Changes since version 2.8.16 :

Alexander Stephan (5):
      BUG/MINOR: halog: Add OOM checks for calloc() in filter_count_srv_status() and filter_count_url()
      BUG/MINOR: log: Add OOM checks for calloc() and malloc() in logformat parser and dup_logger()
      BUG/MINOR: cfgparse: Add OOM check for calloc() in cfg_parse_listen()
      BUG/MINOR: compression: Add OOM check for calloc() in parse_compression_options()
      BUG/MINOR: tools: Add OOM check for malloc() in indent_msg()

Amaury Denoyelle (24):
      MINOR: quic: rename min/max fields for congestion window algo
      BUG/MINOR: quic: ensure cwnd limits are always enforced
      BUG/MINOR: mux-quic/h3: properly handle too low peer fctl initial stream
      OPTIM: quic: improve slightly qc_snd_buf() internal
      MINOR: quic: move IP_PKTINFO on send on a dedicated function
      BUG/MEDIUM: h3: do not overwrite interim with final response
      BUG/MINOR mux-quic: apply correctly timeout on output pending data
      BUG/MINOR: quic: check applet_putchk() for 'show quic' first line
      BUG/MEDIUM: h3: properly encode response after interim one in same buf
      MINOR: qmux: change API for snd_buf FIN transmission
      BUG/MEDIUM: h3: handle interim response properly on FE side
      BUG/MINOR: quic: close connection on CID alloc failure
      MINOR: ncbuf: extract common types
      MINOR: ncbmbuf: define new ncbmbuf type
      MINOR: ncbmbuf: implement add
      MINOR: ncbmbuf: implement iterator bitmap utilities functions
      MINOR: ncbmbuf: implement ncbmb_data()
      MINOR: ncbmbuf: implement advance operation
      MINOR: ncbmbuf: add tests as standalone mode
      BUG/MAJOR: quic: use ncbmbuf for CRYPTO handling
      MINOR: mux-quic: refactor wait-for-handshake support
      BUG/MEDIUM: mux-quic: ensure Early-data header is set
      BUG/MINOR: mux-quic: ensure close-spread-time is properly applied
      BUG/MEDIUM: mux-quic: adjust wakeup behavior

Aurelien DARRAGON (2):
      BUG/MINOR: sink: retry attempt for sft server may never occur
      BUG/MINOR: log: fix potential memory leak upon error in add_to_logformat_list()

Christopher Faulet (6):
      BUG/MINOr: hlua: Fix receive from HTTP applet by properly accounting data
      BUG/MAJOR: stream: Force channel analysis on successful synchronous send
      BUG/MINOR: config: Limit "tune.maxpollevents" parameter to 1000000
      BUG/MEDIUM: stick-tables: Always return the good stksess from stktable_set_entry
      BUG/MINOR: http-ana: Reset analyse_exp date after 'wait-for-body' action
      BUG/MEDIUM: http-ana: Don't close server connection on read0 in TUNNEL mode

Frederic Lecaille (7):
      BUG/MINOR: quic: reorder fragmented RX CRYPTO frames by their offsets
      MINOR: quic: remove ->offset qf_crypto struct field
      CLEANUP: quic: remove a useless CRYPTO frame variable assignment
      BUG/MEDIUM: quic: CRYPTO frame freeing without eb_delete()
      BUG/MINOR: quic: ignore AGAIN ncbuf err when parsing CRYPTO frames
      BUG/MINOR: quic: Missing SSL session object freeing
      BUG/MINOR: quic: Wrong source address use on FreeBSD

Huangbin Zhan (1):
      MINOR: http: fix 405,431,501 default errorfile

Lukas Tribus (1):
      DOC: http: document 413 response code

Olivier Houchard (3):
      BUG/MEDIUM: stick-tables: Don't forget to dec count on failure.
      MINOR: h1: h1_release() should return if it destroyed the connection
      BUG/MEDIUM: h1: prevent a crash on HTTP/2 upgrade

Remi Tricot-Le Breton (4):
      BUG/MINOR: ssl: Free global_ssl structure contents during deinit
      BUG/MEDIUM: ssl: Crash because of dangling ckch_store reference in a ckch instance
      BUG/MINOR: init: Do not close previously created fd in stdio_quiet
      BUG/MINOR: jwt: Missing "case" in switch statement

William Lallemand (6):
      BUILD: halog: misleading indentation in halog.c
      BUILD: ssl: can't build when using -DLISTEN_DEFAULT_CIPHERS
      BUG/MINOR: ssl: returns when SSL_CTX_new failed during init
      DOC: configuration: add missing ssllib_name_startswith()
      DOC: configuration: add missing openssl_version predicates
      BUG/MINOR: ssl: remove dead code in ssl_sock_from_buf()

Willy Tarreau (10):
      BUG/MEDIUM: ssl: take care of second client hello
      BUG/MINOR: ssl: always clear the remains of the first hello for the second one
      BUILD: makefile: disable tail calls optimizations with memory profiling
      BUG/MINOR: stick-tables: properly index string-type keys
      DOC: config: slightly clarify the ssl_fc_has_early() behavior
      BUG/MEDIUM: mux-h2: make sure not to move a dead connection to idle
      MEDIUM: dns: bind the nameserver sockets to the initiating thread
      MEDIUM: resolvers: make the process_resolvers() task single-threaded
      DOC: config: mention clearer that the cache's total-max-size is mandatory
      DOC: config: reorder the cache section's keywords