RELEASE-NOTES: synced

RELEASE-NOTES

@@ -4,7 +4,7 @@ curl and libcurl 7.87.0
  Command line options:         249
  curl_easy_setopt() options:   302
  Public functions in libcurl:  91
- Contributors:                 2760
+ Contributors:                 2766
 
 This release includes the following changes:
 
@@ -16,7 +16,10 @@ This release includes the following changes:
 This release includes the following bugfixes:
 
  o aws_sigv4: consult x-%s-content-sha256 for payload hash [102]
+ o aws_sigv4: fix typos in aws_sigv4.c [101]
+ o ci: Remove zuul fuzzing job as it's superseded by CIFuzz
  o cmake: check for cross-compile, not for toolchain [54]
+ o CMake: fix build with `CURL_USE_GSSAPI` [78]
  o cmake: really enable warnings with clang [25]
  o cmdline-opts/gen.pl: fix the linkifier [64]
  o cmdline-opts/page-footer: remove long option nroff formatting
@@ -24,11 +27,14 @@ This release includes the following bugfixes:
  o configure: require fork for NTLM-WB [36]
  o cookie: compare cookie prefixes case insensitively [14]
  o cookie: expire cookies at once when max-age is negative [45]
+ o cookie: open cookie jar as a binary file [89]
  o curl-openssl.m4: do not add $prefix/include/openssl to CPPFLAGS [90]
  o curl-rustls.m4: on macOS, rustls also needs the Security framework [44]
+ o curl.h: include <sys/select.h> on SerenityOS [104]
  o curl: override the numeric locale and set "C" by force [60]
  o curl: timeout in the read callback [15]
  o curl_endian: remove Curl_write64_le from header [81]
+ o curl_get_line: allow last line without newline char [88]
  o curl_path: do not add '/' if homedir ends with one [4]
  o CURLMOPT_SOCKETFUNCTION.3: clarify CURL_POLL_REMOVE [1]
  o CURLOPT_DEBUGFUNCTION.3: do not assume nul-termination in example [31]
@@ -44,7 +50,9 @@ This release includes the following bugfixes:
  o examples: update descriptions [83]
  o ftp: support growing files with CURLOPT_IGNORE_CONTENT_LENGTH [96]
  o gen.pl: do not generate CURLHELP bitmask lines > 79 characters [10]
+ o GHA: clarify workflows permissions, set least possible privilege [79]
  o GHA: NSS use clang instead of clang-9 [103]
+ o gnutls: use common gnutls init and verify code for ngtcp2 [98]
  o headers: add endif comments [51]
  o HTTP-COOKIES.md: mention that http://localhost is a secure context [76]
  o HTTP-COOKIES.md: update the 6265bis link to draft-11 [70]
@@ -64,6 +72,7 @@ This release includes the following bugfixes:
  o lib: sync guard for Curl_getaddrinfo_ex() definition and use [6]
  o libcurl-errors.3: remove duplicate word [3]
  o log2changes.pl: wrap long lines at 80 columns [59]
+ o Makefile.mk: address minor issues [87]
  o Makefile.mk: portable Makefile.m32 [86]
  o maketgz: set the right version in lib/libcurl.plist [53]
  o mime: relax easy/mime structures binding [94]
@@ -78,11 +87,13 @@ This release includes the following bugfixes:
  o ntlm: improve comment for encrypt_des [55]
  o ntlm: silence ubsan warning about copying from null target_info pointer. [69]
  o openssl/mbedtls: use %d for outputing port with failf (int) [72]
+ o openssl: prefix errors with '[lib]/[version]: ' [105]
  o os400: use platform socklen_t in Curl_getnameinfo_a [18]
  o proxy: refactor haproxy protocol handling as connection filter [57]
  o README.md: remove badges and xmas-tree garnish [9]
  o rtsp: fix RTSP auth [49]
  o runtests: --no-debuginfod now disables DEBUGINFOD_URLS [100]
+ o runtests: do CRLF replacements per section only [97]
  o scripts/checksrc.pl: detect duplicated include files [29]
  o sendf: change Curl_read_plain to wrap Curl_recv_plain [48]
  o sendf: remove unnecessary if condition [26]
@@ -92,6 +103,7 @@ This release includes the following bugfixes:
  o test3026: reduce runtime in legacy mingw builds [73]
  o tests/sshserver.pl: re-enable ssh-rsa while using openssh 8.8+
  o tests: add authorityInfoAccess to generated certs [99]
+ o tests: add HTTP/3 test case, custom location for proper nghttpx [106]
  o tls: backends use connection filters for IO, enabling HTTPS-proxy [92]
  o tool_getparam: make --no-get work as the opposite of --get [39]
  o tool_operate: provide better errmsg for -G with bad URL [16]
@@ -124,20 +136,22 @@ advice from friends like these:
 
   Adam Averay, Alexandre Ferrieux, Alex Xu, Ali Utku Selen, Andrei Rybak,
   Andy Stamp, Anthony Hu, AtariDreams on github, Ayesh Karunaratne,
-  Casey Bodley, Christopher Sauer, Christoph Reiter, Dan Fandrich,
-  Daniel Faust, Daniel Gustafsson, Daniel Stenberg, Egor Pugin, Emanuele Torre,
-  Emil Österlund, Eric Vigeant, Erik Janssen, Fata Nugraha, Felipe Gasper,
-  Gisle Vanem, godmar on github, Henning Schild, Hirotaka Tagawa,
-  Ikko Ashimine, Joel Depooter, John Sherrill, Jon Rumsey,
-  jvreelanda on github, Karthikdasari0423 on github, Lorenzo Miniero,
-  Luca Niccoli, Marc Hörsken, Mark Gaiser, Michael Drake, Michael Kaufmann,
-  Mikhail Kuznetsov, MonkeybreadSoftware on github, Nathan Moinvaziri,
-  Oskar Sigvardsson, Patrick Monnerat, Patrick Schlangen, Peter Piekarski,
-  Philip Chan, Philip Heiduck, Randall S. Becker, Ray Satiro, Ryan Schmidt,
-  Sean McArthur, Stefan Eissing, Stephan Guilloux, Stuart Henderson,
-  Thomas Glanzmann, Trail of Bits, Viktor Szakats, xianghongai on github,
-  Zespre Schmidt
-  (60 contributors)
+  Baitinq on github, Casey Bodley, Christopher Sauer, Christoph Reiter,
+  Dan Fandrich, Daniel Faust, Daniel Gustafsson, Daniel Stenberg,
+  Diogo Teles Sant'Anna, Egor Pugin, Emanuele Torre, Emil Österlund,
+  Eric Vigeant, Erik Janssen, Fata Nugraha, Felipe Gasper, Gisle Vanem,
+  godmar on github, Henning Schild, Hirotaka Tagawa, Ikko Ashimine,
+  Jakub Zakrzewski, Joel Depooter, John Sherrill, Jon Rumsey,
+  jvreelanda on github, Karthikdasari0423 on github, Kenneth Myhra,
+  Lorenzo Miniero, Luca Niccoli, Marc Hörsken, Mark Gaiser, Max Dymond,
+  Michael Drake, Michael Kaufmann, Mikhail Kuznetsov,
+  MonkeybreadSoftware on github, Nathan Moinvaziri, Oskar Sigvardsson,
+  Patrick Monnerat, Patrick Schlangen, Peter Piekarski, Philip Chan,
+  Philip Heiduck, Philip Sanetra, Randall S. Becker, Ray Satiro, Rob de Wit,
+  Robin Marx, Ryan Schmidt, Sean McArthur, Stefan Eissing, Stephan Guilloux,
+  Stuart Henderson, Thomas Glanzmann, Trail of Bits, Viktor Szakats,
+  xianghongai on github, Zespre Schmidt
+  (68 contributors)
 
 References to bug reports and discussions on issues:
 
@@ -218,6 +232,8 @@ References to bug reports and discussions on issues:
  [75] = https://curl.se/bug/?i=2975
  [76] = https://curl.se/bug/?i=9938
  [77] = https://curl.se/bug/?i=9933
+ [78] = https://curl.se/bug/?i=9017
+ [79] = https://curl.se/bug/?i=9928
  [80] = https://curl.se/bug/?i=9966
  [81] = https://curl.se/bug/?i=9968
  [82] = https://curl.se/bug/?i=9959
@@ -225,12 +241,21 @@ References to bug reports and discussions on issues:
  [84] = https://curl.se/bug/?i=9919
  [85] = https://curl.se/bug/?i=9953
  [86] = https://curl.se/bug/?i=9764
+ [87] = https://curl.se/bug/?i=10000
+ [88] = https://curl.se/bug/?i=9973
+ [89] = https://curl.se/bug/?i=10017
  [90] = https://curl.se/bug/?i=9989
  [91] = https://curl.se/bug/?i=9994
  [92] = https://curl.se/bug/?i=9962
  [94] = https://curl.se/bug/?i=9927
  [96] = https://curl.se/bug/?i=9772
+ [97] = https://curl.se/bug/?i=10009
+ [98] = https://curl.se/bug/?i=10007
  [99] = https://curl.se/bug/?i=9980
  [100] = https://curl.se/bug/?i=9950
+ [101] = https://curl.se/bug/?i=10008
  [102] = https://curl.se/bug/?i=9804
  [103] = https://curl.se/bug/?i=9978
+ [104] = https://curl.se/bug/?i=10006
+ [105] = https://curl.se/bug/?i=10004
+ [106] = https://curl.se/bug/?i=9031