From 7851701edd3896e4849040101bdb97dc026ba71c Mon Sep 17 00:00:00 2001
From: Christopher Faulet <cfaulet@haproxy.com>
Date: Wed, 3 Mar 2021 15:50:33 +0100
Subject: [PATCH] [RELEASE] Released version 2.3.6

Released version 2.3.6 with the following main changes :
    - MINOR: check: do not ignore a connection header for http-check send
    - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro
    - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro
    - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro
    - BUG/MINOR: intops: fix mul32hi()'s off-by-one
    - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors
    - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state
    - BUG/MINOR: server: re-align state file fields number
    - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints()
    - BUG/MINOR: backend: hold correctly lock when killing idle conn
    - BUG/MINOR: server: Fix server-state-file-name directive
    - CLEANUP: deinit: release global and per-proxy server-state variables on deinit
    - BUG/MEDIUM: config: don't pick unset values from last defaults section
    - BUG/MINOR: stats: revert the change on ST_CONVDONE
    - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines
    - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
    - DOC: tune: explain the origin of block size for ssl.cachesize
    - CLEANUP: channel: fix comment in ci_putblk.
    - BUG/MINOR: server: Remove RMAINT from admin state when loading server state
    - BUG/MINOR: session: atomically increment the tracked sessions counter
    - BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
    - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust()
    - BUG/MINOR: sample: Always consider zero size string samples as unsafe
    - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions
    - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared
    - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ().
    - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer
    - BUG/MINOR: http-rules: Always replace the response status on a return action
    - BUG/MINOR: server: Init params before parsing a new server-state line
    - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line
    - BUG/MEDIUM: mux-h1: Fix handling of responses to CONNECT other than 200-ok
    - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert"
    - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes
    - BUG/MINOR: sample: secure convs that accept base64 string and var name as args
    - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe
    - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop
    - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe
    - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal
    - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl()
    - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned
    - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record
    - BUG/MINOR: resolvers: new callback to properly handle SRV record errors
    - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records
    - BUG/MEDIUM: resolvers: Reset address for unresolved servers
    - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup()
    - CLEANUP: muxes: Remove useless if condition in show_fd function
    - BUG/MINOR: stats: fix compare of no-maint url suffix
    - BUG/MINOR: mux-h1: Immediately report H1C errors from h1_snd_buf()
    - BUG/MINOR: http-ana: Only consider dst address to process originalto option
    - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule
    - BUG/MINOR: connection: Use the client's dst family for adressless servers
    - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1
    - DOC: spoe: Add a note about fragmentation support in HAProxy
    - BUG/MINOR: mux-h2: Fix typo in scheme adjustment
    - BUG/MINOR: http-ana: Don't increment HTTP error counter on read error/timeout
---
 CHANGELOG             |   57 +++++++++++++++++++++++++++++++++++++++++++++++++
 VERDATE               |    2 +-
 VERSION               |    2 +-
 doc/configuration.txt |    2 +-
 4 files changed, 60 insertions(+), 3 deletions(-)

diff --git a/CHANGELOG b/CHANGELOG
index f6e378b..3f43f48 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -1,6 +1,63 @@
 ChangeLog :
 ===========
 
+2021/03/03 : 2.3.6
+    - MINOR: check: do not ignore a connection header for http-check send
+    - BUILD: ssl: fix typo in HAVE_SSL_CTX_ADD_SERVER_CUSTOM_EXT macro
+    - BUILD: ssl: guard SSL_CTX_add_server_custom_ext with special macro
+    - BUILD: ssl: guard SSL_CTX_set_msg_callback with SSL_CTRL_SET_MSG_CALLBACK macro
+    - BUG/MINOR: intops: fix mul32hi()'s off-by-one
+    - BUG/MINOR: http-ana: Don't increment HTTP error counter on internal errors
+    - BUG/MEDIUM: mux-h1: Always set CS_FL_EOI for response in MSG_DONE state
+    - BUG/MINOR: server: re-align state file fields number
+    - BUG/MINOR: tools: Fix a memory leak on error path in parse_dotted_uints()
+    - BUG/MINOR: backend: hold correctly lock when killing idle conn
+    - BUG/MINOR: server: Fix server-state-file-name directive
+    - CLEANUP: deinit: release global and per-proxy server-state variables on deinit
+    - BUG/MEDIUM: config: don't pick unset values from last defaults section
+    - BUG/MINOR: stats: revert the change on ST_CONVDONE
+    - BUG/MINOR: cfgparse: do not mention "addr:port" as supported on proxy lines
+    - BUG/MINOR: server: Don't call fopen() with server-state filepath set to NULL
+    - DOC: tune: explain the origin of block size for ssl.cachesize
+    - CLEANUP: channel: fix comment in ci_putblk.
+    - BUG/MINOR: server: Remove RMAINT from admin state when loading server state
+    - BUG/MINOR: session: atomically increment the tracked sessions counter
+    - BUG/MINOR: checks: properly handle wrapping time in __health_adjust()
+    - BUG/MEDIUM: checks: don't needlessly take the server lock in health_adjust()
+    - BUG/MINOR: sample: Always consider zero size string samples as unsafe
+    - BUILD: ssl: introduce fine guard for OpenSSL specific SCTL functions
+    - DOC: explain the relation between pool-low-conn and tune.idle-pool.shared
+    - BUG/MEDIUM: lists: Avoid an infinite loop in MT_LIST_TRY_ADDQ().
+    - BUG/MEDIUM: spoe: Resolve the sink if a SPOE logs in a ring buffer
+    - BUG/MINOR: http-rules: Always replace the response status on a return action
+    - BUG/MINOR: server: Init params before parsing a new server-state line
+    - BUG/MINOR: server: Be sure to cut the last parsed field of a server-state line
+    - BUG/MEDIUM: mux-h1: Fix handling of responses to CONNECT other than 200-ok
+    - BUG/MINOR: ssl/cli: potential null pointer dereference in "set ssl cert"
+    - MINOR: Configure the `cpp` userdiff driver for *.[ch] in .gitattributes
+    - BUG/MINOR: sample: secure convs that accept base64 string and var name as args
+    - BUG/MEDIUM: vars: make functions vars_get_by_{name,desc} thread-safe
+    - BUG/MEDIUM: proxy: use thread-safe stream killing on hard-stop
+    - BUG/MEDIUM: cli/shutdown sessions: make it thread-safe
+    - BUG/MINOR: proxy: wake up all threads when sending the hard-stop signal
+    - BUG/MINOR: fd: properly wait for !running_mask in fd_set_running_excl()
+    - BUG/MINOR: resolvers: Fix condition to release received ARs if not assigned
+    - BUG/MINOR: resolvers: Only renew TTL for SRV records with an additional record
+    - BUG/MINOR: resolvers: new callback to properly handle SRV record errors
+    - BUG/MEDIUM: resolvers: Reset server address and port for obselete SRV records
+    - BUG/MEDIUM: resolvers: Reset address for unresolved servers
+    - BUG/MINOR: ssl: potential null pointer dereference in ckchs_dup()
+    - CLEANUP: muxes: Remove useless if condition in show_fd function
+    - BUG/MINOR: stats: fix compare of no-maint url suffix
+    - BUG/MINOR: mux-h1: Immediately report H1C errors from h1_snd_buf()
+    - BUG/MINOR: http-ana: Only consider dst address to process originalto option
+    - BUG/MINOR: tcp-act: Don't forget to set the original port for IPv4 set-dst rule
+    - BUG/MINOR: connection: Use the client's dst family for adressless servers
+    - BUG/MEDIUM: spoe: Kill applets if there are pending connections and nbthread > 1
+    - DOC: spoe: Add a note about fragmentation support in HAProxy
+    - BUG/MINOR: mux-h2: Fix typo in scheme adjustment
+    - BUG/MINOR: http-ana: Don't increment HTTP error counter on read error/timeout
+
 2021/02/06 : 2.3.5
     - BUG/MINOR: init: Use a dynamic buffer to set HAPROXY_CFGFILES env variable
     - MINOR: config: Add failifnotcap() to emit an alert on proxy capabilities
diff --git a/VERDATE b/VERDATE
index 23ebfb9..c4a14e6 100644
--- a/VERDATE
+++ b/VERDATE
@@ -1,2 +1,2 @@
 $Format:%ci$
-2021/02/06
+2021/03/03
diff --git a/VERSION b/VERSION
index cc6c9a4..e75da3e 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-2.3.5
+2.3.6
diff --git a/doc/configuration.txt b/doc/configuration.txt
index cccaaaf..e5cc4a9 100644
--- a/doc/configuration.txt
+++ b/doc/configuration.txt
@@ -4,7 +4,7 @@
                          ----------------------
                               version 2.3
                              willy tarreau
-                              2021/02/06
+                              2021/03/03
 
 
 This document covers the configuration language as implemented in the version
-- 
1.7.10.4