the new buffer API
 8934     - MEDIUM: h2: update to the new buffer API
 8935     - MINOR: buffer: remove unused bo_add()
 8936     - MEDIUM: spoe: use the new buffer API for the SPOE buffer
 8937     - MINOR: stats: adapt to the new buffers API
 8938     - MINOR: cli: use the new buffer API
 8939     - MINOR: cache: use the new buffer API
 8940     - MINOR: stream-int: use the new buffer API
 8941     - MINOR: stream: use wrappers instead of directly manipulating buffers
 8942     - MINOR: backend: use new buffer API
 8943     - MEDIUM: http: use wrappers instead of directly manipulating buffers states
 8944     - MINOR: filters: convert to the new buffer API
 8945     - MINOR: payload: convert to the new buffer API
 8946     - MEDIUM: h1: port to new buffer API.
 8947     - MINOR: flt_trace: adapt to the new buffer API
 8948     - MEDIUM: compression: start to move to the new buffer API
 8949     - MINOR: lua: use the wrappers instead of directly manipulating buffer states
 8950     - MINOR: buffer: convert part bo_putblk() and bi_putblk() to the new API
 8951     - MINOR: buffer: adapt buffer_slow_realign() and buffer_dump() to the new API
 8952     - MAJOR: start to change buffer API
 8953     - MINOR: buffer: remove the check for output on b_del()
 8954     - MINOR: buffer: b_set_data() doesn't truncate output data anymore
 8955     - MINOR: buffer: rename the "data" field to "area"
 8956     - MEDIUM: buffers: move "output" from struct buffer to struct channel
 8957     - MINOR: buffer: replace bi_fast_delete() with b_del()
 8958     - MINOR: buffer: replace b{i,o}_put* with b_put*
 8959     - MINOR: buffer: add a new file for ist + buffer manipulation functions
 8960     - MINOR: checks: use b_putist() instead of b_putstr()
 8961     - MINOR: buffers: remove b_putstr()
 8962     - CLEANUP: buffer: minor cleanups to buffer.h
 8963     - MINOR: buffers/channel: replace buffer_insert_line2() with ci_insert_line2()
 8964     - MINOR: buffer: replace buffer_replace2() with b_rep_blk()
 8965     - MINOR: buffer: rename the data length member to '->data'
 8966     - MAJOR: buffer: finalize buffer detachment
 8967     - MEDIUM: chunks: make the chunk struct's fields match the buffer struct
 8968     - MAJOR: chunks: replace struct chunk with struct buffer
 8969     - DOC: buffers: document the new buffers API
 8970     - DOC: buffers: remove obsolete docs about buffers
 8971     - MINOR: tasklets: Don't attempt to add a tasklet in the list twice.
 8972     - MINOR: connections/mux: Add a new "subscribe" method.
 8973     - MEDIUM: connections/mux: Revamp the send direction.
 8974     - MINOR: connection: simplify subscription by adding a registration function
 8975     - BUG/MINOR: http: Set brackets for the unlikely macro at the right place
 8976     - BUG/MINOR: build: Fix compilation with debug mode enabled
 8977     - BUILD: Generate sha256 checksums in publish-release
 8978     - MINOR: debug: Add check for CO_FL_WILL_UPDATE
 8979     - MINOR: debug: Add checks for conn_stream flags
 8980     - MINOR: ist: Add the function isteqi
 8981     - BUG/MEDIUM: threads: Fix the exit condition of the thread barrier
 8982     - BUG/MEDIUM: mux_h2: Call h2_send() before updating polling.
 8983     - MINOR: buffers: simplify b_contig_space()
 8984     - MINOR: buffers: split b_putblk() into __b_putblk()
 8985     - MINOR: buffers: add b_xfer() to transfer data between buffers
 8986     - DOC: add some design notes about the new layering model
 8987     - MINOR: conn_stream: add a new CS_FL_REOS flag
 8988     - MINOR: conn_stream: add an rx buffer to the conn_stream
 8989     - MEDIUM: conn_stream: add cs_recv() as a default rcv_buf() function
 8990     - MEDIUM: stream-int: automatically call si_cs_recv_cb() if the cs has data on wake()
 8991     - MINOR: h2: make each H2 stream support an intermediary input buffer
 8992     - MEDIUM: h2: make h2_frt_decode_headers() use an intermediary buffer
 8993     - MEDIUM: h2: make h2_frt_transfer_data() copy via an intermediary buffer
 8994     - MEDIUM: h2: centralize transfer of decoded frames in h2_rcv_buf()
 8995     - MEDIUM: h2: move headers and data frame decoding to their respective parsers
 8996     - MEDIUM: buffers: make b_xfer() automatically swap buffers when possible
 8997     - MEDIUM: h2: perform a single call to the data layer in demux()
 8998     - MEDIUM: h2: don't call data_cb->recv() anymore
 8999     - MINOR: h2: make use of CS_FL_REOS to indicate that end of stream was seen
 9000     - MEDIUM: h2: use the default conn_stream's receive function
 9001     - DOC: add more design feedback on the new layering model
 9002     - MINOR: h2: add the error code and the max/last stream IDs to "show fd"
 9003     - BUG/MEDIUM: stream-int: don't immediately enable reading when the buffer was reportedly full
 9004     - BUG/MEDIUM: stats: don't ask for more data as long as we're responding
 9005     - BUG/MINOR: servers: Don't make "server" in a frontend fatal.
 9006     - BUG/MEDIUM: tasks: make sure we pick all tasks in the run queue
 9007     - BUG/MEDIUM: tasks: Decrement rqueue_size at the right time.
 9008     - BUG/MEDIUM: tasks: use atomic ops for active_tasks_mask
 9009     - BUG/MEDIUM: tasks: Make sure there's no task left before considering inactive.
 9010     - MINOR: signal: don't pass the signal number anymore as the wakeup reason
 9011     - MINOR: tasks: extend the state bits from 8 to 16 and remove the reason
 9012     - MINOR: tasks: Add a flag that tells if we're in the global runqueue.
 9013     - BUG/MEDIUM: tasks: make __task_unlink_rq responsible for the rqueue size.
 9014     - MINOR: queue: centralize dequeuing code a bit better
 9015     - MEDIUM: queue: make pendconn_free() work on the stream instead
 9016     - DOC: queue: document the expected locking model for the server's queue
 9017     - MINOR: queue: make sure pendconn->strm->pend_pos is always valid
 9018     - MINOR: queue: use a distinct variable for the assigned server and the queue
 9019     - MINOR: queue: implement pendconn queue locking functions
 9020     - MEDIUM: queue: get rid of the pendconn lock
 9021     - MINOR: tasks: Make active_tasks_mask volatile.
 9022     - MINOR: tasks: Make global_tasks_mask volatile.
 9023     - MINOR: pollers: Add a way to wake a thread sleeping in the poller.
 9024     - MINOR: threads/queue: Get rid of THREAD_WANT_SYNC in the queue code.
 9025     - BUG/MEDIUM: threads/sync: use sched_yield when available
 9026     - MINOR: ssl: BoringSSL matches OpenSSL 1.1.0
 9027     - BUG/MEDIUM: h2: prevent orphaned streams from blocking a connection forever
 9028     - BUG/MINOR: config: stick-table is not supported in defaults section
 9029     - BUILD/MINOR: threads: unbreak build with threads disabled
 9030     - BUG/MINOR: threads: Handle nbthread == MAX_THREADS.
 9031     - BUG/MEDIUM: threads: properly fix nbthreads == MAX_THREADS
 9032     - MINOR: threads: move "nbthread" parsing to hathreads.c
 9033     - BUG/MEDIUM: threads: unbreak "bind" referencing an incorrect thread number
 9034     - MEDIUM: proxy_protocol: Convert IPs to v6 when protocols are mixed
 9035     - BUILD/MINOR: compiler: fix offsetof() on older compilers
 9036     - SCRIPTS: git-show-backports: add missing quotes to "echo"
 9037     - MINOR: threads: add more consistency between certain variables in no-thread case
 9038     - MEDIUM: hathreads: implement a more flexible rendez-vous point
 9039     - BUG/MEDIUM: cli: make "show fd" thread-safe
 9040 
 9041 2017/11/26 : 1.9-dev0
 9042 
 9043 2017/11/26 : 1.8.0
 9044     - BUG/MEDIUM: stream: don't automatically forward connect nor close
 9045     - BUG/MAJOR: stream: ensure analysers are always called upon close
 9046     - BUG/MINOR: stream-int: don't try to read again when CF_READ_DONTWAIT is set
 9047     - MEDIUM: mworker: Add systemd `Type=notify` support
 9048     - BUG/MEDIUM: cache: free callback to remove from tree
 9049     - CLEANUP: cache: remove unused struct
 9050     - MEDIUM: cache: enable the HTTP analysers
 9051     - CLEANUP: cache: remove wrong comment
 9052     - MINOR: threads/atomic: rename local variables in macros to avoid conflicts
 9053     - MINOR: threads/plock: rename local variables in macros to avoid conflicts
 9054     - MINOR: threads/atomic: implement pl_mb() in asm on x86
 9055     - MINOR: threads/atomic: implement pl_bts() on non-x86
 9056     - MINOR: threads/build: atomic: replace the few inlines with macros
 9057     - BUILD: threads/plock: fix a build issue on Clang without optimization
 9058     - BUILD: ebtree: don't redefine types u32/s32 in scope-aware trees
 9059     - BUILD: compiler: add a new type modifier __maybe_unused
 9060     - BUILD: h2: mark some inlined functions "unused"
 9061     - BUILD: server: check->desc always exists
 9062     - BUG/MEDIUM: h2: properly report connection errors in headers and data handlers
 9063     - MEDIUM: h2: add a function to emit an HTTP/1 request from a headers list
 9064     - MEDIUM: h2: change hpack_decode_headers() to only provide a list of headers
 9065     - BUG/MEDIUM: h2: always reassemble the Cookie request header field
 9066     - BUG/MINOR: systemd: ignore daemon mode
 9067     - CONTRIB: spoa_example: allow to compile outside HAProxy.
 9068     - CONTRIB: spoa_example: remove bref, wordlist, cond_wordlist
 9069     - CONTRIB: spoa_example: remove last dependencies on type "sample"
 9070     - CONTRIB: spoa_example: remove SPOE enums that are useless for clients
 9071     - CLEANUP: cache: reorder includes
 9072     - MEDIUM: shctx: use unsigned int for len and block_count
 9073     - MEDIUM: cache: "show cache" on the cli
 9074     - BUG/MEDIUM: cache: use key=0 as a condition for freeing
 9075     - BUG/MEDIUM: cache: refcount forbids to free the objects
 9076     - BUG/MEDIUM: cache fix cli_kws structure
 9077     - BUG/MEDIUM: deinit: correctly deinitialize the proxy and global listener tasks
 9078     - BUG/MINOR: ssl: Always start the handshake if we can't send early data.
 9079     - MINOR: ssl: Don't disable early data handling if we could not write.
 9080     - MINOR: pools: prepare functions to override malloc/free in pools
 9081     - MINOR: pools: implement DEBUG_UAF to detect use after free
 9082     - BUG/MEDIUM: threads/time: fix time drift correction
 9083     - BUG/MEDIUM: threads/time: maintain a common time reference between all threads
 9084     - MINOR: sample: Add "thread" sample fetch
 9085     - BUG/MINOR: Use crt_base instead of ca_base when crt is parsed on a server line
 9086     - BUG/MINOR: stream: fix tv_request calculation for applets
 9087     - BUG/MAJOR: h2: always remove a stream from the send list before freeing it
 9088     - BUG/MAJOR: threads/task: dequeue expired tasks under the WQ lock
 9089     - MINOR: ssl: Handle reading early data after writing better.
 9090     - MINOR: mux: Make sure every string is woken up after the handshake.
 9091     - MEDIUM: cache: store sha1 for hashing the cache key
 9092     - MINOR: http: implement the "http-request reject" rule
 9093     - MINOR: h2: send RST_STREAM before GOAWAY on reject
 9094     - MEDIUM: h2: don't gracefully close the connection anymore on Connection: close
 9095     - MINOR: h2: make use of client-fin timeout after GOAWAY
 9096     - MEDIUM: config: ensure that tune.bufsize is at least 16384 when using HTTP/2
 9097     - MINOR: ssl: Handle early data with BoringSSL
 9098     - BUG/MEDIUM: stream: always release the stream-interface on abort
 9099     - BUG/MEDIUM: cache: free ressources in chn_end_analyze
 9100     - MINOR: cache: move the refcount decrease in the applet release
 9101     - BUG/MINOR: listener: Allow multiple "process" options on "bind" lines
 9102     - MINOR: config: Support a range to specify processes in "cpu-map" parameter
 9103     - MINOR: config: Slightly change how parse_process_number works
 9104     - MINOR: config: Export parse_process_number and use it wherever it's applicable
 9105     - MINOR: standard: Add my_ffsl function to get the position of the bit set to one
 9106     - MINOR: config: Add auto-increment feature for cpu-map
 9107     - MINOR: config: Support partial ranges in cpu-map directive
 9108     - MINOR:: config: Remove thread-map directive
 9109     - MINOR: config: Add the threads support in cpu-map directive
 9110     - MINOR: config: Add threads support for "process" option on "bind" lines
 9111     - MEDIUM: listener: Bind listeners on a thread subset if specified
 9112     - CLEANUP: debug: Use DPRINTF instead of fprintf into #ifdef DEBUG_FULL/#endif
 9113     - CLEANUP: log: Rename Alert/Warning in ha_alert/ha_warning
 9114     - MINOR/CLEANUP: proxy: rename "proxy" to "proxies_list"
 9115     - CLEANUP: pools: rename all pool functions and pointers to remove this "2"
 9116     - DOC: update the roadmap file with the latest changes merged in 1.8
 9117     - DOC: fix mangled version in peers protocol documentation
 9118     - DOC: add initial peers protovol v2.0 documentation.
 9119     - DOC: mention William as maintainer of the cache and master-worker
 9120     - DOC: add Christopher and Emeric as maintainers of the threads
 9121     - MINOR: cache: replace a fprint() by an abort()
 9122     - MEDIUM: cache: max-age configuration keyword
 9123     - DOC: explain HTTP2 timeout behavior
 9124     - DOC: cache: configuration and management
 9125     - MAJOR: mworker: exits the master on failure
 9126     - BUG/MINOR: threads: don't drop "extern" on the lock in include files
 9127     - MINOR: task: keep a pointer to the currently running task
 9128     - MINOR: task: align the rq and wq locks
 9129     - MINOR: fd: cache-align fdtab and fdcache locks
 9130     - MINOR: buffers: cache-align buffer_wq_lock
 9131     - CLEANUP: server: reorder some fields in struct server to save 40 bytes
 9132     - CLEANUP: proxy: slightly reorder the struct proxy to reduce holes
 9133     - CLEANUP: checks: remove 16 bytes of holes in struct check
 9134     - CLEANUP: cache: more efficiently pack the struct cache
 9135     - CLEANUP: fd: place the lock at the beginning of struct fdtab
 9136     - CLEANUP: pools: align pools on a cache line
 9137     - DOC: config: add a few bits about how to configure HTTP/2
 9138     - BUG/MAJOR: threads/queue: avoid recursive locking in pendconn_get_next_strm()
 9139     - BUILD: Makefile: reorder object files by size
 9140 
 9141 2017/11/19 : 1.8-rc4
 9142     - BUG/MEDIUM: cache: does not cache if no Content-Length
 9143     - BUILD: thread/pipe: fix build without threads
 9144     - BUG/MINOR: spoe: check buffer size before acquiring or releasing it
 9145     - MINOR: debug/flags: Add missing flags
 9146     - MINOR: threads: Use __decl_hathreads to declare locks
 9147     - BUG/MINOR: buffers: Fix b_alloc_margin to be "fonctionnaly" thread-safe
 9148     - BUG/MAJOR: ebtree/scope: fix insertion and removal of duplicates in scope-aware trees
 9149     - BUG/MAJOR: ebtree/scope: fix lookup of next node in scope-aware trees
 9150     - MINOR: ebtree/scope: add a function to find next node from a parent
 9151     - MINOR: ebtree/scope: simplify the lookup functions by using eb32sc_next_with_parent()
 9152     - BUG/MEDIUM: mworker: Fix re-exec when haproxy is started from PATH
 9153     - BUG/MEDIUM: cache: use msg->sov to forward header
 9154     - MINOR: cache: forward data with headers
 9155     - MINOR: cache: disable cache if shctx_row_data_append fail
 9156     - BUG/MINOR: threads: tid_bit must be a unsigned long
 9157     - CLEANUP: tasks: Remove useless double test on rq_next
 9158     - BUG/MEDIUM: standard: itao_str/idx and quote_str/idx must be thread-local
 9159     - MINOR: tools: add a function to dump a scope-aware tree to a file
 9160     - MINOR: tools: improve the DOT dump of the ebtree
 9161     - MINOR: tools: emphasize the node being worked on in the tree dump
 9162     - BUG/MAJOR: ebtree/scope: properly tag upper nodes during insertion
 9163     - DOC: peers: Add a first version of peers protocol v2.1.
 9164     - CONTRIB: Wireshark dissector for HAProxy Peer Protocol.
 9165     - MINOR