Changes since version 2.1.2 :

Baptiste Assmann (1):
      BUG/MINOR: http_act: don't check capture id in backend

Ben51Degrees (1):
      BUG/MINOR: 51d: Fix bug when HTX is enabled

Christopher Faulet (9):
      BUG/MINOR: h1: Report the right error position when a header value is invalid
      BUG/MINOR: proxy: Fix input data copy when an error is captured
      BUG/MINOR: channel: inject output data at the end of output
      BUG/MINOR: stream-int: Don't trigger L7 retry if max retries is already reached
      BUG/MINOR: http-ana/filters: Wait end of the http_end callback for all filters
      BUG/MINOR: http-rules: Remove buggy deinit functions for HTTP rules
      BUG/MINOR: stick-table: Use MAX_SESS_STKCTR as the max track ID during parsing
      BUG/MINOR: tcp-rules: Fix memory releases on error path during action parsing
      MINOR: proxy/http-ana: Add support of extra attributes for the cookie directive

Emmanuel Hocdet (5):
      BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak
      BUG/MINOR: ssl: ssl_sock_load_issuer_file_into_ckch memory leak
      BUG/MINOR: ssl: ssl_sock_load_sctl_from_file memory leak
      BUG/MINOR: ssl: ssl_sock_load_pem_into_ckch is not consistent
      BUG/MINOR: ssl/cli: ocsp_issuer must be set w/ "set ssl cert"

Frédéric Lécaille (1):
      BUG/MINOR: ssl: Possible memleak when allowing the 0RTT data buffer.

Jerome Magnin (3):
      BUG/MINOR: stream: don't mistake match rules for store-request rules
      BUG/MINOR: pattern: handle errors from fgets when trying to load patterns
      BUILD: pattern: include errno.h

Kevin Zhu (1):
      BUG/MEDIUM: http-ana: Truncate the response when a redirect rule is applied

Olivier Houchard (13):
      BUG/MEDIUM: checks: Only attempt to do handshakes if the connection is ready.
      BUG/MEDIUM: connections: Hold the lock when wanting to kill a connection.
      MINOR: ssl: Remove unused variable "need_out".
      BUG/MEDIUM: tasks: Use the MT macros in tasklet_free().
      BUG/MEDIUM: mux_h1: Don't call h1_send if we subscribed().
      BUG/MEDIUM: netscaler: Don't forget to allocate storage for conn->src/dst.
      BUG/MEDIUM: 0rtt: Only consider the SSL handshake.
      BUG/MEDIUM: ssl: Don't forget to free ctx->ssl on failure.
      BUG/MEDIUM: connections: Don't forget to unlock when killing a connection.
      BUG/MEDIUM: memory_pool: Update the seq number in pool_flush().
      MINOR: memory: Only init the pool spinlock once.
      BUG/MEDIUM: memory: Add a rwlock before freeing memory.
      BUG/MAJOR: memory: Don't forget to unlock the rwlock if the pool is empty.

Tim Duesterhus (5):
      BUG/MINOR: cache: Fix leak of cache name in error path
      BUG/MINOR: dns: Make dns_query_id_seed unsigned
      MINOR: lua: Add hlua_prepend_path function
      MINOR: lua: Add lua-prepend-path configuration option
      MINOR: lua: Add HLUA_PREPEND_C?PATH build option

William Dauchy (2):
      MINOR: config: disable busy polling on old processes
      BUG/MINOR: connection: fix ip6 dst_port copy in make_proxy_line_v2

William Lallemand (8):
      BUG/MINOR: cli/mworker: can't start haproxy with 2 programs
      REGTEST: mcli/mcli_start_progs: start 2 programs
      BUG/MEDIUM: mworker: remain in mworker mode during reload
      BUG/MEDIUM: cli: _getsocks must send the peers sockets
      BUG/MINOR: ssl/cli: free the previous ckch content once a PEM is loaded
      BUG/MINOR: ssl: increment issuer refcount if in chain
      BUG/MINOR: ssl: memory leak w/ the ocsp_issuer
      BUG/MINOR: ssl: typo in previous patch

Willy Tarreau (15):
      BUG/MINOR: checks: refine which errno values are really errors.
      BUG/MEDIUM: session: do not report a failure when rejecting a session
      BUG/MINOR: mux-h2: use a safe list_for_each_entry in h2_send()
      BUG/MEDIUM: mux-h2: fix missing test on sending_list in previous patch
      BUG/MEDIUM: mux-h2: don't stop sending when crossing a buffer boundary
      BUG/MAJOR: hashes: fix the signedness of the hash inputs
      REGTEST: add sample_fetches/hashes.vtc to validate hashes
      BUG/MEDIUM: connection: add a mux flag to indicate splice usability
      CLEANUP: stats: shut up a wrong null-deref warning from gcc 9.2
      BUG/MINOR: stktable: report the current proxy name in error messages
      BUG/MEDIUM: mux-h2: make sure we don't emit TE headers with anything but "trailers"
      BUILD: cfgparse: silence a bogus gcc warning on 32-bit machines
      BUG/MINOR: tcpchecks: fix the connect() flags regarding delayed ack
      BUG/MEDIUM: pipe: fix a use-after-free in case of pipe creation error
      BUG/MINOR: ssl: we may only ignore the first 64 errors