Changes since version 2.7.10 : Aleksandar Lazic (1): DOC: internal: filters: fix reference to entities.pdf Amaury Denoyelle (18): BUG/MEDIUM: quic: fix tasklet_wakeup loop on connection closing BUG/MINOR: mux-quic: remove full demux flag on ncbuf release BUG/MINOR: hq-interop: simplify parser requirement BUG/MINOR: quic: reject packet with no frame BUG/MEDIUM: mux-quic: fix RESET_STREAM on send-only stream BUG/MINOR: mux-quic: support initial 0 max-stream-data BUG/MINOR: h3: strengthen host/authority header parsing BUG/MINOR: mux-quic: fix free on qcs-new fail alloc BUG/MEDIUM: quic-conn: free unsent frames on retransmit to prevent crash BUG/MINOR: quic: do not consider idle timeout on CLOSING state BUG/MINOR: ssl: use a thread-safe sslconns increment MINOR: frontend: implement a dedicated actconn increment function BUG/MINOR: mux-quic: fix early close if unset client timeout BUG/MINOR: quic: fix retry token check inconsistency MEDIUM: quic: count quic_conn instance for maxconn MEDIUM: quic: count quic_conn for global sslconns BUG/MEDIUM: quic: fix actconn on quic_conn alloc failure BUG/MEDIUM: quic: fix sslconns on quic_conn alloc failure Aurelien DARRAGON (18): BUG/MINOR: hlua: fix invalid use of lua_pop on error paths BUG/MINOR: stktable: allow sc-set-gpt(0) from tcp-request connection BUG/MINOR: hlua_fcn: potentially unsafe stktable_data_ptr usage DOC: lua: fix core.register_action typo BUG/MINOR: hlua/action: incorrect message on E_YIELD error MINOR: hlua: add hlua_stream_ctx_prepare helper function BUG/MEDIUM: hlua: streams don't support mixing lua-load with lua-load-per-thread BUG/MEDIUM: hlua: don't pass stale nargs argument to lua_resume() BUG/MINOR: hlua/init: coroutine may not resume itself BUG/MINOR: server: add missing free for server->rdr_pfx MINOR: pattern: fix pat_{parse,match}_ip() function comments BUG/MEDIUM: server/cli: don't delete a dynamic server that has streams MINOR: connection: add conn_pr_mode_to_proto_mode() helper func BUG/MEDIUM: server: "proto" not working for dynamic servers BUG/MINOR: stktable: missing free in parse_stick_table() BUG/MINOR: cfgparse/stktable: fix error message on stktable_init() failure BUG/MINOR: stick-table/cli: Check for invalid ipv4 key BUG/MINOR: sink: don't learn srv port from srv addr Cedric Paillet (1): BUG/MINOR: promex: fix backend_agg_check_status Chris Staite (1): BUG/MEDIUM: h1-htx: Ensure chunked parsing with full output buffer Christopher Faulet (31): BUG/MEDIUM: stconn: Wake applets on sending path if there is a pending shutdown BUG/MEDIUM: stconn: Don't block sends if there is a pending shutdown BUG/MEDIUM: stconn/stream: Forward shutdown on write timeout BUG/MEDIUM: mux-fcgi: Don't swap trash and dbuf when handling STDERR records BUG/MAJOR: mux-h2: Report a protocol error for any DATA frame before headers BUG/MEDIUM: http-ana: Try to handle response before handling server abort MINOR: hlua: Set context's appctx when the lua socket is created MINOR: hlua: Don't preform operations on a not connected socket MINOR: hlua: Save the lua socket's timeout in its context MINOR: hlua: Save the lua socket's server in its context MINOR: hlua: Test the hlua struct first when the lua socket is connecting BUG/MEDIUM: hlua: Initialize appctx used by a lua socket on connect only BUG/MINOR: mux-h1: Handle read0 in rcv_pipe() only when data receipt was tried BUG/MINOR: mux-h1: Ignore C-L when sending H1 messages if T-E is also set BUG/MEDIUM: h1: Ignore C-L value in the H1 parser if T-E is also set BUG/MINOR: mux-h1: Send a 400-bad-request on shutdown before the first request BUG/MEDIUM: mux-h2: Don't report an error on shutr if a shutw is pending BUG/MEDIUM: peers: Be sure to always refresh recconnect timer in sync task BUG/MEDIUM: peers: Fix synchro for huge number of tables BUG/MINOR: tcpcheck: Report hexstring instead of binary one on check failure CLEANUP: htx: Properly indent htx_reserve_max_data() function BUG/MINOR: mux-h1: Properly handle http-request and http-keep-alive timeouts BUG/MEDIUM: freq-ctr: Don't report overshoot for long inactivity period BUG/MEDIUM: applet: Remove appctx from buffer wait list on release BUG/MINOR: stconn: Handle abortonclose if backend connection was already set up MINOR: connection: Add a CTL flag to notify mux it should wait for reads again MEDIUM: mux-h1: Handle MUX_SUBS_RECV flag in h1_ctl() and susbscribe for reads BUG/MEDIUM: stream: Properly handle abortonclose when set on backend only REGTESTS: http: Improve script testing abortonclose option BUG/MINOR: http-client: Don't forget to commit changes on HTX message BUG/MEDIUM: stream: Don't call mux .ctl() callback if not implemented Emeric Brun (1): Revert "BUG/MEDIUM: quic: missing check of dcid for init pkt including a token" Frédéric Lécaille (12): BUG/MINOR: quic: Possible skipped RTT sampling BUG/MAJOR: quic: Really ignore malformed ACK frames. BUG/MINOR: quic: Wrong RTT adjusments BUG/MINOR: quic: Wrong RTT computation (srtt and rrt_var) BUG/MINOR: quic: Leak of frames to send. BUG/MINOR: quic: Wrong cluster secret initialization BUG/MINOR: quic: Avoid crashing with unsupported cryptographic algos BUG/MINOR: quic: idle timer task requeued in the past BUG/MEDIUM: quic: Avoid trying to send ACK frames from an empty ack ranges tree BUG/MEDIUM: quic: Possible crashes when sending too short Initial packets BUG/MEDIUM: quic: Avoid some crashes upon TX packet allocation failures DOC: quic: Wrong syntax for "quic-cc-algo" keyword. Ilya Shipitsin (3): CI: get rid of travis-ci wrapper for Coverity scan CI: musl: highlight section if there are coredumps CI: musl: drop shopt in workflow invocation Johannes Naab (1): DOC: typo: fix sc-set-gpt references Tim Duesterhus (1): CI: Update to actions/checkout@v4 William Lallemand (10): BUILD: Makefile: add the USE_QUIC option to make help BUG/MINOR: ssl/cli: can't find ".crt" files when replacing a certificate DOC: configuration: update examples for req.ver MINOR: httpclient: allow to configure the retries MINOR: httpclient: allow to configure the timeout.connect BUG/MINOR: ssl: load correctly @system-ca when ca-base is define BUG/MINOR: ssl: suboptimal certificate selection with TLSv1.3 and dual ECDSA/RSA BUG/MEDIUM: ssl: segfault when cipher is NULL DOC: management: -q is quiet all the time BUG/MEDIUM: mworker: set the master variable earlier Willy Tarreau (23): DEV: flags/show-sess-to-flags: properly decode fd.state SCRIPTS: git-show-backports: automatic ref and base detection with -m IMPORT: plock: also support inlining the int code MINOR: threads: inline the wait function for pthread_rwlock emulation MINOR: atomic: make sure to always relax after a failed CAS IMPORT: xxhash: update xxHash to version 0.8.2 BUG/MINOR: ssl_sock: fix possible memory leak on OOM BUILD: import: guard plock.h against multiple inclusion BUG/MINOR: checks: do not queue/wake a bounced check BUILD: bug: make BUG_ON() void to avoid a rare warning BUG/MINOR: freq_ctr: fix possible negative rate with the scaled API BUG/MEDIUM: actions: always apply a longest match on prefix lookup BUG/MEDIUM: quic_conn: let the scheduler kill the task when needed BUG/MINOR: mux-h2: make up other blocked streams upon removal from list BUG/MINOR: mux-h2: fix http-request and http-keep-alive timeouts again BUG/MINOR: trace: fix trace parser error reporting BUG/MINOR: mux-h2: commit the current stream ID even on reject BUG/MINOR: mux-h2: update tracked counters with req cnt/req err DEBUG: mux-h2/flags: fix list of h2c flags used by the flags decoder BUG/MEDIUM: pattern: don't trim pools under lock in pat_ref_purge_range() BUG/MEDIUM: pool: fix releasable pool calculation when overloaded DOC: config: use the word 'backend' instead of 'proxy' in 'track' description BUG/MEDIUM: connection: report connection errors even when no mux is installed