Changes since version 3.4-dev8 : Amaury Denoyelle (11): BUG/MINOR: mux-quic: fix potential NULL deref on qcc_release() BUG/MINOR: quic: increment pos pointer on QMux transport params parsing MINOR: xprt_qstrm: implement Rx buffering MINOR: xprt_qstrm/mux-quic: handle extra QMux frames after params MINOR: xprt_qstrm: implement Tx buffering MINOR: xprt_qstrm: handle connection errors MEDIUM: mux-quic: implement QMux record parsing MEDIUM: xprt_qstrm: implement QMux record parsing MEDIUM: mux-quic/xprt_qstrm: implement QMux record emission DOC: update draft link for QMux protocol BUG/MINOR: do not crash on QMux reception of BLOCKED frames Aurelien DARRAGON (5): DOC: config: fix ambiguous info in log-steps directive description MINOR: filters: add filter name to flt_conf struct MEDIUM: filters: add "filter-sequence" directive REGTESTS: add a test for "filter-sequence" directive BUG/MINOR: counters: fix unexpected 127 char GUID truncation for shm-stats-file objects Christopher Faulet (11): BUG/MEDIUM: haterm: Move all init functions of haterm in haterm_init.c BUG/MEDIUM: mux-h1: Disable 0-copy forwarding when draining the request DOC: config: Fix two typos in the server param "healthcheck" description MINOR: tcpcheck: Reject unknown keyword during parsing of healthcheck section BUG/MEDIUM: tcpcheck/server: Fix parsing of healthcheck param for dynamic servers BUG/MEDIUM: tcpcheck: Properly retrieve tcpcheck type to install the best mux BUG/MEDIUM: connection: Wake the stconn on error when failing to create mux BUG/MINOR: haterm: Return the good start-line for 100-continue interim message BUG/MEDIUM: samples: Fix handling of SMP_T_METH samples Revert "BUG/MEDIUM: haterm: Move all init functions of haterm in haterm_init.c" BUG/MEDIUM: haterm: Properly initialize the splicing support for haterm Greg Kroah-Hartman (16): BUG/MEDIUM: payload: validate SNI name_len in req.ssl_sni BUG/MEDIUM: jwe: fix NULL deref crash with empty CEK and non-dir alg BUG/MEDIUM: jwt: fix heap overflow in ECDSA signature DER conversion BUG/MEDIUM: jwe: fix memory leak in jwt_decrypt_secret with var argument BUG: hlua: fix stack overflow in httpclient headers conversion BUG/MINOR: hlua: fix stack overflow in httpclient headers conversion BUG/MINOR: hlua: fix format-string vulnerability in Patref error path BUG/MEDIUM: chunk: fix typo allocating small trash with bufsize_large BUG/MEDIUM: chunk: fix infinite loop in get_larger_trash_chunk() BUG/MINOR: peers: fix OOB heap write in dictionary cache update BUG/MINOR: resolvers: fix memory leak on AAAA additional records BUG/MINOR: spoe: fix pointer arithmetic overflow in spoe_decode_buffer() BUG/MINOR: http-act: validate decoded lengths in *-headers-bin BUG/MINOR: sample: fix info leak in regsub when exp_replace fails BUG/MEDIUM: mux-fcgi: prevent record-length truncation with large bufsize BUG/MINOR: hlua: fix use-after-free of HTTP reason string Olivier Houchard (4): MINOR: servers: The right parameter for idle-pool.shared is "full" MEDIUM: connections: Really enforce mux protocol requirements MINOR: tools: Implement net_addr_type_is_quic() MEDIUM: check: Revamp the way the protocol and xprt are determined William Lallemand (9): Revert "CLEANUP: tcpcheck: Don't needlessly expose proxy_parse_tcpcheck()" MINOR: tcpcheck: reintroduce proxy_parse_tcpcheck() symbol CI: VTest build with git clone + cache CI: github: update to cache@v5 Revert "BUG: hlua: fix stack overflow in httpclient headers conversion" CI: github: fix vtest path to allow correct caching CI: github: add the architecture to the cache key for vtest2 MINOR: lua: add tune.lua.openlibs to restrict loaded Lua standard libraries REGTESTS: lua: add tune.lua.openlibs to all Lua reg-tests Willy Tarreau (2): BUG/MINOR: http-act: fix a typo in the "pause" action error message BUG/MAJOR: slz: always make sure to limit fixed output to less than worst case literals