Changes since version 2.2.4 :

Amaury Denoyelle (3):
      MINOR: counters: fix a typo in comment
      BUG/MINOR: stats: fix validity of the json schema
      BUG/MINOR: connection: fix loop iter on connection takeover

Brad Smith (1):
      BUILD: makefile: Fix building with closefrom() support enabled

Christopher Faulet (14):
      DOC: tcp-rules: Refresh details about L7 matching for tcp-request content rules
      BUG/MINOR: tcpcheck: Set socks4 and send-proxy flags before the connect call
      MINOR: hlua: Display debug messages on stderr only in debug mode
      BUG/MINOR: mux-h1: Be sure to only set CO_RFL_READ_ONCE for the first read
      BUG/MINOR: mux-h1: Always set the session on frontend h1 stream
      BUG/MEDIUM: mux-fcgi: Don't handle pending read0 too early on streams
      BUG/MEDIUM: mux-h2: Don't handle pending read0 too early on streams
      BUG/MINOR: http: Fix content-length of the default 500 error
      BUG/MINOR: http-htx: Expect no body for 204/304 internal HTTP responses
      BUG/MEDIUM: spoe: Unset variable instead of set it if no data provided
      BUG/MEDIUM: mux-h1: Get the session from the H1S when capturing bad messages
      BUG/MEDIUM: lb: Always lock the server when calling server_{take,drop}_conn
      BUG/MINOR: http-ana: Don't send payload for internal responses to HEAD requests
      BUG/MAJOR: mux-h2: Don't try to send data if we know it is no longer possible

Eric Salama (1):
      BUG/MINOR: Fix several leaks of 'log_tag' in init().

Frédéric Lécaille (2):
      BUG/MINOR: peers: Inconsistency when dumping peer status codes.
      BUG/MINOR: peers: Possible unexpected peer seesion reset after collisions.

Ilya Shipitsin (2):
      BUG/MINOR: disable dynamic OCSP load with BoringSSL
      BUILD: ssl: make BoringSSL use its own version numbers

Matteo Contrini (1):
      DOC: fix typo in MAX_SESS_STKCTR

Pierre Cheynier (1):
      DOC: Add missing stats fields in the management doc

Sébastien Gross (1):
      DOC: Fix typos in configuration.txt

Tim Duesterhus (1):
      MINOR: ssl: Add error if a crt-list might be truncated

William Lallemand (3):
      MINOR: ssl: Add warning if a crt-list might be truncated
      MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension
      Revert "MINOR: ssl: 'ssl-load-extra-del-ext' removes the certificate extension"

Willy Tarreau (11):
      BUILD: ssl_crtlist: work around another bogus gcc-9.3 warning
      BUG/MEDIUM: queue: make pendconn_cond_unlink() really thread-safe
      DOC: fix a confusing typo on a regsub example
      CLEANUP: tree-wide: use VAR_ARRAY instead of [0] in various definitions
      BUILD: connection: fix build on clang after the VAR_ARRAY cleanup
      BUG/MINOR: init: only keep rlim_fd_cur if max is unlimited
      BUG/MINOR: mux-h2: do not stop outgoing connections on stopping
      MINOR: fd: report an error message when failing initial allocations
      BUG/MEDIUM: task: bound the number of tasks picked from the wait queue at once
      BUG/MINOR: queue: properly report redistributed connections
      BUG/MEDIUM: server: support changing the slowstart value from state-file