Changes since version 3.0-dev5 :

Amaury Denoyelle (7):
      MINOR: quic: simplify rescheduling for handshake
      MINOR: quic: remove qc_treat_rx_crypto_frms()
      MINOR: session: rename private conns elements
      BUG/MAJOR: server: do not delete srv referenced by session
      BUG/MINOR: session: ensure conn owner is set after insert into session
      BUG/MEDIUM: http_ana: ignore NTLM for reuse aggressive/always and no H1
      BUG/MAJOR: connection: fix server used_conns with H2 + reuse safe

Aurelien DARRAGON (6):
      BUG/MINOR: hlua: segfault when loading the same filter from different contexts
      BUG/MINOR: hlua: missing lock in hlua_filter_new()
      BUG/MINOR: hlua: fix missing lock in hlua_filter_delete()
      DEBUG: lua: precisely identify if stream is stuck inside lua or not
      MINOR: hlua: use accessors for stream hlua ctx
      BUG/MEDIUM: hlua: streams don't support mixing lua-load with lua-load-per-thread (2nd try)

Brooks Davis (1):
      MINOR: tools: use public interface for FreeBSD get_exec_path()

Christopher Faulet (8):
      BUG/MINOR: listener: Wake proxy's mngmt task up if necessary on session release
      BUG/MINOR: listener: Don't schedule frontend without task in listener_release()
      BUG/MEDIUM: spoe: Don't rely on stream's expiration to detect processing timeout
      BUG/MINOR: spoe: Be sure to be able to quickly close IDLE applets on soft-stop
      MAJOR: spoe: Deprecate the SPOE filter
      MINOR: cfgparse: Add a global option to expose deprecated directives
      MINOR: spoe: Add SPOE filters in the exposed deprecated directives
      BUG/MEDIUM: spoe: Return an invalid frame on recv if size is too small

Dragan Dosen (2):
      BUG/MINOR: ssl: fix possible ctx memory leak in sample_conv_aes_gcm()
      BUG/MINOR: ssl: do not set the aead_tag flags in sample_conv_aes_gcm()

Ilia Shipitsin (2):
      CLEANUP: assorted typo fixes in the code and comments
      CI: temporarily adjust kernel entropy to work with ASAN/clang

Remi Tricot-Le Breton (8):
      BUG/MAJOR: ocsp: Separate refcount per instance and per store
      REGTESTS: ssl: Add OCSP related tests
      BUG/MEDIUM: ssl: Fix crash when calling "update ssl ocsp-response" when an update is ongoing
      BUG/MEDIUM: ssl: Fix crash in ocsp-update log function
      MEDIUM: ssl: Change output of ocsp-update log
      MINOR: ssl: Change level of ocsp-update logs
      CLEANUP: ssl: Remove undocumented ocsp fetches
      REGTESTS: ssl: Add checks on ocsp-update log format

William Lallemand (7):
      DOC: configuration: clarify ciphersuites usage (V2)
      MEDIUM: ssl: initialize the SSL stack explicitely
      MEDIUM: ssl: allow to change the OpenSSL security level from global section
      CLEANUP: ssl: remove useless #ifdef in openssl-compat.h
      CI: github: add -DDEBUG_LIST to the default builds
      MINOR: debug: enable insecure fork on the command line
      CI: github: add -dI to haproxy arguments

Willy Tarreau (3):
      MINOR: mux-h2: always use h2c_report_glitch()
      MEDIUM: mux-h2: allow to set the glitches threshold to kill a connection
      BUG/MINOR: server: fix first server template not being indexed