Changes since version 2.8-dev1 : Amaury Denoyelle (6): BUG/MINOR: mux-quic: fix transfer of empty HTTP response MINOR: mux-quic: add traces for flow-control limit reach MAJOR: mux-quic: rework stream sending priorization MEDIUM: h3: send SETTINGS before STREAM frames MINOR: mux-quic: use send-list for STOP_SENDING/RESET_STREAM emission MINOR: mux-quic: use send-list for immediate sending retry Christopher Faulet (24): MINOR: channel: Don't test CF_READ_NULL while CF_SHUTR is enough REORG: channel: Rename CF_READ_NULL to CF_READ_EVENT REORG: channel: Rename CF_WRITE_NULL to CF_WRITE_EVENT MEDIUM: channel: Use CF_READ_EVENT instead of CF_READ_PARTIAL MEDIUM: channel: Use CF_WRITE_EVENT instead of CF_WRITE_PARTIAL MINOR: channel: Remove CF_READ_ACTIVITY MINOR: channel: Remove CF_WRITE_ACTIVITY MINOR: channel: Remove CF_ANA_TIMEOUT and report CF_READ_EVENT instead MEDIUM: channel: Remove CF_READ_ATTACHED and report CF_READ_EVENT instead MINOR: channel: Stop to test CF_READ_ERROR flag if CF_SHUTR is enough MINOR: channel/applets: Stop to test CF_WRITE_ERROR flag if CF_SHUTW is enough BUG/MINOR: h1-htx: Remove flags about protocol upgrade on non-101 responses BUG/MINOR: hlua: Fix Channel.line and Channel.data behavior regarding the doc BUG/MINOR: resolvers: Wait the resolution execution for a do_resolv action BUG/MINOR: promex: Don't forget to consume the request on error MINOR: http-ana: Add a function to set HTTP termination flags MINOR: http-ana: Use http_set_term_flags() in most of HTTP analyzers BUG/MINOR: http-ana: Report SF_FINST_R flag on error waiting the request body MINOR: http-ana: Use http_set_term_flags() when waiting the request body BUG/MINOR: http-fetch: Don't block HTTP sample fetch eval in HTTP_MSG_ERROR state MAJOR: http-ana: Review error handling during HTTP payload forwarding CLEANUP: http-ana: Remove HTTP_MSG_ERROR state BUG/MEDIUM: mux-h2: Don't send CANCEL on shutw when response length is unkown MINOR: htx: Add an HTX value for the extra field is payload length is unknown Manu Nicolas (1): CLEANUP: htx: fix a typo in an error message of http_str_to_htx Mathias Weiersmueller (1): DOC: config: added optional rst-ttl argument to silent-drop in action lists Remi Tricot-Le Breton (16): BUG/MINOR: ssl: Fix crash in 'update ssl ocsp-response' CLI command BUG/MINOR: ssl: Crash during cleanup because of ocsp structure pointer UAF MINOR: ssl: Create temp X509_STORE filled with cert chain when checking ocsp response MINOR: ssl: Only set ocsp->issuer if issuer not in cert chain MINOR: ssl: Release ssl_ocsp_task_ctx.cur_ocsp when destroying task MINOR: ssl: Detect more OCSP update inconsistencies BUG/MINOR: ssl: Fix OCSP_CERTID leak when same certificate is used multiple times MINOR: ssl: Limit ocsp_uri buffer size to minimum MINOR: ssl: Remove mention of ckch_store in error message of cli command BUG/MINOR: ssl: Remove unneeded pointer check in ocsp cli release function BUG/MINOR: ssl: Missing ssl_conf pointer check when checking ocsp update inconsistencies BUG/MINOR: ssl: OCSP minimum update threshold not properly set MINOR: ssl: Treat ocsp-update inconsistencies as fatal errors MINOR: ssl: Do not wake ocsp update task if update tree empty MINOR: ssl: Reinsert updated ocsp response later in tree in case of http error REGTEST: ssl: Add test for 'update ssl ocsp-response' CLI command William Lallemand (2): DOC: management: add details on "Used" status DOC: management: add details about @system-ca in "show ssl ca-file" Willy Tarreau (5): DEV: tcploop: add minimal support for unix sockets BUG/MEDIUM: listener: duplicate inherited FDs if needed OPTIM: global: move byte counts out of global and per-thread BUG/MEDIUM: peers: make "show peers" more careful about partial initialization BUG/MINOR: http-ana: make set-status also update txn->status