Changes since version 1.7-dev3 : Bertrand Jacquin (2): MINOR: listener: add the "accept-netscaler-cip" option to the "bind" keyword MINOR: tcp: add "tcp-request connection expect-netscaler-cip layer4" Christopher Faulet (7): MEDIUM: filters: Move HTTP headers filtering in its own callback MINOR: filters: Simplify calls to analyzers using 2 new macros MEDIUM: filters: Add pre and post analyzer callbacks DOC: filters: Update the filters documentation accordingly to recent changes BUG/MEDIUM: filters: Fix data filtering when data are modified BUG/MINOR: filters: Fix HTTP parsing when a filter loops on data forwarding BUG/MINOR: Rework slightly commit 9962f8fc to clean code and avoid mistakes Cyril Bonté (1): BUG/MEDIUM: stats: show servers state may show an servers from another backend David Carlier (1): CLEANUP: dumpstats: u64 field is an unsigned type. Dragan Dosen (4): MINOR: stream: export the function 'smp_create_src_stkctr' BUG/MINOR: http: url32+src should use the big endian version of url32 BUG/MINOR: http: url32+src should check cli_conn before using it DOC: http: add documentation for url32 and url32+src Emmanuel Hocdet (2): MEDIUM: ssl: support SNI filters with multicerts MINOR: ssl: crt-list parsing factor Lukas Tribus (1): BUG/MEDIUM: dns: unbreak DNS resolver after header fix Maxime de Roucy (4): MINOR: add list_append_word function MEDIUM: init: use list_append_word in haproxy.c MEDIUM: init: allow directory as argument of -f BUG/MEDIUM: init: don't use environment locale Nenad Merdanovic (1): DOC: Fix typo so fetch is properly parsed by Cyril's converter Pavlos Parissis (2): MINOR: systemd: Use variable for config and pidfile paths MINOR: systemd: Perform sanity check on config before reload Roberto Guimaraes (1): BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params() Ruoshan Huang (1): BUG/MINOR: fix http-response set-log-level parsing error Thierry Fournier (4): BUG/MEDIUM: sticktables: segfault in some configuration error cases BUG/MEDIUM: lua: converters doesn't work BUG/MINOR: http: add-header: header name copied twice BUG/MEDIUM: http: add-header: buffer overwritten Vincent Bernat (2): BUG/MAJOR: fix listening IP address storage for frontends BUG/MINOR: fix listening IP address storage for frontends (cont) William Lallemand (9): BUG/MEDIUM: fix risk of segfault with "show tls-keys" MEDIUM: dumpstats: 'show tls-keys' is now able to show secrets DOC: update doc about tls-tickets-keys dump MEDIUM: tcp: add 'set-src' to 'tcp-request connection' MINOR: set the CO_FL_ADDR_FROM_SET flags with 'set-src' MEDIUM: tcp/http: add 'set-src-port' action MEDIUM: tcp/http: new set-dst/set-dst-port actions BUG/MEDIUM: dumpstats: undefined behavior in stats_tlskeys_list() MEDIUM: dumpstats: make stats_tlskeys_list() yield-aware during tls-keys dump Willy Tarreau (23): CLEANUP: config: detect double registration of a config section MINOR: log: add the %Td log-format specifier SCRIPTS: teach git-show-backports how to report upstream commits SCRIPTS: make git-show-backports capable of limiting its history BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes BUG/MEDIUM: stick-tables: fix breakage in table converters MINOR: stick-table: change all stick-table converters' inputs to SMP_T_ANY BUILD: fix build on Solaris 11 BUG/MEDIUM: config: fix multiple declaration of section parsers BUILD/MEDIUM: rebuild everything when an include file is changed BUILD/MEDIUM: force a full rebuild if some build options change BUILD: ssl: fix typo causing a build failure in the multicert patch BUG/MINOR: init: always ensure that global.rlimit_nofile matches actual limits BUG/MINOR: init: ensure that FD limit is raised to the max allowed BUG/MEDIUM: external-checks: close all FDs right after the fork() BUG/MAJOR: external-checks: use asynchronous signal delivery BUG/MINOR: external-checks: do not unblock undesired signals CLEANUP: external-check: don't block/unblock SIGCHLD when manipulating the list BUG/MINOR: srv-state: fix incorrect output of state file BUG/MINOR: http: fix misleading error message for response captures BUG/BUILD: don't automatically run "make" on "make install" DOC: add missing doc for http-request deny [deny_status ] BUG/MEDIUM: http: unbreak uri/header/url_param hashing mildis (1): BUG/MINOR: ssl: close ssl key file on error