Update man pages

Bump up version number to 1.7.1
Fix configure script for non-gcc, clang build
2025-12-07 18:48:54 +08:00 · 2016-02-11 23:13:41 +09:00 · 2016-02-11 23:10:34 +09:00 · 2016-02-11 23:09:11 +09:00 · 2016-02-10 22:36:01 +09:00 · 2016-02-04 23:38:46 +09:00
486 changed files with 19686 additions and 44124 deletions
--- a/.clang-format
+++ b/.clang-format
@@ -1,95 +1,57 @@
 ---
 Language:        Cpp
 # BasedOnStyle:  LLVM
 AccessModifierOffset: -2
-AlignAfterOpenBracket: Align
+ConstructorInitializerIndentWidth: 4
 AlignConsecutiveAssignments: false
 AlignConsecutiveDeclarations: false
 AlignEscapedNewlinesLeft: false
 AlignOperands:   true
 AlignTrailingComments: true
 AllowAllParametersOfDeclarationOnNextLine: true
 AllowShortBlocksOnASingleLine: false
 AllowShortCaseLabelsOnASingleLine: false
 AllowShortFunctionsOnASingleLine: All
 AllowShortIfStatementsOnASingleLine: false
 AllowShortLoopsOnASingleLine: false
-AlwaysBreakAfterDefinitionReturnType: None
+AllowShortFunctionsOnASingleLine: All
 AlwaysBreakAfterReturnType: None
 AlwaysBreakBeforeMultilineStrings: false
 AlwaysBreakTemplateDeclarations: false
-BinPackArguments: true
+AlwaysBreakBeforeMultilineStrings: false
-BinPackParameters: true
+BreakBeforeBinaryOperators: false
 BraceWrapping:
  AfterClass:      false
  AfterControlStatement: false
  AfterEnum:       false
  AfterFunction:   false
  AfterNamespace:  false
  AfterObjCDeclaration: false
  AfterStruct:     false
  AfterUnion:      false
  BeforeCatch:     false
  BeforeElse:      false
  IndentBraces:    false
 BreakBeforeBinaryOperators: None
 BreakBeforeBraces: Attach
 BreakBeforeTernaryOperators: true
 BreakConstructorInitializersBeforeComma: false
-BreakAfterJavaFieldAnnotations: false
+BinPackParameters: true
 BreakStringLiterals: true
 ColumnLimit:     80
-CommentPragmas:  '^ IWYU pragma:'
+ConstructorInitializerAllOnOneLineOrOnePerLine: false
 ConstructorInitializerAllOnOneLineOrOnePerLine: true
 ConstructorInitializerIndentWidth: 4
 ContinuationIndentWidth: 4
 Cpp11BracedListStyle: true
 DerivePointerAlignment: false
 DisableFormat:   false
 ExperimentalAutoDetectBinPacking: false
 ForEachMacros:   [ foreach, Q_FOREACH, BOOST_FOREACH ]
 IncludeCategories:
  - Regex:           '^"(llvm|llvm-c|clang|clang-c)/'
    Priority:        2
  - Regex:           '^(<|"(gtest|isl|json)/)'
    Priority:        3
  - Regex:           '.*'
    Priority:        1
 IncludeIsMainRegex: '$'
 IndentCaseLabels: false
 IndentWidth:     2
 IndentWrappedFunctionNames: false
-JavaScriptQuotes: Leave
+IndentFunctionDeclarationAfterType: false
 JavaScriptWrapImports: true
 KeepEmptyLinesAtTheStartOfBlocks: true
 MacroBlockBegin: ''
 MacroBlockEnd:   ''
 MaxEmptyLinesToKeep: 1
 KeepEmptyLinesAtTheStartOfBlocks: true
 NamespaceIndentation: None
 ObjCBlockIndentWidth: 2
 ObjCSpaceAfterProperty: false
 ObjCSpaceBeforeProtocolList: true
 PenaltyBreakBeforeFirstCallParameter: 19
 PenaltyBreakComment: 300
 PenaltyBreakFirstLessLess: 120
 PenaltyBreakString: 1000
 PenaltyBreakFirstLessLess: 120
 PenaltyExcessCharacter: 1000000
 PenaltyReturnTypeOnItsOwnLine: 60
 PointerAlignment: Right
 ReflowComments:  true
 SortIncludes:    false
 SpaceAfterCStyleCast: false
 SpaceAfterTemplateKeyword: true
 SpaceBeforeAssignmentOperators: true
 SpaceBeforeParens: ControlStatements
 SpaceInEmptyParentheses: false
 SpacesBeforeTrailingComments: 1
-SpacesInAngles:  false
+Cpp11BracedListStyle: true
 SpacesInContainerLiterals: true
 SpacesInCStyleCastParentheses: false
 SpacesInParentheses: false
 SpacesInSquareBrackets: false
 Standard:        Cpp11
 IndentWidth:     2
 TabWidth:        8
 UseTab:          Never
 BreakBeforeBraces: Attach
 SpacesInParentheses: false
 SpacesInAngles:  false
 SpaceInEmptyParentheses: false
 SpacesInCStyleCastParentheses: false
 SpacesInContainerLiterals: true
 SpaceBeforeAssignmentOperators: true
 ContinuationIndentWidth: 4
 CommentPragmas:  '^ IWYU pragma:'
 ForEachMacros:   [ foreach, Q_FOREACH, BOOST_FOREACH ]
 SpaceBeforeParens: ControlStatements
 DisableFormat:   false
 ...
--- a/.gitignore
+++ b/.gitignore
@@ -29,22 +29,6 @@ missing
 stamp-h1
 test-driver
 # cmake
 CMakeCache.txt
 CMakeFiles/
 cmake_install.cmake
 install_manifest.txt
 CTestTestfile.cmake
 build.ninja
 rules.ninja
 .ninja_deps
 .ninja_log
 lib*.so
 lib*.so.*
 lib*.a
 # generated by "make test" with cmake
 Testing/
 # test logs generated by `make check`
 *.log
 *.trs
--- a/.travis.yml
+++ b/.travis.yml
@@ -1,7 +1,3 @@
 env:
  matrix:
    - CI_BUILD=cmake
    - CI_BUILD=autotools
 language: cpp
 compiler:
  - clang
@@ -11,7 +7,6 @@ addons:
  apt:
    sources:
    - ubuntu-toolchain-r-test
    - george-edison55-precise-backports
    packages:
    - g++-4.9
    - libstdc++-4.9-dev
@@ -28,15 +23,11 @@ addons:
    - libevent-dev
    - libjansson-dev
    - libjemalloc-dev
    - libc-ares-dev
    - cmake
    - cmake-data
 before_install:
  - $CC --version
  - if [ "$CXX" = "g++" ]; then export CXX="g++-4.9" CC="gcc-4.9"; fi
  - $CC --version
  - go version
  - cmake --version
 before_script:
  # First build spdylay, since integration tests require it.
  # spdylay is going to be built under third-party/spdylay
@@ -44,22 +35,18 @@ before_script:
  - git clone https://github.com/tatsuhiro-t/spdylay.git
  - cd spdylay
  - autoreconf -i
  # Don't use ASAN for spdylay since failmalloc does not work with it.
  - ./configure --disable-src --disable-examples
  - make check
  - export SPDYLAY_HOME=$PWD
  - cd ../..
  # Now build nghttp2
-  - if [ "$CI_BUILD" = "autotools" ]; then autoreconf -i; fi
+  - autoreconf -i
  - git submodule update --init
-  - if [ "$CI_BUILD" = "autotools" ]; then ./configure --enable-werror --with-mruby --with-neverbleed LIBSPDYLAY_CFLAGS="-I$SPDYLAY_HOME/lib/includes" LIBSPDYLAY_LIBS="-L$SPDYLAY_HOME/lib/.libs -lspdylay" CPPFLAGS=-fsanitize=address LDFLAGS=-fsanitize=address; fi
+  - ./configure --enable-werror --with-mruby --with-neverbleed LIBSPDYLAY_CFLAGS="-I$SPDYLAY_HOME/lib/includes" LIBSPDYLAY_LIBS="-L$SPDYLAY_HOME/lib/.libs -lspdylay"
  - if [ "$CI_BUILD" = "cmake" ]; then cmake -DENABLE_WERROR=1 -DWITH_MRUBY=1 -DWITH_NEVERBLEED=1 -DSPDYLAY_INCLUDE_DIR="$SPDYLAY_HOME/lib/includes" -DSPDYLAY_LIBRARY="$SPDYLAY_HOME/lib/.libs/libspdylay.so"; fi
 script:
-  - if [ "$CI_BUILD" = "autotools" ]; then make distcheck; fi
+  - make
-  - if [ "$CI_BUILD" = "cmake" ]; then make check; fi
+  - make check
-  # As of April, 23, 2016, golang http2 build fails, probably because
+  - cd integration-tests
-  # the default go version is too old.
+  - export GOPATH="$PWD/integration-tests/golang"
-  # - cd integration-tests
+  - make itprep-local
-  # - export GOPATH="$PWD/integration-tests/golang"
+  - make it-local
  # - make itprep
  # - make it
--- a/106
+++ b/106
@@ -1,105 +1 @@
-nghttp2 project was started as a fork of spdylay project [1].  Both
+Tatsuhiro Tsujikawa <t-tujikawa at users dot sourceforge dot net>
 projects were started by Tatsuhiro Tsujikawa, who is still the main
 author of these projects.  Meanwhile, we have many contributions, and
 we are not here without them.  We sincerely thank you to all who made
 a contribution.  Here is the all individuals/organizations who
 contributed to nghttp2 and spdylay project at which we forked.  These
 names are retrieved from git commit log.  If you have made a
 contribution, but you are missing in the list, please let us know via
 github issues [2].
 [1] https://github.com/tatsuhiro-t/spdylay
 [2] https://github.com/nghttp2/nghttp2/issues
 --------
 187j3x1
 Alek Storm
 Alex Nalivko
 Alexis La Goutte
 Amir Pakdel
 Anders Bakken
 Andreas Pohl
 Andy Davies
 Angus Gratton
 Anna Henningsen
 Ant Bryan
 Benedikt Christoph Wolters
 Benedikt Christoph Wolters
 Benjamin Peterson
 Bernard Spil
 Bernard Spil
 Brian Card
 Brian Suh
 Daniel Stenberg
 Dave Reisner
 David Beitey
 David Weekly
 Etienne Cimon
 Fabian Möller
 Fabian Wiesel
 Gabi Davar
 Google Inc.
 Jacob Champion
 Jan-E
 Janusz Dziemidowicz
 Jay Satiro
 Jianqing Wang
 Jim Morrison
 José F. Calcerrada
 Kamil Dudka
 Kazuho Oku
 Kenny (kang-yen) Peng
 Kenny Peng
 Kit Chan
 Kyle Schomp
 Lucas Pardue
 MATSUMOTO Ryosuke
 Matt Rudary
 Matt Way
 Mike Conlen
 Mike Frysinger
 Nicholas Hurley
 Nora Shoemaker
 Peeyush Aggarwal
 Peter Wu
 Piotr Sikora
 Raul Gutierrez Segales
 Remo E
 Reza Tavakoli
 Ross Smith II
 Scott Mitchell
 Sebastiaan Deckers
 Simone Basso
 Soham Sinha
 Stefan Eissing
 Stephen Ludin
 Sunpoet Po-Chuan Hsieh
 Svante Signell
 Syohei YOSHIDA
 Tapanito
 Tatsuhiko Kubo
 Tatsuhiro Tsujikawa
 Tom Harwood
 Tomasz Buchert
 Tomasz Torcz
 Vernon Tang
 Viacheslav Biriukov
 Viktor Szépe
 Wenfeng Liu
 Xiaoguang Sun
 Zhuoyun Wei
 acesso
 ayanamist
 bxshi
 clemahieu
 dalf
 es
 fangdingjun
 kumagi
 lstefani
 makovich
 mod-h2-dev
 moparisthebest
 snnn
 yuuki-kodama
--- a/CMakeLists.txt
+++ b/CMakeLists.txt
@@ -1,516 +0,0 @@
 # nghttp2 - HTTP/2 C Library
 #
 # Copyright (c) 2012, 2013, 2014, 2015 Tatsuhiro Tsujikawa
 # Copyright (c) 2016 Peter Wu <peter@lekensteyn.nl>
 #
 # Permission is hereby granted, free of charge, to any person obtaining
 # a copy of this software and associated documentation files (the
 # "Software"), to deal in the Software without restriction, including
 # without limitation the rights to use, copy, modify, merge, publish,
 # distribute, sublicense, and/or sell copies of the Software, and to
 # permit persons to whom the Software is furnished to do so, subject to
 # the following conditions:
 #
 # The above copyright notice and this permission notice shall be
 # included in all copies or substantial portions of the Software.
 #
 # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
 # EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
 # MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
 # NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
 # LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
 # OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
 # WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
 cmake_minimum_required(VERSION 3.0)
 # XXX using 1.8.90 instead of 1.9.0-DEV
 project(nghttp2 VERSION 1.25.0)
 # See versioning rule:
 #  http://www.gnu.org/software/libtool/manual/html_node/Updating-version-info.html
 set(LT_CURRENT  28)
 set(LT_REVISION 0)
 set(LT_AGE      14)
 set(CMAKE_MODULE_PATH "${CMAKE_CURRENT_SOURCE_DIR}/cmake")
 include(Version)
 math(EXPR LT_SOVERSION "${LT_CURRENT} - ${LT_AGE}")
 set(LT_VERSION "${LT_SOVERSION}.${LT_AGE}.${LT_REVISION}")
 set(PACKAGE_VERSION     "${PROJECT_VERSION}")
 HexVersion(PACKAGE_VERSION_NUM ${PROJECT_VERSION_MAJOR} ${PROJECT_VERSION_MINOR} ${PROJECT_VERSION_PATCH})
 if(NOT CMAKE_BUILD_TYPE AND NOT CMAKE_CONFIGURATION_TYPES)
  set(CMAKE_BUILD_TYPE RelWithDebInfo CACHE STRING "Choose the build type" FORCE)
  # Include "None" as option to disable any additional (optimization) flags,
  # relying on just CMAKE_C_FLAGS and CMAKE_CXX_FLAGS (which are empty by
  # default). These strings are presented in cmake-gui.
  set_property(CACHE CMAKE_BUILD_TYPE PROPERTY STRINGS
    "None" "Debug" "Release" "MinSizeRel" "RelWithDebInfo")
 endif()
 include(GNUInstallDirs)
 # For Python bindings and documentation
 # (Must be called before PythonLibs for matching versions.)
 find_package(PythonInterp)
 # Auto-detection of features that can be toggled
 find_package(OpenSSL 1.0.1)
 find_package(Libev 4.11)
 find_package(Libcares 1.7.5)
 find_package(ZLIB 1.2.3)
 if(OPENSSL_FOUND AND LIBEV_FOUND AND ZLIB_FOUND)
  set(ENABLE_APP_DEFAULT ON)
 else()
  set(ENABLE_APP_DEFAULT OFF)
 endif()
 find_package(Jansson  2.5)
 set(ENABLE_HPACK_TOOLS_DEFAULT ${JANSSON_FOUND})
 # 2.0.8 is required because we use evconnlistener_set_error_cb()
 find_package(Libevent 2.0.8 COMPONENTS libevent openssl)
 set(ENABLE_EXAMPLES_DEFAULT ${LIBEVENT_OPENSSL_FOUND})
 find_package(Cython)
 find_package(PythonLibs)
 if(CYTHON_FOUND AND PYTHONLIBS_FOUND)
  set(ENABLE_PYTHON_BINDINGS_DEFAULT ON)
 else()
  set(ENABLE_PYTHON_BINDINGS_DEFAULT OFF)
 endif()
 find_package(LibXml2 2.7.7)
 set(WITH_LIBXML2_DEFAULT    ${LIBXML2_FOUND})
 find_package(Jemalloc)
 set(WITH_JEMALLOC_DEFAULT   ${JEMALLOC_FOUND})
 find_package(Spdylay 1.3.2)
 set(WITH_SPDYLAY_DEFAULT    ${SPDYLAY_FOUND})
 include(CMakeOptions.txt)
 if(ENABLE_LIB_ONLY AND (ENABLE_APP OR ENABLE_HPACK_TOOLS OR ENABLE_EXAMPLES OR
  ENABLE_PYTHON_BINDINGS))
  # Remember when disabled options are disabled for later diagnostics.
  set(ENABLE_LIB_ONLY_DISABLED_OTHERS 1)
 else()
  set(ENABLE_LIB_ONLY_DISABLED_OTHERS 0)
 endif()
 if(ENABLE_LIB_ONLY)
  set(ENABLE_APP            OFF)
  set(ENABLE_HPACK_TOOLS    OFF)
  set(ENABLE_EXAMPLES       OFF)
  set(ENABLE_PYTHON_BINDINGS OFF)
 endif()
 # Do not disable assertions based on CMAKE_BUILD_TYPE.
 foreach(_build_type "Release" "MinSizeRel" "RelWithDebInfo")
  foreach(_lang C CXX)
    string(TOUPPER "CMAKE_${_lang}_FLAGS_${_build_type}" _var)
    string(REGEX REPLACE "(^| )[/-]D *NDEBUG($| )" "" ${_var} "${${_var}}")
  endforeach()
 endforeach()
 if(CMAKE_C_COMPILER_ID MATCHES "GNU" OR CMAKE_C_COMPILER_ID MATCHES "Clang")
  set(HINT_NORETURN       "__attribute__((noreturn))")
 else()
  set(HINT_NORETURN)
 endif()
 include(ExtractValidFlags)
 foreach(_cxx1x_flag -std=c++11 -std=c++0x)
  extract_valid_cxx_flags(_cxx1x_flag_supported ${_cxx1x_flag})
  if(_cxx1x_flag_supported)
    set(CXX1XCXXFLAGS ${_cxx1x_flag})
    break()
  endif()
 endforeach()
 include(CMakePushCheckState)
 include(CheckCXXSourceCompiles)
 cmake_push_check_state()
 set(CMAKE_REQUIRED_DEFINITIONS "${CXX1XCXXFLAGS}")
 # Check that std::future is available.
 check_cxx_source_compiles("
 #include <vector>
 #include <future>
 int main() { std::vector<std::future<int>> v; }" HAVE_STD_FUTURE)
 # Check that std::map::emplace is available for g++-4.7.
 check_cxx_source_compiles("
 #include <map>
 int main() { std::map<int, int>().emplace(1, 2); }" HAVE_STD_MAP_EMPLACE)
 cmake_pop_check_state()
 # Checks for libraries.
 # Additional libraries required for programs under src directory.
 set(APP_LIBRARIES)
 if(ENABLE_PYTHON_BINDINGS)
  if(NOT (CYTHON_FOUND AND PYTHONLIBS_FOUND))
    message(FATAL_ERROR "python bindings were requested "
      "(ENABLE_PYTHON_BINDINGS=1) but dependencies are not met.")
  endif()
  if(NOT PYTHON_VERSION_STRING STREQUAL PYTHONLIBS_VERSION_STRING)
    message(FATAL_ERROR
      "Python executable and library must have the same version!"
      " Found Python ${PYTHON_VERSION_STRING} and"
      " PythonLibs ${PYTHONLIBS_VERSION_STRING}"
    )
  endif()
 endif()
 set(CMAKE_THREAD_PREFER_PTHREAD 1)
 find_package(Threads)
 if(CMAKE_USE_PTHREADS_INIT)
  list(APPEND APP_LIBRARIES ${CMAKE_THREAD_LIBS_INIT})
 endif()
 # XXX android and C++, is this still needed in cmake?
 # case "$host" in
 #   *android*)
 #     android_build=yes
 #     # android does not need -pthread, but needs followng 3 libs for C++
 #     APPLDFLAGS="$APPLDFLAGS -lstdc++ -latomic -lsupc++"
 # dl: openssl requires libdl when it is statically linked.
 # XXX shouldn't ${CMAKE_DL_LIBS} be appended to OPENSSL_LIBRARIES instead of
 # APP_LIBRARIES if it is really specific to OpenSSL?
 find_package(CUnit 2.1)
 enable_testing()
 set(HAVE_CUNIT      ${CUNIT_FOUND})
 if(HAVE_CUNIT)
  add_custom_target(check COMMAND ${CMAKE_CTEST_COMMAND})
 endif()
 # openssl (for src)
 set(HAVE_OPENSSL    ${OPENSSL_FOUND})
 if(OPENSSL_FOUND)
  set(OPENSSL_INCLUDE_DIRS  ${OPENSSL_INCLUDE_DIR})
 else()
  set(OPENSSL_INCLUDE_DIRS  "")
  set(OPENSSL_LIBRARIES     "")
 endif()
 # libev (for src)
 set(HAVE_LIBEV      ${LIBEV_FOUND})
 set(HAVE_ZLIB       ${ZLIB_FOUND})
 set(HAVE_LIBEVENT_OPENSSL ${LIBEVENT_FOUND})
 if(LIBEVENT_FOUND)
  # Must both link the core and openssl libraries.
  set(LIBEVENT_OPENSSL_LIBRARIES ${LIBEVENT_LIBRARIES})
 endif()
 # libc-ares (for src)
 set(HAVE_LIBCARES   ${LIBCARES_FOUND})
 if(LIBCARES_FOUND)
  set(LIBCARES_INCLUDE_DIRS ${LIBCARES_INCLUDE_DIR})
 else()
  set(LIBCARES_INCLUDE_DIRS "")
  set(LIBCARES_LIBRARIES    "")
 endif()
 # jansson (for src/nghttp, src/deflatehd and src/inflatehd)
 set(HAVE_JANSSON    ${JANSSON_FOUND})
 # libxml2 (for src/nghttp)
 set(HAVE_LIBXML2    ${LIBXML2_FOUND})
 if(LIBXML2_FOUND)
  set(LIBXML2_INCLUDE_DIRS  ${LIBXML2_INCLUDE_DIR})
 else()
  set(LIBXML2_INCLUDE_DIRS  "")
  set(LIBXML2_LIBRARIES     "")
 endif()
 # jemalloc
 set(HAVE_JEMALLOC   ${JEMALLOC_FOUND})
 # spdylay (for src/nghttpx and src/h2load)
 set(HAVE_SPDYLAY    ${SPDYLAY_FOUND})
 if(ENABLE_ASIO_LIB)
  find_package(Boost 1.54.0 REQUIRED system thread)
 endif()
 # The nghttp, nghttpd and nghttpx under src depend on zlib, OpenSSL and libev
 if(ENABLE_APP AND NOT (ZLIB_FOUND AND OPENSSL_FOUND AND LIBEV_FOUND))
  message(FATAL_ERROR "Applications were requested (ENABLE_APP=1) but dependencies are not met.")
 endif()
 # HPACK tools requires jansson
 if(ENABLE_HPACK_TOOLS AND NOT HAVE_JANSSON)
  message(FATAL_ERROR "HPACK tools were requested (ENABLE_HPACK_TOOLS=1) but dependencies are not met.")
 endif()
 # C++ library libnghttp2_asio
 if(ENABLE_EXAMPLES AND NOT (OPENSSL_FOUND AND LIBEVENT_OPENSSL_FOUND))
  message(FATAL_ERROR "examples were requested (ENABLE_EXAMPLES=1) but dependencies are not met.")
 endif()
 # third-party http-parser only be built when needed
 if(ENABLE_EXAMPLES OR ENABLE_APP OR ENABLE_HPACK_TOOLS OR ENABLE_ASIO_LIB)
  set(ENABLE_THIRD_PARTY 1)
  # mruby (for src/nghttpx)
  set(HAVE_MRUBY      ${WITH_MRUBY})
  set(HAVE_NEVERBLEED ${WITH_NEVERBLEED})
 else()
  set(HAVE_MRUBY 0)
  set(HAVE_NEVERBLEED 0)
 endif()
 # Checks for header files.
 include(CheckIncludeFile)
 check_include_file("arpa/inet.h"    HAVE_ARPA_INET_H)
 check_include_file("fcntl.h"        HAVE_FCNTL_H)
 check_include_file("inttypes.h"     HAVE_INTTYPES_H)
 check_include_file("limits.h"       HAVE_LIMITS_H)
 check_include_file("netdb.h"        HAVE_NETDB_H)
 check_include_file("netinet/in.h"   HAVE_NETINET_IN_H)
 check_include_file("pwd.h"          HAVE_PWD_H)
 check_include_file("sys/socket.h"   HAVE_SYS_SOCKET_H)
 check_include_file("sys/time.h"     HAVE_SYS_TIME_H)
 check_include_file("syslog.h"       HAVE_SYSLOG_H)
 check_include_file("time.h"         HAVE_TIME_H)
 check_include_file("unistd.h"       HAVE_UNISTD_H)
 include(CheckTypeSize)
 # Checks for typedefs, structures, and compiler characteristics.
 # AC_TYPE_SIZE_T
 check_type_size("ssize_t" SIZEOF_SSIZE_T)
 if(SIZEOF_SSIZE_T STREQUAL "")
  # ssize_t is a signed type in POSIX storing at least -1.
  # Set it to "int" to match the behavior of AC_TYPE_SSIZE_T (autotools).
  set(ssize_t int)
 endif()
 # AC_TYPE_UINT8_T
 # AC_TYPE_UINT16_T
 # AC_TYPE_UINT32_T
 # AC_TYPE_UINT64_T
 # AC_TYPE_INT8_T
 # AC_TYPE_INT16_T
 # AC_TYPE_INT32_T
 # AC_TYPE_INT64_T
 # AC_TYPE_OFF_T
 # AC_TYPE_PID_T
 # AC_TYPE_UID_T
 # XXX To support inline for crappy compilers, see https://cmake.org/Wiki/CMakeTestInline
 # AC_C_INLINE
 # XXX is AC_SYS_LARGEFILE still needed for modern systems?
 # add_definitions(-D_FILE_OFFSET_BITS=64)
 include(CheckStructHasMember)
 check_struct_has_member("struct tm" tm_gmtoff time.h HAVE_STRUCT_TM_TM_GMTOFF)
 # Check size of pointer to decide we need 8 bytes alignment adjustment.
 check_type_size("int *"   SIZEOF_INT_P)
 check_type_size("time_t"  SIZEOF_TIME_T)
 # Checks for library functions.
 include(CheckFunctionExists)
 check_function_exists(_Exit     HAVE__EXIT)
 check_function_exists(accept4   HAVE_ACCEPT4)
 include(CheckSymbolExists)
 # XXX does this correctly detect initgroups (un)availability on cygwin?
 check_symbol_exists(initgroups grp.h HAVE_DECL_INITGROUPS)
 if(NOT HAVE_DECL_INITGROUPS AND HAVE_UNISTD_H)
  # FreeBSD declares initgroups() in unistd.h
  check_symbol_exists(initgroups unistd.h HAVE_DECL_INITGROUPS2)
  if(HAVE_DECL_INITGROUPS2)
    set(HAVE_DECL_INITGROUPS 1)
  endif()
 endif()
 set(WARNCFLAGS)
 set(WARNCXXFLAGS)
 if(CMAKE_C_COMPILER_ID MATCHES "MSVC")
  if(ENABLE_WERROR)
    set(WARNCFLAGS    /WX)
    set(WARNCXXFLAGS  /WX)
  endif()
 else()
  if(ENABLE_WERROR)
    extract_valid_c_flags(WARNCFLAGS    -Werror)
    extract_valid_c_flags(WARNCXXFLAGS  -Werror)
  endif()
  # For C compiler
  extract_valid_c_flags(WARNCFLAGS
    -Wall
    -Wextra
    -Wmissing-prototypes
    -Wstrict-prototypes
    -Wmissing-declarations
    -Wpointer-arith
    -Wdeclaration-after-statement
    -Wformat-security
    -Wwrite-strings
    -Wshadow
    -Winline
    -Wnested-externs
    -Wfloat-equal
    -Wundef
    -Wendif-labels
    -Wempty-body
    -Wcast-align
    -Wclobbered
    -Wvla
    -Wpragmas
    -Wunreachable-code
    -Waddress
    -Wattributes
    -Wdiv-by-zero
    -Wshorten-64-to-32
    -Wconversion
    -Wextended-offsetof
    -Wformat-nonliteral
    -Wlanguage-extension-token
    -Wmissing-field-initializers
    -Wmissing-noreturn
    -Wmissing-variable-declarations
    # Not used because we cannot change public structs
    # -Wpadded
    -Wsign-conversion
    # Not used because this basically disallows default case
    # -Wswitch-enum
    -Wunreachable-code-break
    -Wunused-macros
    -Wunused-parameter
    -Wredundant-decls
    # Only work with Clang for the moment
    -Wheader-guard
    # This is required because we pass format string as "const char*.
    -Wno-format-nonliteral
  )
  extract_valid_cxx_flags(WARNCXXFLAGS
    # For C++ compiler
    -Wall
    -Wformat-security
  )
 endif()
 if(ENABLE_DEBUG)
  set(DEBUGBUILD 1)
 endif()
 # Some platform does not have working std::future.  We disable
 # threading for those platforms.
 if(NOT ENABLE_THREADS OR NOT HAVE_STD_FUTURE)
  set(NOTHREADS 1)
 endif()
 add_definitions(-DHAVE_CONFIG_H)
 configure_file(cmakeconfig.h.in config.h)
 # autotools-compatible names
 # Sphinx expects relative paths in the .rst files. Use the fact that the files
 # below are all one directory level deep.
 file(RELATIVE_PATH top_srcdir   "${CMAKE_CURRENT_BINARY_DIR}/dir" "${CMAKE_CURRENT_SOURCE_DIR}")
 file(RELATIVE_PATH top_builddir "${CMAKE_CURRENT_BINARY_DIR}/dir" "${CMAKE_CURRENT_BINARY_DIR}")
 set(abs_top_srcdir  "${CMAKE_CURRENT_SOURCE_DIR}")
 set(abs_top_builddir "${CMAKE_CURRENT_BINARY_DIR}")
 # libnghttp2.pc (pkg-config file)
 set(prefix          "${CMAKE_INSTALL_PREFIX}")
 set(exec_prefix     "${CMAKE_INSTALL_PREFIX}")
 set(libdir          "${CMAKE_INSTALL_FULL_LIBDIR}")
 set(includedir      "${CMAKE_INSTALL_FULL_INCLUDEDIR}")
 set(VERSION         "${PACKAGE_VERSION}")
 # For init scripts and systemd service file (in contrib/)
 set(bindir          "${CMAKE_INSTALL_FULL_BINDIR}")
 set(sbindir         "${CMAKE_INSTALL_FULL_SBINDIR}")
 foreach(name
   lib/libnghttp2.pc
   lib/includes/nghttp2/nghttp2ver.h
   src/libnghttp2_asio.pc
   python/setup.py
   integration-tests/config.go
   integration-tests/setenv
   doc/conf.py
   doc/index.rst
   doc/package_README.rst
   doc/tutorial-client.rst
   doc/tutorial-server.rst
   doc/tutorial-hpack.rst
   doc/nghttpx-howto.rst
   doc/h2load-howto.rst
   doc/libnghttp2_asio.rst
   doc/python-apiref.rst
   doc/building-android-binary.rst
   doc/nghttp2.h.rst
   doc/nghttp2ver.h.rst
   doc/asio_http2.h.rst
   doc/asio_http2_server.h.rst
   doc/asio_http2_client.h.rst
   doc/contribute.rst
 )
  configure_file("${name}.in" "${name}" @ONLY)
 endforeach()
 include_directories(
  "${CMAKE_CURRENT_BINARY_DIR}" # for config.h
 )
 # For use in src/CMakeLists.txt
 set(PKGDATADIR "${CMAKE_INSTALL_FULL_DATADIR}/${CMAKE_PROJECT_NAME}")
 install(FILES README.rst DESTINATION "${CMAKE_INSTALL_DOCDIR}")
 add_subdirectory(lib)
 #add_subdirectory(lib/includes)
 add_subdirectory(third-party)
 add_subdirectory(src)
 #add_subdirectory(src/includes)
 add_subdirectory(examples)
 add_subdirectory(python)
 add_subdirectory(tests)
 #add_subdirectory(tests/testdata)
 add_subdirectory(integration-tests)
 add_subdirectory(doc)
 add_subdirectory(contrib)
 add_subdirectory(script)
 string(TOUPPER "${CMAKE_BUILD_TYPE}" _build_type)
 message(STATUS "summary of build options:
    Package version: ${VERSION}
    Library version: ${LT_CURRENT}:${LT_REVISION}:${LT_AGE}
    Install prefix:  ${CMAKE_INSTALL_PREFIX}
    Target system:   ${CMAKE_SYSTEM_NAME}
    Compiler:
      Build type:     ${CMAKE_BUILD_TYPE}
      C compiler:     ${CMAKE_C_COMPILER}
      CFLAGS:         ${CMAKE_C_FLAGS_${_build_type}} ${CMAKE_C_FLAGS}
      C++ compiler:   ${CMAKE_CXX_COMPILER}
      CXXFLAGS:       ${CMAKE_CXX_FLAGS_${_build_type}} ${CMAKE_CXX_FLAGS}
      WARNCFLAGS:     ${WARNCFLAGS}
      CXX1XCXXFLAGS:  ${CXX1XCXXFLAGS}
    Python:
      Python:         ${PYTHON_EXECUTABLE}
      PYTHON_VERSION: ${PYTHON_VERSION_STRING}
      Library version:${PYTHONLIBS_VERSION_STRING}
      Cython:         ${CYTHON_EXECUTABLE}
    Test:
      CUnit:          ${HAVE_CUNIT} (LIBS='${CUNIT_LIBRARIES}')
      Failmalloc:     ${ENABLE_FAILMALLOC}
    Libs:
      OpenSSL:        ${HAVE_OPENSSL} (LIBS='${OPENSSL_LIBRARIES}')
      Libxml2:        ${HAVE_LIBXML2} (LIBS='${LIBXML2_LIBRARIES}')
      Libev:          ${HAVE_LIBEV} (LIBS='${LIBEV_LIBRARIES}')
      Libc-ares:      ${HAVE_LIBCARES} (LIBS='${LIBCARES_LIBRARIES}')
      Libevent(SSL):  ${HAVE_LIBEVENT_OPENSSL} (LIBS='${LIBEVENT_OPENSSL_LIBRARIES}')
      Spdylay:        ${HAVE_SPDYLAY} (LIBS='${SPDYLAY_LIBRARIES}')
      Jansson:        ${HAVE_JANSSON} (LIBS='${JANSSON_LIBRARIES}')
      Jemalloc:       ${HAVE_JEMALLOC} (LIBS='${JEMALLOC_LIBRARIES}')
      Zlib:           ${HAVE_ZLIB} (LIBS='${ZLIB_LIBRARIES}')
      Boost::System:  ${Boost_SYSTEM_LIBRARY}
      Boost::Thread:  ${Boost_THREAD_LIBRARY}
    Third-party:
      http-parser:    ${ENABLE_THIRD_PARTY}
      MRuby:          ${HAVE_MRUBY}
      Neverbleed:     ${HAVE_NEVERBLEED}
    Features:
      Applications:   ${ENABLE_APP}
      HPACK tools:    ${ENABLE_HPACK_TOOLS}
      Libnghttp2_asio:${ENABLE_ASIO_LIB}
      Examples:       ${ENABLE_EXAMPLES}
      Python bindings:${ENABLE_PYTHON_BINDINGS}
      Threading:      ${ENABLE_THREADS}
 ")
 if(ENABLE_LIB_ONLY_DISABLED_OTHERS)
  message("Only the library will be built. To build other components "
    "(such as applications and examples), set ENABLE_LIB_ONLY=OFF.")
 endif()
--- a/CMakeOptions.txt
+++ b/CMakeOptions.txt
@@ -1,27 +0,0 @@
 # Features that can be enabled for cmake (see CMakeLists.txt)
 option(ENABLE_WERROR    "Turn on compile time warnings")
 option(ENABLE_DEBUG     "Turn on debug output")
 option(ENABLE_THREADS   "Turn on threading in apps" ON)
 option(ENABLE_APP       "Build applications (nghttp, nghttpd, nghttpx and h2load)"
  ${ENABLE_APP_DEFAULT})
 option(ENABLE_HPACK_TOOLS "Build HPACK tools"
  ${ENABLE_HPACK_TOOLS_DEFAULT})
 option(ENABLE_ASIO_LIB  "Build C++ libnghttp2_asio library")
 option(ENABLE_EXAMPLES  "Build examples"
  ${ENABLE_EXAMPLES_DEFAULT})
 option(ENABLE_PYTHON_BINDINGS "Build Python bindings"
  ${ENABLE_PYTHON_BINDINGS_DEFAULT})
 option(ENABLE_FAILMALLOC "Build failmalloc test program" ON)
 option(ENABLE_LIB_ONLY  "Build libnghttp2 only.  This is a short hand for -DENABLE_APP=0 -DENABLE_EXAMPLES=0 -DENABLE_HPACK_TOOLS=0 -DENABLE_PYTHON_BINDINGS=0")
 option(WITH_LIBXML2     "Use libxml2"
  ${WITH_LIBXML2_DEFAULT})
 option(WITH_JEMALLOC    "Use jemalloc"
  ${WITH_JEMALLOC_DEFAULT})
 option(WITH_SPDYLAY     "Use spdylay"
  ${WITH_SPDYLAY_DEFAULT})
 option(WITH_MRUBY       "Use mruby")
 option(WITH_NEVERBLEED  "Use neverbleed")
 # vim: ft=cmake:
--- a/1
+++ b/1
@@ -1,7 +1,6 @@
 The MIT License
 Copyright (c) 2012, 2014, 2015, 2016 Tatsuhiro Tsujikawa
 Copyright (c) 2012, 2014, 2015, 2016 nghttp2 contributors
 Permission is hereby granted, free of charge, to any person obtaining
 a copy of this software and associated documentation files (the
--- a/Dockerfile.android
+++ b/Dockerfile.android
@@ -106,7 +106,7 @@ RUN HOST=arm-linux-androideabi \
    make install
 WORKDIR /root/build
-RUN git clone https://github.com/nghttp2/nghttp2
+RUN git clone https://github.com/tatsuhiro-t/nghttp2
 WORKDIR /root/build/nghttp2
 RUN autoreconf -i && \
    ./configure \
--- a/Makefile.am
+++ b/Makefile.am
@@ -33,20 +33,7 @@ ACLOCAL_AMFLAGS = -I m4
 dist_doc_DATA = README.rst
 EXTRA_DIST = nghttpx.conf.sample proxy.pac.sample android-config android-make \
-	Dockerfile.android \
+	Dockerfile.android
 	cmakeconfig.h.in \
 	CMakeLists.txt \
 	CMakeOptions.txt \
 	cmake/FindSpdylay.cmake \
 	cmake/ExtractValidFlags.cmake \
 	cmake/FindJemalloc.cmake \
 	cmake/FindLibev.cmake \
 	cmake/FindCUnit.cmake \
 	cmake/Version.cmake \
 	cmake/FindCython.cmake \
 	cmake/FindLibevent.cmake \
 	cmake/FindJansson.cmake \
 	cmake/FindLibcares.cmake
 .PHONY: clang-format
--- a/README.rst
+++ b/README.rst
@@ -58,19 +58,13 @@ To build the documentation, you need to install:
 * sphinx (http://sphinx-doc.org/)
-If you need libnghttp2 (C library) only, then the above packages are
+To build and run the application programs (``nghttp``, ``nghttpd`` and
-all you need.  Use ``--enable-lib-only`` to ensure that only
+``nghttpx``) in the ``src`` directory, the following packages are
-libnghttp2 is built.  This avoids potential build error related to
+required:
 building bundled applications.
 To build and run the application programs (``nghttp``, ``nghttpd``,
 ``nghttpx`` and ``h2load``) in the ``src`` directory, the following packages
 are required:
 * OpenSSL >= 1.0.1
-* libev >= 4.11
+* libev >= 4.15
 * zlib >= 1.2.3
 * libc-ares >= 1.7.5
 ALPN support requires OpenSSL >= 1.0.2 (released 22 January 2015).
 LibreSSL >= 2.2.0 can be used instead of OpenSSL, but OpenSSL has more
@@ -81,19 +75,11 @@ To enable the SPDY protocol in the application program ``nghttpx`` and
 * spdylay >= 1.3.2
 We no longer recommend to build nghttp2 with SPDY protocol support
 enabled.  SPDY support will be removed soon.
 To enable ``-a`` option (getting linked assets from the downloaded
 resource) in ``nghttp``, the following package is required:
 * libxml2 >= 2.7.7
 To enable systemd support in nghttpx, the following package is
 required:
 * libsystemd-dev >= 209
 The HPACK tools require the following package:
 * jansson >= 2.5
@@ -107,11 +93,6 @@ To mitigate heap fragmentation in long running server programs
 * jemalloc
  .. note::
     Alpine Linux currently does not support malloc replacement
     due to musl limitations. See details in issue `#762 <https://github.com/nghttp2/nghttp2/issues/762>`_.
 libnghttp2_asio C++ library requires the following packages:
 * libboost-dev >= 1.54.0
@@ -123,19 +104,14 @@ The Python bindings require the following packages:
 * python >= 2.7
 * python-setuptools
-If you are using Ubuntu 16.04 LTS (Xenial Xerus) or Debian 8 (jessie)
+If you are using Ubuntu 14.04 LTS (trusty) or Debian 7.0 (wheezy) and above run the following to install the needed packages::
 and above, run the following to install the required packages:
 .. code-block:: text
    sudo apt-get install g++ make binutils autoconf automake autotools-dev libtool pkg-config \
      zlib1g-dev libcunit1-dev libssl-dev libxml2-dev libev-dev libevent-dev libjansson-dev \
-      libc-ares-dev libjemalloc-dev libsystemd-dev libspdylay-dev \
+      libjemalloc-dev cython python3-dev python-setuptools
      cython python3-dev python-setuptools
-Since Ubuntu 15.10, spdylay has been available as a package named
+spdylay is not packaged in Ubuntu, so you need to build it yourself:
-`libspdylay-dev`.  For the earlier Ubuntu release, you need to build
+http://tatsuhiro-t.github.io/spdylay/
 it yourself: http://tatsuhiro-t.github.io/spdylay/
 To enable mruby support for nghttpx, `mruby
 <https://github.com/mruby/mruby>`_ is required.  We need to build
@@ -157,12 +133,24 @@ minimizes the risk of private key leakage when serious bug like
 Heartbleed is exploited.  The neverbleed is disabled by default.  To
 enable it, use ``--with-neverbleed`` configure option.
-In order to compile the source code, gcc >= 4.8.3 or clang >= 3.4 is
+Building from git
-required.
+-----------------
 Building from git is easy, but please be sure that at least autoconf 2.68 is
 used::
    $ autoreconf -i
    $ automake
    $ autoconf
    $ ./configure
    $ make
 To compile the source code, gcc >= 4.8.3 or clang >= 3.4 is required.
 .. note::
-   To enable mruby support in nghttpx, and use ``--with-mruby``
+   To enable mruby support in nghttpx, run ``git submodule update
   --init`` before running configure script, and use ``--with-mruby``
   configure option.
 .. note::
@@ -172,90 +160,6 @@ required.
   them from crashing. A patch is welcome to make multi threading work
   on Mac OS X platform.
 .. note::
   To compile the associated applications (nghttp, nghttpd, nghttpx
   and h2load), you must use the ``--enable-app`` configure option and
   ensure that the specified requirements above are met.  Normally,
   configure script checks required dependencies to build these
   applications, and enable ``--enable-app`` automatically, so you
   don't have to use it explicitly.  But if you found that
   applications were not built, then using ``--enable-app`` may find
   that cause, such as the missing dependency.
 .. note::
   In order to detect third party libraries, pkg-config is used
   (however we don't use pkg-config for some libraries (e.g., libev)).
   By default, pkg-config searches ``*.pc`` file in the standard
   locations (e.g., /usr/lib/pkgconfig).  If it is necessary to use
   ``*.pc`` file in the custom location, specify paths to
   ``PKG_CONFIG_PATH`` environment variable, and pass it to configure
   script, like so:
   .. code-block:: text
       $ ./configure PKG_CONFIG_PATH=/path/to/pkgconfig
   For pkg-config managed libraries, ``*_CFLAG`` and ``*_LIBS``
   environment variables are defined (e.g., ``OPENSSL_CFLAGS``,
   ``OPENSSL_LIBS``).  Specifying non-empty string to these variables
   completely overrides pkg-config.  In other words, if they are
   specified, pkg-config is not used for detection, and user is
   responsible to specify the correct values to these variables.  For
   complete list of these variables, run ``./configure -h``.
 Building nghttp2 from release tar archive
 -----------------------------------------
 The nghttp2 project regularly releases tar archives which includes
 nghttp2 source code, and generated build files.  They can be
 downloaded from `Releases
 <https://github.com/nghttp2/nghttp2/releases>`_ page.
 Building nghttp2 from git requires autotools development packages.
 Building from tar archives does not require them, and thus it is much
 easier.  The usual build step is as follows:
 .. code-block:: text
    $ tar xf nghttp2-X.Y.Z.tar.bz2
    $ cd nghttp2-X.Y.Z
    $ ./configure
    $ make
 Building from git
 -----------------
 Building from git is easy, but please be sure that at least autoconf 2.68 is
 used:
 .. code-block:: text
    $ git submodule update --init
    $ autoreconf -i
    $ automake
    $ autoconf
    $ ./configure
    $ make
 Notes for building on Windows (MSVC)
 ------------------------------------
 The easiest way to build native Windows nghttp2 dll is use `cmake
 <https://cmake.org/>`_.  The free version of `Visual C++ Build Tools
 <http://landinghub.visualstudio.com/visual-cpp-build-tools>`_ works
 fine.
 1. Install cmake for windows
 2. Open "Visual C++ ... Native Build Tool Command Prompt", and inside
   nghttp2 directly, run ``cmake``.
 3. Then run ``cmake --build`` to build library.
 4. nghttp2.dll, nghttp2.lib, nghttp2.exp are placed under lib directory.
 Note that the above steps most likely produce nghttp2 library only.
 No bundled applications are compiled.
 Notes for building on Windows (Mingw/Cygwin)
 --------------------------------------------
@@ -272,9 +176,7 @@ Secondly, you need to undefine the macro ``__STRICT_ANSI__``, if you
 not, the functions ``fdopen``, ``fileno`` and ``strptime`` will not
 available.
-the sample command like this:
+the sample command like this::
 .. code-block:: text
    $ export CFLAGS="-U__STRICT_ANSI__ -I$libev_PREFIX/include -L$libev_PREFIX/lib"
    $ export CXXFLAGS=$CFLAGS
@@ -285,18 +187,6 @@ If you want to compile the applications under ``examples/``, you need
 to remove or rename the ``event.h`` from libev's installation, because
 it conflicts with libevent's installation.
 Notes for installation on Linux systems
 --------------------------------------------
 After installing nghttp2 tool suite with ``make install`` one might experience a similar error:
 .. code-block:: text
    nghttpx: error while loading shared libraries: libnghttp2.so.14: cannot open shared object file: No such file or directory
 This means that the tool is unable to locate the ``libnghttp2.so`` shared library.
 To update the shared library cache run ``sudo ldconfig``.
 Building the documentation
 --------------------------
@@ -304,9 +194,7 @@ Building the documentation
   Documentation is still incomplete.
-To build the documentation, run:
+To build the documentation, run::
 .. code-block:: text
    $ make html
@@ -335,16 +223,12 @@ its testing framework.  We depend on the following libraries:
 * https://github.com/tatsuhiro-t/spdy
 To download the above packages, after settings ``GOPATH``, run the
-following command under ``integration-tests`` directory:
+following command under ``integration-tests`` directory::
 .. code-block:: text
    $ make itprep
 To run the tests, run the following command under
-``integration-tests`` directory:
+``integration-tests`` directory::
 .. code-block:: text
    $ make it
@@ -465,9 +349,7 @@ nghttp - client
 with prior knowledge, HTTP Upgrade and NPN/ALPN TLS extension.
 It has verbose output mode for framing information.  Here is sample
-output from ``nghttp`` client:
+output from ``nghttp`` client::
 .. code-block:: text
    $ nghttp -nv https://nghttp2.org
    [  0.190] Connected
@@ -550,9 +432,7 @@ output from ``nghttp`` client:
    [  0.228] send GOAWAY frame <length=8, flags=0x00, stream_id=0>
 	      (last_stream_id=2, error_code=NO_ERROR(0x00), opaque_data(0)=[])
-The HTTP Upgrade is performed like so:
+The HTTP Upgrade is performed like so::
 .. code-block:: text
    $ nghttp -nvu http://nghttp2.org
    [  0.011] Connected
@@ -648,9 +528,7 @@ The HTTP Upgrade is performed like so:
 	      (last_stream_id=2, error_code=NO_ERROR(0x00), opaque_data(0)=[])
 Using the ``-s`` option, ``nghttp`` prints out some timing information for
-requests, sorted by completion time:
+requests, sorted by completion time::
 .. code-block:: text
    $ nghttp -nas https://nghttp2.org/
    ***** Statistics *****
@@ -694,9 +572,7 @@ HTTP/2 connections.  No HTTP Upgrade is supported.
 The ``-p`` option allows users to configure server push.
 Just like ``nghttp``, it has a verbose output mode for framing
-information.  Here is sample output from ``nghttpd``:
+information.  Here is sample output from ``nghttpd``::
 .. code-block:: text
    $ nghttpd --no-tls -v 8080
    IPv4: listen 0.0.0.0:8080
@@ -759,58 +635,50 @@ nghttpx - proxy
 HTTP/1.1, and powers http://nghttp2.org and supports HTTP/2 server
 push.
 We reworked ``nghttpx`` command-line interface, and as a result, there
 are several incompatibles from 1.8.0 or earlier.  This is necessary to
 extend its capability, and secure the further feature enhancements in
 the future release.  Please read `Migration from nghttpx v1.8.0 or
 earlier
 <https://nghttp2.org/documentation/nghttpx-howto.html#migration-from-nghttpx-v1-8-0-or-earlier>`_
 to know how to migrate from earlier releases.
 ``nghttpx`` implements `important performance-oriented features
 <https://istlsfastyet.com/#server-performance>`_ in TLS, such as
 session IDs, session tickets (with automatic key rotation), OCSP
 stapling, dynamic record sizing, ALPN/NPN, forward secrecy and SPDY &
-HTTP/2.  ``nghttpx`` also offers the functionality to share session
+HTTP/2.
 cache and ticket keys among multiple ``nghttpx`` instances via
 memcached.
-``nghttpx`` has 2 operation modes:
+``nghttpx`` has several operational modes:
-================== ====================== ================ =============
+================== ============================ ============== =============
-Mode option        Frontend               Backend          Note
+Mode option        Frontend                     Backend        Note
-================== ====================== ================ =============
+================== ============================ ============== =============
-default mode       HTTP/2, SPDY, HTTP/1.1 HTTP/1.1, HTTP/2 Reverse proxy
+default mode       HTTP/2, SPDY, HTTP/1.1 (TLS) HTTP/1.1       Reverse proxy
-``--http2-proxy``  HTTP/2, SPDY, HTTP/1.1 HTTP/1.1, HTTP/2 Forward proxy
+``--http2-proxy``  HTTP/2, SPDY, HTTP/1.1 (TLS) HTTP/1.1       SPDY proxy
-================== ====================== ================ =============
+``--http2-bridge`` HTTP/2, SPDY, HTTP/1.1 (TLS) HTTP/2 (TLS)
 ``--client``       HTTP/2, HTTP/1.1             HTTP/2 (TLS)
 ``--client-proxy`` HTTP/2, HTTP/1.1             HTTP/2 (TLS)   Forward proxy
 ================== ============================ ============== =============
 The interesting mode at the moment is the default mode.  It works like
 a reverse proxy and listens for HTTP/2, SPDY and HTTP/1.1 and can be
 deployed as a SSL/TLS terminator for existing web server.
-In all modes, the frontend connections are encrypted by SSL/TLS by
+The default mode, ``--http2-proxy`` and ``--http2-bridge`` modes use
-default.  To disable encryption, use the ``no-tls`` keyword in
+SSL/TLS in the frontend connection by default.  To disable SSL/TLS,
-``--frontend`` option.  If encryption is disabled, SPDY is disabled in
+use the ``--frontend-no-tls`` option.  If that option is used, SPDY is
-the frontend and incoming HTTP/1.1 connections can be upgraded to
+disabled in the frontend and incoming HTTP/1.1 connections can be
-HTTP/2 through HTTP Upgrade.  On the other hard, backend connections
+upgraded to HTTP/2 through HTTP Upgrade.
-are not encrypted by default.  To encrypt backend connections, use
+
-``tls`` keyword in ``--backend`` option.
+The ``--http2-bridge``, ``--client`` and ``--client-proxy`` modes use
 SSL/TLS in the backend connection by default.  To disable SSL/TLS, use
 the ``--backend-no-tls`` option.
 ``nghttpx`` supports a configuration file.  See the ``--conf`` option and
 sample configuration file ``nghttpx.conf.sample``.
-In the default mode, ``nghttpx`` works as reverse proxy to the backend
+In the default mode, (without any of ``--http2-proxy``,
-server:
+``--http2-bridge``, ``--client-proxy`` and ``--client`` options),
 ``nghttpx`` works as reverse proxy to the backend server::
-.. code-block:: text
+    Client <-- (HTTP/2, SPDY, HTTP/1.1) --> nghttpx <-- (HTTP/1.1) --> Web Server
    Client <-- (HTTP/2, SPDY, HTTP/1.1) --> nghttpx <-- (HTTP/1.1, HTTP/2) --> Web Server
                                          [reverse proxy]
-With the ``--http2-proxy`` option, it works as forward proxy, and it
+With the ``--http2-proxy`` option, it works as a so called secure proxy (aka
-is so called secure HTTP/2 proxy (aka SPDY proxy):
+SPDY proxy)::
 .. code-block:: text
    Client <-- (HTTP/2, SPDY, HTTP/1.1) --> nghttpx <-- (HTTP/1.1) --> Proxy
                                           [secure proxy]          (e.g., Squid, ATS)
@@ -818,9 +686,9 @@ is so called secure HTTP/2 proxy (aka SPDY proxy):
 The ``Client`` in the above example needs to be configured to use
 ``nghttpx`` as secure proxy.
-At the time of this writing, both Chrome and Firefox support secure
+At the time of this writing, Chrome is the only browser which supports
-HTTP/2 proxy.  One way to configure Chrome to use a secure proxy is to
+secure proxy.  One way to configure Chrome to use a secure proxy is
-create a proxy.pac script like this:
+to create a proxy.pac script like this:
 .. code-block:: javascript
@@ -832,18 +700,42 @@ create a proxy.pac script like this:
 machine nghttpx is running on.  Please note that Chrome requires a valid
 certificate for secure proxy.
-Then run Chrome with the following arguments:
+Then run Chrome with the following arguments::
 .. code-block:: text
    $ google-chrome --proxy-pac-url=file:///path/to/proxy.pac --use-npn
-The backend HTTP/2 connections can be tunneled through an HTTP proxy.
+With ``--http2-bridge``, it accepts HTTP/2, SPDY and HTTP/1.1
-The proxy is specified using ``--backend-http-proxy-uri``.  The
+connections and communicates with the backend in HTTP/2::
 following figure illustrates how nghttpx talks to the outside HTTP/2
 proxy through an HTTP proxy:
-.. code-block:: text
+    Client <-- (HTTP/2, SPDY, HTTP/1.1) --> nghttpx <-- (HTTP/2) --> Web or HTTP/2 Proxy etc
                                                                         (e.g., nghttpx -s)
 With ``--client-proxy``, it works as a forward proxy and expects
 that the backend is an HTTP/2 proxy::
    Client <-- (HTTP/2, HTTP/1.1) --> nghttpx <-- (HTTP/2) --> HTTP/2 Proxy
                                     [forward proxy]               (e.g., nghttpx -s)
 The ``Client`` needs to be configured to use nghttpx as a forward
 proxy.  The frontend HTTP/1.1 connection can be upgraded to HTTP/2
 through HTTP Upgrade.  With the above configuration, one can use
 HTTP/1.1 client to access and test their HTTP/2 servers.
 With ``--client``, it works as a reverse proxy and expects that
 the backend is an HTTP/2 Web server::
    Client <-- (HTTP/2, HTTP/1.1) --> nghttpx <-- (HTTP/2) --> Web Server
                                    [reverse proxy]
 The frontend HTTP/1.1 connection can be upgraded to HTTP/2
 through HTTP Upgrade.
 For the operation modes which talk to the backend in HTTP/2 over
 SSL/TLS, the backend connections can be tunneled through an HTTP proxy.
 The proxy is specified using ``--backend-http-proxy-uri``.  The
 following figure illustrates the example of the ``--http2-bridge`` and
 ``--backend-http-proxy-uri`` options to talk to the outside HTTP/2
 proxy through an HTTP proxy::
    Client <-- (HTTP/2, SPDY, HTTP/1.1) --> nghttpx <-- (HTTP/2) --
@@ -857,9 +749,7 @@ The ``h2load`` program is a benchmarking tool for HTTP/2 and SPDY.
 The SPDY support is enabled if the program was built with the spdylay
 library.  The UI of ``h2load`` is heavily inspired by ``weighttp``
 (https://github.com/lighttpd/weighttp).  The typical usage is as
-follows:
+follows::
 .. code-block:: text
    $ h2load -n100000 -c100 -m100 https://localhost:8443/
    starting benchmark...
@@ -947,9 +837,7 @@ Example:
 With the ``-t`` option, the program can accept more familiar HTTP/1 style
 header field blocks.  Each header set is delimited by an empty line:
-Example:
+Example::
 .. code-block:: text
    :method: GET
    :scheme: https
@@ -1445,7 +1333,7 @@ The extension module is called ``nghttp2``.
 determined by the ``configure`` script.  If the detected Python version is not
 what you expect, specify a path to Python executable in a ``PYTHON``
 variable as an argument to configure script (e.g., ``./configure
-PYTHON=/usr/bin/python3.5``).
+PYTHON=/usr/bin/python3.4``).
 The following example code illustrates basic usage of the HPACK compressor
 and decompressor in Python:
@@ -1574,32 +1462,3 @@ full real name when contributing!
 See `Contribution Guidelines
 <https://nghttp2.org/documentation/contribute.html>`_ for more
 details.
 Reporting vulnerability
 -----------------------
 If you find a vulnerability in our software, please send the email to
 "tatsuhiro.t at gmail dot com" about its details instead of submitting
 issues on github issue page.  It is a standard practice not to
 disclose vulnerability information publicly until a fixed version is
 released, or mitigation is worked out.
 In the future, we may setup a dedicated mail address for this purpose.
 Release schedule
 ----------------
 In general, we follow `Semantic Versioning <http://semver.org/>`_.  We
 release MINOR version update every month, and usually we ship it
 around 25th day of every month.
 We may release PATCH releases between the regular releases, mainly for
 severe security bug fixes.
 We have no plan to break API compatibility changes involving soname
 bump, so MAJOR version will stay 1 for the foreseeable future.
 License
 -------
 The MIT License
--- a/6
+++ b/6
@@ -39,9 +39,9 @@ PATH="$TOOLCHAIN"/bin:"$PATH"
    --without-libxml2 \
    --disable-python-bindings \
    --disable-examples \
-    --disable-threads \
+    --enable-werror \
-    CC="$TOOLCHAIN"/bin/arm-linux-androideabi-clang \
+    CC="$TOOLCHAIN"/bin/clang \
-    CXX="$TOOLCHAIN"/bin/arm-linux-androideabi-clang++ \
+    CXX="$TOOLCHAIN"/bin/clang++ \
    CPPFLAGS="-fPIE -I$PREFIX/include" \
    PKG_CONFIG_LIBDIR="$PREFIX/lib/pkgconfig" \
    LDFLAGS="-fPIE -pie -L$PREFIX/lib"
--- a/appveyor.yml
+++ b/appveyor.yml
@@ -1,53 +0,0 @@
 # Notes:
 #   - Minimal appveyor.yml file is an empty file. All sections are optional.
 #   - Indent each level of configuration with 2 spaces. Do not use tabs!
 #   - All section names are case-sensitive.
 #   - Section names should be unique on each level.
 #---------------------------------#
 #      general configuration      #
 #---------------------------------#
 # version format
 #version: 0.10.{build}
 # branches to build
 branches:
  # blacklist
  except:
    - gh-pages
 # Do not build on tags (GitHub only)
 skip_tags: true
 #---------------------------------#
 #    environment configuration    #
 #---------------------------------#
 os: Windows Server 2012
 # scripts that run after cloning repository
 install:
  # install Win-Flex-Bison
  #- cmd: cinst winflexbison -y
 #---------------------------------#
 #       build configuration       #
 #---------------------------------#
 # scripts to run before build
 before_build:
  - cmd: cmake .
 # scripts to run *after* solution is built and *before* automatic packaging occurs (web apps, NuGet packages, Azure Cloud Services)
 # before_package:
 # scripts to run after build
 # after_build:
 # to run your custom scripts instead of automatic MSBuild
 build_script:
  - cmd: cmake --build .
 # to disable automatic builds
 # build: off
--- a/author.py
+++ b/author.py
@@ -1,52 +0,0 @@
 #!/usr/bin/env python
 # script to extract commit author's name from standard input.  The
 # input should be <AUTHOR>:<EMAIL>, one per line.
 # This script expects the input is created by git-log command:
 #
 #   git log --format=%aN:%aE
 #
 # This script removes duplicates based on email address, breaking a
 # tie with longer author name.  Among the all author names extract the
 # previous step, we remove duplicate by case-insensitive match.
 #
 # So we can do this in one line:
 #
 #   git log --format=%aN:%aE | sort | uniq | ./author.py > authors
 import sys
 edict = {}
 for line in sys.stdin:
    author, email = line.strip().split(':', 1)
    if email in edict:
        an = edict[email]
        if len(an) < len(author) or an > author:
            sys.stderr.write(
                'eliminated {} in favor of {}\n'.format(an, author))
            edict[email] = author
        else:
            sys.stderr.write(
                'eliminated {} in favor of {}\n'.format(author, an))
    else:
        edict[email] = author
 names = list(sorted(edict.values()))
 ndict = {}
 for name in names:
    lowname = name.lower()
    if lowname in ndict:
        an = ndict[lowname]
        if an > name:
            sys.stderr.write('eliminated {} in favor of {}\n'.format(an, name))
            ndict[lowname] = name
        else:
            sys.stderr.write('eliminated {} in favor of {}\n'.format(name, an))
    else:
        ndict[lowname] = name
 for name in sorted(ndict.values()):
    print name
--- a/cmake/ExtractValidFlags.cmake
+++ b/cmake/ExtractValidFlags.cmake
@@ -1,31 +0,0 @@
 # Convenience function that checks the availability of certain
 # C or C++ compiler flags and returns valid ones as a string.
 include(CheckCCompilerFlag)
 include(CheckCXXCompilerFlag)
 function(extract_valid_c_flags varname)
  set(valid_flags)
  foreach(flag IN LISTS ARGN)
    string(REGEX REPLACE "[^a-zA-Z0-9_]+" "_" flag_var ${flag})
    set(flag_var "C_FLAG_${flag_var}")
    check_c_compiler_flag("${flag}" "${flag_var}")
    if(${flag_var})
      set(valid_flags "${valid_flags} ${flag}")
    endif()
  endforeach()
  set(${varname} "${valid_flags}" PARENT_SCOPE)
 endfunction()
 function(extract_valid_cxx_flags varname)
  set(valid_flags)
  foreach(flag IN LISTS ARGN)
    string(REGEX REPLACE "[^a-zA-Z0-9_]+" "_" flag_var ${flag})
    set(flag_var "CXX_FLAG_${flag_var}")
    check_cxx_compiler_flag("${flag}" "${flag_var}")
    if(${flag_var})
      set(valid_flags "${valid_flags} ${flag}")
    endif()
  endforeach()
  set(${varname} "${valid_flags}" PARENT_SCOPE)
 endfunction()
--- a/cmake/FindCUnit.cmake
+++ b/cmake/FindCUnit.cmake
@@ -1,40 +0,0 @@
 # - Try to find cunit
 # Once done this will define
 #  CUNIT_FOUND        - System has cunit
 #  CUNIT_INCLUDE_DIRS - The cunit include directories
 #  CUNIT_LIBRARIES    - The libraries needed to use cunit
 find_package(PkgConfig QUIET)
 pkg_check_modules(PC_CUNIT QUIET cunit)
 find_path(CUNIT_INCLUDE_DIR
  NAMES CUnit/CUnit.h
  HINTS ${PC_CUNIT_INCLUDE_DIRS}
 )
 find_library(CUNIT_LIBRARY
  NAMES cunit
  HINTS ${PC_CUNIT_LIBRARY_DIRS}
 )
 if(CUNIT_INCLUDE_DIR)
  set(_version_regex "^#define[ \t]+CU_VERSION[ \t]+\"([^\"]+)\".*")
  file(STRINGS "${CUNIT_INCLUDE_DIR}/CUnit/CUnit.h"
    CUNIT_VERSION REGEX "${_version_regex}")
  string(REGEX REPLACE "${_version_regex}" "\\1"
    CUNIT_VERSION "${CUNIT_VERSION}")
  unset(_version_regex)
 endif()
 include(FindPackageHandleStandardArgs)
 # handle the QUIETLY and REQUIRED arguments and set CUNIT_FOUND to TRUE
 # if all listed variables are TRUE and the requested version matches.
 find_package_handle_standard_args(CUnit REQUIRED_VARS
                                  CUNIT_LIBRARY CUNIT_INCLUDE_DIR
                                  VERSION_VAR CUNIT_VERSION)
 if(CUNIT_FOUND)
  set(CUNIT_LIBRARIES     ${CUNIT_LIBRARY})
  set(CUNIT_INCLUDE_DIRS  ${CUNIT_INCLUDE_DIR})
 endif()
 mark_as_advanced(CUNIT_INCLUDE_DIR CUNIT_LIBRARY)
--- a/cmake/FindCython.cmake
+++ b/cmake/FindCython.cmake
@@ -1,44 +0,0 @@
 # Find the Cython compiler.
 #
 # This code sets the following variables:
 #
 #  CYTHON_EXECUTABLE
 #
 # See also UseCython.cmake
 #=============================================================================
 # Copyright 2011 Kitware, Inc.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 #     http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
 #=============================================================================
 # Use the Cython executable that lives next to the Python executable
 # if it is a local installation.
 find_package( PythonInterp )
 if( PYTHONINTERP_FOUND )
  get_filename_component( _python_path ${PYTHON_EXECUTABLE} PATH )
  find_program( CYTHON_EXECUTABLE
    NAMES cython cython.bat cython3
    HINTS ${_python_path}
    )
 else()
  find_program( CYTHON_EXECUTABLE
    NAMES cython cython.bat cython3
    )
 endif()
 include( FindPackageHandleStandardArgs )
 FIND_PACKAGE_HANDLE_STANDARD_ARGS( Cython REQUIRED_VARS CYTHON_EXECUTABLE )
 mark_as_advanced( CYTHON_EXECUTABLE )
--- a/cmake/FindJansson.cmake
+++ b/cmake/FindJansson.cmake
@@ -1,40 +0,0 @@
 # - Try to find jansson
 # Once done this will define
 #  JANSSON_FOUND        - System has jansson
 #  JANSSON_INCLUDE_DIRS - The jansson include directories
 #  JANSSON_LIBRARIES    - The libraries needed to use jansson
 find_package(PkgConfig QUIET)
 pkg_check_modules(PC_JANSSON QUIET jansson)
 find_path(JANSSON_INCLUDE_DIR
  NAMES jansson.h
  HINTS ${PC_JANSSON_INCLUDE_DIRS}
 )
 find_library(JANSSON_LIBRARY
  NAMES jansson
  HINTS ${PC_JANSSON_LIBRARY_DIRS}
 )
 if(JANSSON_INCLUDE_DIR)
  set(_version_regex "^#define[ \t]+JANSSON_VERSION[ \t]+\"([^\"]+)\".*")
  file(STRINGS "${JANSSON_INCLUDE_DIR}/jansson.h"
    JANSSON_VERSION REGEX "${_version_regex}")
  string(REGEX REPLACE "${_version_regex}" "\\1"
    JANSSON_VERSION "${JANSSON_VERSION}")
  unset(_version_regex)
 endif()
 include(FindPackageHandleStandardArgs)
 # handle the QUIETLY and REQUIRED arguments and set JANSSON_FOUND to TRUE
 # if all listed variables are TRUE and the requested version matches.
 find_package_handle_standard_args(Jansson REQUIRED_VARS
                                  JANSSON_LIBRARY JANSSON_INCLUDE_DIR
                                  VERSION_VAR JANSSON_VERSION)
 if(JANSSON_FOUND)
  set(JANSSON_LIBRARIES     ${JANSSON_LIBRARY})
  set(JANSSON_INCLUDE_DIRS  ${JANSSON_INCLUDE_DIR})
 endif()
 mark_as_advanced(JANSSON_INCLUDE_DIR JANSSON_LIBRARY)
--- a/cmake/FindJemalloc.cmake
+++ b/cmake/FindJemalloc.cmake
@@ -1,40 +0,0 @@
 # - Try to find jemalloc
 # Once done this will define
 #  JEMALLOC_FOUND        - System has jemalloc
 #  JEMALLOC_INCLUDE_DIRS - The jemalloc include directories
 #  JEMALLOC_LIBRARIES    - The libraries needed to use jemalloc
 find_package(PkgConfig QUIET)
 pkg_check_modules(PC_JEMALLOC QUIET jemalloc)
 find_path(JEMALLOC_INCLUDE_DIR
  NAMES jemalloc/jemalloc.h
  HINTS ${PC_JEMALLOC_INCLUDE_DIRS}
 )
 find_library(JEMALLOC_LIBRARY
  NAMES jemalloc
  HINTS ${PC_JEMALLOC_LIBRARY_DIRS}
 )
 if(JEMALLOC_INCLUDE_DIR)
  set(_version_regex "^#define[ \t]+JEMALLOC_VERSION[ \t]+\"([^\"]+)\".*")
  file(STRINGS "${JEMALLOC_INCLUDE_DIR}/jemalloc/jemalloc.h"
    JEMALLOC_VERSION REGEX "${_version_regex}")
  string(REGEX REPLACE "${_version_regex}" "\\1"
    JEMALLOC_VERSION "${JEMALLOC_VERSION}")
  unset(_version_regex)
 endif()
 include(FindPackageHandleStandardArgs)
 # handle the QUIETLY and REQUIRED arguments and set JEMALLOC_FOUND to TRUE
 # if all listed variables are TRUE and the requested version matches.
 find_package_handle_standard_args(Jemalloc REQUIRED_VARS
                                  JEMALLOC_LIBRARY JEMALLOC_INCLUDE_DIR
                                  VERSION_VAR JEMALLOC_VERSION)
 if(JEMALLOC_FOUND)
  set(JEMALLOC_LIBRARIES    ${JEMALLOC_LIBRARY})
  set(JEMALLOC_INCLUDE_DIRS ${JEMALLOC_INCLUDE_DIR})
 endif()
 mark_as_advanced(JEMALLOC_INCLUDE_DIR JEMALLOC_LIBRARY)
--- a/cmake/FindLibcares.cmake
+++ b/cmake/FindLibcares.cmake
@@ -1,40 +0,0 @@
 # - Try to find libcares
 # Once done this will define
 #  LIBCARES_FOUND        - System has libcares
 #  LIBCARES_INCLUDE_DIRS - The libcares include directories
 #  LIBCARES_LIBRARIES    - The libraries needed to use libcares
 find_package(PkgConfig QUIET)
 pkg_check_modules(PC_LIBCARES QUIET libcares)
 find_path(LIBCARES_INCLUDE_DIR
  NAMES ares.h
  HINTS ${PC_LIBCARES_INCLUDE_DIRS}
 )
 find_library(LIBCARES_LIBRARY
  NAMES cares
  HINTS ${PC_LIBCARES_LIBRARY_DIRS}
 )
 if(LIBCARES_INCLUDE_DIR)
  set(_version_regex "^#define[ \t]+ARES_VERSION_STR[ \t]+\"([^\"]+)\".*")
  file(STRINGS "${LIBCARES_INCLUDE_DIR}/ares_version.h"
    LIBCARES_VERSION REGEX "${_version_regex}")
  string(REGEX REPLACE "${_version_regex}" "\\1"
    LIBCARES_VERSION "${LIBCARES_VERSION}")
  unset(_version_regex)
 endif()
 include(FindPackageHandleStandardArgs)
 # handle the QUIETLY and REQUIRED arguments and set LIBCARES_FOUND to TRUE
 # if all listed variables are TRUE and the requested version matches.
 find_package_handle_standard_args(Libcares REQUIRED_VARS
                                  LIBCARES_LIBRARY LIBCARES_INCLUDE_DIR
                                  VERSION_VAR LIBCARES_VERSION)
 if(LIBCARES_FOUND)
  set(LIBCARES_LIBRARIES     ${LIBCARES_LIBRARY})
  set(LIBCARES_INCLUDE_DIRS  ${LIBCARES_INCLUDE_DIR})
 endif()
 mark_as_advanced(LIBCARES_INCLUDE_DIR LIBCARES_LIBRARY)
--- a/cmake/FindLibev.cmake
+++ b/cmake/FindLibev.cmake
@@ -1,38 +0,0 @@
 # - Try to find libev
 # Once done this will define
 #  LIBEV_FOUND        - System has libev
 #  LIBEV_INCLUDE_DIRS - The libev include directories
 #  LIBEV_LIBRARIES    - The libraries needed to use libev
 find_path(LIBEV_INCLUDE_DIR
  NAMES ev.h
 )
 find_library(LIBEV_LIBRARY
  NAMES ev
 )
 if(LIBEV_INCLUDE_DIR)
  file(STRINGS "${LIBEV_INCLUDE_DIR}/ev.h"
    LIBEV_VERSION_MAJOR REGEX "^#define[ \t]+EV_VERSION_MAJOR[ \t]+[0-9]+")
  file(STRINGS "${LIBEV_INCLUDE_DIR}/ev.h"
    LIBEV_VERSION_MINOR REGEX "^#define[ \t]+EV_VERSION_MINOR[ \t]+[0-9]+")
  string(REGEX REPLACE "[^0-9]+" "" LIBEV_VERSION_MAJOR "${LIBEV_VERSION_MAJOR}")
  string(REGEX REPLACE "[^0-9]+" "" LIBEV_VERSION_MINOR "${LIBEV_VERSION_MINOR}")
  set(LIBEV_VERSION "${LIBEV_VERSION_MAJOR}.${LIBEV_VERSION_MINOR}")
  unset(LIBEV_VERSION_MINOR)
  unset(LIBEV_VERSION_MAJOR)
 endif()
 include(FindPackageHandleStandardArgs)
 # handle the QUIETLY and REQUIRED arguments and set LIBEV_FOUND to TRUE
 # if all listed variables are TRUE and the requested version matches.
 find_package_handle_standard_args(Libev REQUIRED_VARS
                                  LIBEV_LIBRARY LIBEV_INCLUDE_DIR
                                  VERSION_VAR LIBEV_VERSION)
 if(LIBEV_FOUND)
  set(LIBEV_LIBRARIES     ${LIBEV_LIBRARY})
  set(LIBEV_INCLUDE_DIRS  ${LIBEV_INCLUDE_DIR})
 endif()
 mark_as_advanced(LIBEV_INCLUDE_DIR LIBEV_LIBRARY)
--- a/cmake/FindLibevent.cmake
+++ b/cmake/FindLibevent.cmake
@@ -1,94 +0,0 @@
 # - Try to find libevent
 #.rst
 # FindLibevent
 # ------------
 #
 # Find Libevent include directories and libraries. Invoke as::
 #
 #   find_package(Libevent
 #     [version] [EXACT]   # Minimum or exact version
 #     [REQUIRED]          # Fail if Libevent is not found
 #     [COMPONENT <C>...]) # Libraries to look for
 #
 # Valid components are one or more of:: libevent core extra pthreads openssl.
 # Note that 'libevent' contains both core and extra. You must specify one of
 # them for the other components.
 #
 # This module will define the following variables::
 #
 #  LIBEVENT_FOUND        - True if headers and requested libraries were found
 #  LIBEVENT_INCLUDE_DIRS - Libevent include directories
 #  LIBEVENT_LIBRARIES    - Libevent libraries to be linked
 #  LIBEVENT_<C>_FOUND    - Component <C> was found (<C> is uppercase)
 #  LIBEVENT_<C>_LIBRARY  - Library to be linked for Libevent component <C>.
 find_package(PkgConfig QUIET)
 pkg_check_modules(PC_LIBEVENT QUIET libevent)
 # Look for the Libevent 2.0 or 1.4 headers
 find_path(LIBEVENT_INCLUDE_DIR
  NAMES
    event2/event-config.h
    event-config.h
  HINTS
    ${PC_LIBEVENT_INCLUDE_DIRS}
 )
 if(LIBEVENT_INCLUDE_DIR)
  set(_version_regex "^#define[ \t]+_EVENT_VERSION[ \t]+\"([^\"]+)\".*")
  if(EXISTS "${LIBEVENT_INCLUDE_DIR}/event2/event-config.h")
    # Libevent 2.0
    file(STRINGS "${LIBEVENT_INCLUDE_DIR}/event2/event-config.h"
      LIBEVENT_VERSION REGEX "${_version_regex}")
  else()
    # Libevent 1.4
    file(STRINGS "${LIBEVENT_INCLUDE_DIR}/event-config.h"
      LIBEVENT_VERSION REGEX "${_version_regex}")
  endif()
  string(REGEX REPLACE "${_version_regex}" "\\1"
    LIBEVENT_VERSION "${LIBEVENT_VERSION}")
  unset(_version_regex)
 endif()
 set(_LIBEVENT_REQUIRED_VARS)
 foreach(COMPONENT ${Libevent_FIND_COMPONENTS})
  set(_LIBEVENT_LIBNAME libevent)
  # Note: compare two variables to avoid a CMP0054 policy warning
  if(COMPONENT STREQUAL _LIBEVENT_LIBNAME)
    set(_LIBEVENT_LIBNAME event)
  else()
    set(_LIBEVENT_LIBNAME "event_${COMPONENT}")
  endif()
  string(TOUPPER "${COMPONENT}" COMPONENT_UPPER)
  find_library(LIBEVENT_${COMPONENT_UPPER}_LIBRARY
    NAMES ${_LIBEVENT_LIBNAME}
    HINTS ${PC_LIBEVENT_LIBRARY_DIRS}
  )
  if(LIBEVENT_${COMPONENT_UPPER}_LIBRARY)
    set(Libevent_${COMPONENT}_FOUND 1)
  endif()
  list(APPEND _LIBEVENT_REQUIRED_VARS LIBEVENT_${COMPONENT_UPPER}_LIBRARY)
 endforeach()
 unset(_LIBEVENT_LIBNAME)
 include(FindPackageHandleStandardArgs)
 # handle the QUIETLY and REQUIRED arguments and set LIBEVENT_FOUND to TRUE
 # if all listed variables are TRUE and the requested version matches.
 find_package_handle_standard_args(Libevent REQUIRED_VARS
                                  ${_LIBEVENT_REQUIRED_VARS}
                                  LIBEVENT_INCLUDE_DIR
                                  VERSION_VAR LIBEVENT_VERSION
                                  HANDLE_COMPONENTS)
 if(LIBEVENT_FOUND)
  set(LIBEVENT_INCLUDE_DIRS  ${LIBEVENT_INCLUDE_DIR})
  set(LIBEVENT_LIBRARIES)
  foreach(COMPONENT ${Libevent_FIND_COMPONENTS})
    string(TOUPPER "${COMPONENT}" COMPONENT_UPPER)
    list(APPEND LIBEVENT_LIBRARIES ${LIBEVENT_${COMPONENT_UPPER}_LIBRARY})
    set(LIBEVENT_${COMPONENT_UPPER}_FOUND ${Libevent_${COMPONENT}_FOUND})
  endforeach()
 endif()
 mark_as_advanced(LIBEVENT_INCLUDE_DIR ${_LIBEVENT_REQUIRED_VARS})
 unset(_LIBEVENT_REQUIRED_VARS)
--- a/cmake/FindSpdylay.cmake
+++ b/cmake/FindSpdylay.cmake
@@ -1,40 +0,0 @@
 # - Try to find spdylay
 # Once done this will define
 #  SPDYLAY_FOUND        - System has spdylay
 #  SPDYLAY_INCLUDE_DIRS - The spdylay include directories
 #  SPDYLAY_LIBRARIES    - The libraries needed to use spdylay
 find_package(PkgConfig QUIET)
 pkg_check_modules(PC_SPDYLAY QUIET libspdylay)
 find_path(SPDYLAY_INCLUDE_DIR
  NAMES spdylay/spdylay.h
  HINTS ${PC_SPDYLAY_INCLUDE_DIRS}
 )
 find_library(SPDYLAY_LIBRARY
  NAMES spdylay
  HINTS ${PC_SPDYLAY_LIBRARY_DIRS}
 )
 if(SPDYLAY_INCLUDE_DIR)
  set(_version_regex "^#define[ \t]+SPDYLAY_VERSION[ \t]+\"([^\"]+)\".*")
  file(STRINGS "${SPDYLAY_INCLUDE_DIR}/spdylay/spdylayver.h"
    SPDYLAY_VERSION REGEX "${_version_regex}")
  string(REGEX REPLACE "${_version_regex}" "\\1"
    SPDYLAY_VERSION "${SPDYLAY_VERSION}")
  unset(_version_regex)
 endif()
 include(FindPackageHandleStandardArgs)
 # handle the QUIETLY and REQUIRED arguments and set SPDYLAY_FOUND to TRUE
 # if all listed variables are TRUE and the requested version matches.
 find_package_handle_standard_args(Spdylay REQUIRED_VARS
                                  SPDYLAY_LIBRARY SPDYLAY_INCLUDE_DIR
                                  VERSION_VAR SPDYLAY_VERSION)
 if(SPDYLAY_FOUND)
  set(SPDYLAY_LIBRARIES     ${SPDYLAY_LIBRARY})
  set(SPDYLAY_INCLUDE_DIRS  ${SPDYLAY_INCLUDE_DIR})
 endif()
 mark_as_advanced(SPDYLAY_INCLUDE_DIR SPDYLAY_LIBRARY)
--- a/cmake/Version.cmake
+++ b/cmake/Version.cmake
@@ -1,11 +0,0 @@
 # Converts a version such as 1.2.255 to 0x0102ff
 function(HexVersion version_hex_var major minor patch)
  math(EXPR version_dec "${major} * 256 * 256 + ${minor} * 256 + ${patch}")
  set(version_hex "0x")
  foreach(i RANGE 5 0 -1)
    math(EXPR num "(${version_dec} >> (4 * ${i})) & 15")
    string(SUBSTRING "0123456789abcdef" ${num} 1 num_hex)
    set(version_hex "${version_hex}${num_hex}")
  endforeach()
  set(${version_hex_var} "${version_hex}" PARENT_SCOPE)
 endfunction()
--- a/cmakeconfig.h.in
+++ b/cmakeconfig.h.in
@@ -1,80 +0,0 @@
 /* Hint to the compiler that a function never returns */
 #define NGHTTP2_NORETURN @HINT_NORETURN@
 /* Define to `int' if <sys/types.h> does not define. */
 #cmakedefine ssize_t @ssize_t@
 /* Define to 1 if you have the `std::map::emplace`. */
 #cmakedefine HAVE_STD_MAP_EMPLACE 1
 /* Define to 1 if you have `libjansson` library. */
 #cmakedefine HAVE_JANSSON 1
 /* Define to 1 if you have `libxml2` library. */
 #cmakedefine HAVE_LIBXML2 1
 /* Define to 1 if you have `spdylay` library. */
 #cmakedefine HAVE_SPDYLAY 1
 /* Define to 1 if you have `mruby` library. */
 #cmakedefine HAVE_MRUBY 1
 /* Define to 1 if you have `neverbleed` library. */
 #cmakedefine HAVE_NEVERBLEED 1
 /* sizeof(int *) */
 #cmakedefine SIZEOF_INT_P   @SIZEOF_INT_P@
 /* sizeof(time_t) */
 #cmakedefine SIZEOF_TIME_T  @SIZEOF_TIME_T@
 /* Define to 1 if you have the `_Exit` function. */
 #cmakedefine HAVE__EXIT 1
 /* Define to 1 if you have the `accept4` function. */
 #cmakedefine HAVE_ACCEPT4 1
 /* Define to 1 if you have the `initgroups` function. */
 #cmakedefine01 HAVE_DECL_INITGROUPS
 /* Define to 1 to enable debug output. */
 #cmakedefine DEBUGBUILD 1
 /* Define to 1 if you want to disable threads. */
 #cmakedefine NOTHREADS 1
 /* Define to 1 if you have the <arpa/inet.h> header file. */
 #cmakedefine HAVE_ARPA_INET_H 1
 /* Define to 1 if you have the <fcntl.h> header file. */
 #cmakedefine HAVE_FCNTL_H 1
 /* Define to 1 if you have the <inttypes.h> header file. */
 #cmakedefine HAVE_INTTYPES_H 1
 /* Define to 1 if you have the <limits.h> header file. */
 #cmakedefine HAVE_LIMITS_H 1
 /* Define to 1 if you have the <netdb.h> header file. */
 #cmakedefine HAVE_NETDB_H 1
 /* Define to 1 if you have the <netinet/in.h> header file. */
 #cmakedefine HAVE_NETINET_IN_H 1
 /* Define to 1 if you have the <pwd.h> header file. */
 #cmakedefine HAVE_PWD_H 1
 /* Define to 1 if you have the <sys/socket.h> header file. */
 #cmakedefine HAVE_SYS_SOCKET_H 1
 /* Define to 1 if you have the <sys/time.h> header file. */
 #cmakedefine HAVE_SYS_TIME_H 1
 /* Define to 1 if you have the <syslog.h> header file. */
 #cmakedefine HAVE_SYSLOG_H 1
 /* Define to 1 if you have the <time.h> header file. */
 #cmakedefine HAVE_TIME_H 1
 /* Define to 1 if you have the <unistd.h> header file. */
 #cmakedefine HAVE_UNISTD_H 1
--- a/configure.ac
+++ b/configure.ac
@@ -25,7 +25,7 @@ dnl Do not change user variables!
 dnl http://www.gnu.org/software/automake/manual/html_node/Flag-Variables-Ordering.html
 AC_PREREQ(2.61)
-AC_INIT([nghttp2], [1.25.0], [t-tujikawa@users.sourceforge.net])
+AC_INIT([nghttp2], [1.7.1], [t-tujikawa@users.sourceforge.net])
 AC_CONFIG_AUX_DIR([.])
 AC_CONFIG_MACRO_DIR([m4])
 AC_CONFIG_HEADERS([config.h])
@@ -40,13 +40,15 @@ AC_CANONICAL_TARGET
 AM_INIT_AUTOMAKE([subdir-objects])
 # AM_EXTRA_RECURSIVE_TARGETS requires automake 1.13 or higher
 m4_ifdef([AM_EXTRA_RECURSIVE_TARGETS], [AM_EXTRA_RECURSIVE_TARGETS([it itprep])])
 m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES([yes])])
 dnl See versioning rule:
 dnl  http://www.gnu.org/software/libtool/manual/html_node/Updating-version-info.html
-AC_SUBST(LT_CURRENT, 28)
+AC_SUBST(LT_CURRENT, 18)
-AC_SUBST(LT_REVISION, 0)
+AC_SUBST(LT_REVISION, 1)
-AC_SUBST(LT_AGE, 14)
+AC_SUBST(LT_AGE, 4)
 major=`echo $PACKAGE_VERSION |cut -d. -f1 | sed -e "s/[^0-9]//g"`
 minor=`echo $PACKAGE_VERSION |cut -d. -f2 | sed -e "s/[^0-9]//g"`
@@ -74,7 +76,7 @@ AC_ARG_ENABLE([threads],
 AC_ARG_ENABLE([app],
    [AS_HELP_STRING([--enable-app],
-                    [Build applications (nghttp, nghttpd, nghttpx and h2load) [default=check]])],
+                    [Build applications (nghttp, nghttpd and nghttpx) [default=check]])],
    [request_app=$enableval], [request_app=check])
 AC_ARG_ENABLE([hpack-tools],
@@ -119,13 +121,8 @@ AC_ARG_WITH([jemalloc],
 AC_ARG_WITH([spdylay],
    [AS_HELP_STRING([--with-spdylay],
-                    [Use spdylay [default=no]])],
+                    [Use spdylay [default=check]])],
-    [request_spdylay=$withval], [request_spdylay=no])
+    [request_spdylay=$withval], [request_spdylay=check])
 AC_ARG_WITH([systemd],
    [AS_HELP_STRING([--with-systemd],
                    [Enable systemd support in nghttpx [default=check]])],
    [request_systemd=$withval], [request_systemd=check])
 AC_ARG_WITH([mruby],
    [AS_HELP_STRING([--with-mruby],
@@ -176,26 +173,26 @@ else
  AC_SUBST([CYTHON])
 fi
 #
 # If we're running GCC or clang define _U_ to be "__attribute__((unused))"
 # so we can use _U_ to flag unused function parameters and not get warnings
 # about them. Otherwise, define _U_ to be an empty string so that _U_ used
 # to flag an unused function parameters will compile with other compilers.
 #
 # XXX - similar hints for other compilers?
 #
 if test "x$GCC" = "xyes" -o "x$CC" = "xclang" ; then
  AC_DEFINE([_U_], [__attribute__((unused))], [Hint to the compiler that a function parameters is not used])
  AC_DEFINE([NGHTTP2_NORETURN], [__attribute__((noreturn))], [Hint to the compiler that a function never return])
 else
  AC_DEFINE([_U_], , [Hint to the compiler that a function parameter is not used])
  AC_DEFINE([NGHTTP2_NORETURN], , [Hint to the compiler that a function never return])
 fi
 save_CXXFLAGS="$CXXFLAGS"
 CXXFLAGS=
 AX_CXX_COMPILE_STDCXX_11([noext], [optional])
 CXX1XCXXFLAGS="$CXXFLAGS"
 CXXFLAGS="$save_CXXFLAGS"
 AC_SUBST([CXX1XCXXFLAGS])
 AC_LANG_PUSH(C++)
 save_CXXFLAGS="$CXXFLAGS"
 CXXFLAGS="$CXXFLAGS $CXX1XCXXFLAGS"
 # Check that std::future is available.
 AC_MSG_CHECKING([whether std::future is available])
 AC_COMPILE_IFELSE([AC_LANG_PROGRAM(
@@ -229,43 +226,6 @@ std::map<int, int>().emplace(1, 2);
    [have_std_map_emplace=no
     AC_MSG_RESULT([no])])
 # Check that std::atomic_* overloads for std::shared_ptr are
 # available.
 AC_MSG_CHECKING([whether std::atomic_* overloads for std::shared_ptr are available])
 AC_COMPILE_IFELSE([AC_LANG_PROGRAM(
 [[
 #include <memory>
 ]],
 [[
 auto a = std::make_shared<int>(1000000007);
 auto p = std::atomic_load(&a);
 ++*p;
 std::atomic_store(&a, p);
 ]])],
    [AC_DEFINE([HAVE_ATOMIC_STD_SHARED_PTR], [1],
               [Define to 1 if you have the std::atomic_* overloads for std::shared_ptr.])
     have_atomic_std_shared_ptr=yes
     AC_MSG_RESULT([yes])],
    [have_atomic_std_shared_ptr=no
     AC_MSG_RESULT([no])])
 # Check that thread_local storage specifier is available
 AC_MSG_CHECKING([whether thread_local storage class specifier is available.])
 AC_COMPILE_IFELSE([AC_LANG_PROGRAM(
 ,
 [[
 thread_local int a = 0;
 (void)a;
 ]])],
    [AC_DEFINE([HAVE_THREAD_LOCAL], [1],
               [Define to 1 if you have thread_local storage specifier.])
     have_thread_local=yes
     AC_MSG_RESULT([yes])],
    [have_Thread_local=no
     AC_MSG_RESULT([no])])
 CXXFLAGS=$save_CXXFLAGS
 AC_LANG_POP()
 # Checks for libraries.
@@ -276,7 +236,7 @@ TESTLDADD=
 # Additional libraries required for programs under src directory.
 APPLDFLAGS=
-case "$host_os" in
+case "$host" in
  *android*)
    android_build=yes
    # android does not need -pthread, but needs followng 3 libs for C++
@@ -288,12 +248,6 @@ case "$host_os" in
    ;;
 esac
 case "$host_os" in
  *solaris*)
    APPLDFLAGS="$APPLDFLAGS -lsocket -lnsl"
    ;;
 esac
 # zlib
 PKG_CHECK_MODULES([ZLIB], [zlib >= 1.2.3], [have_zlib=yes], [have_zlib=no])
@@ -302,16 +256,9 @@ if test "x${have_zlib}" = "xno"; then
 fi
 # dl: openssl requires libdl when it is statically linked.
-case "${host_os}" in
+LIBS_OLD=$LIBS
-  *bsd*)
+AC_SEARCH_LIBS([dlopen], [dl], [APPLDFLAGS="-ldl $APPLDFLAGS"], [], [])
-    # dlopen is in libc on *BSD
+LIBS=$LIBS_OLD
    ;;
  *)
    save_LIBS=$LIBS
    AC_SEARCH_LIBS([dlopen], [dl], [APPLDFLAGS="-ldl $APPLDFLAGS"], [], [])
    LIBS=$save_LIBS
    ;;
 esac
 # cunit
 PKG_CHECK_MODULES([CUNIT], [cunit >= 2.1], [have_cunit=yes], [have_cunit=no])
@@ -344,7 +291,7 @@ AM_CONDITIONAL([HAVE_CUNIT], [ test "x${have_cunit}" = "xyes" ])
 # libev (for src)
 # libev does not have pkg-config file.  Check it in an old way.
-save_LIBS=$LIBS
+LIBS_OLD=$LIBS
 # android requires -lm for floor
 AC_CHECK_LIB([ev], [ev_time], [have_libev=yes], [have_libev=no], [-lm])
 if test "x${have_libev}" = "xyes"; then
@@ -356,7 +303,7 @@ if test "x${have_libev}" = "xyes"; then
    AC_SUBST([LIBEV_CFLAGS])
  fi
 fi
-LIBS=$save_LIBS
+LIBS=$LIBS_OLD
 # openssl (for src)
 PKG_CHECK_MODULES([OPENSSL], [openssl >= 1.0.1],
@@ -365,13 +312,6 @@ if test "x${have_openssl}" = "xno"; then
  AC_MSG_NOTICE($OPENSSL_PKG_ERRORS)
 fi
 # c-ares (for src)
 PKG_CHECK_MODULES([LIBCARES], [libcares >= 1.7.5], [have_libcares=yes],
                  [have_libcares=no])
 if test "x${have_libcares}" = "xno"; then
  AC_MSG_NOTICE($LIBCARES_PKG_ERRORS)
 fi
 # libevent_openssl (for examples)
 # 2.0.8 is required because we use evconnlistener_set_error_cb()
 PKG_CHECK_MODULES([LIBEVENT_OPENSSL], [libevent_openssl >= 2.0.8],
@@ -390,32 +330,13 @@ else
  AC_MSG_NOTICE($JANSSON_PKG_ERRORS)
 fi
 #  libsystemd (for src/nghttpx)
 have_libsystemd=no
 if test "x${request_systemd}" != "xno"; then
  PKG_CHECK_MODULES([SYSTEMD], [libsystemd >= 209], [have_libsystemd=yes],
                    [have_libsystemd=no])
  if test "x${have_libsystemd}" = "xyes"; then
    AC_DEFINE([HAVE_LIBSYSTEMD], [1],
              [Define to 1 if you have `libsystemd` library.])
  else
    AC_MSG_NOTICE($SYSTEMD_PKG_ERRORS)
  fi
 fi
 if test "x${request_systemd}" = "xyes" &&
   test "x${have_libsystemd}" != "xyes"; then
  AC_MSG_ERROR([systemd was requested (--with-systemd) but not found])
 fi
 # libxml2 (for src/nghttp)
-PKG_CHECK_MODULES([LIBXML2], [libxml-2.0 >= 2.7.7],
+have_libxml2=no
-                  [have_libxml2=yes], [have_libxml2=no])
+if test "x${request_libxml2}" != "xno"; then
-if test "x${have_libxml2}" = "xyes"; then
+  AM_PATH_XML2(2.7.7, [have_libxml2=yes], [have_libxml2=no])
-  AC_DEFINE([HAVE_LIBXML2], [1], [Define to 1 if you have `libxml2` library.])
+  if test "x${have_libxml2}" = "xyes"; then
-else
+    AC_DEFINE([HAVE_LIBXML2], [1], [Define to 1 if you have `libxml2` library.])
-  AC_MSG_NOTICE($LIBXML2_PKG_ERRORS)
+  fi
 fi
 if test "x${request_libxml2}" = "xyes" &&
@@ -428,7 +349,7 @@ AM_CONDITIONAL([HAVE_LIBXML2], [ test "x${have_libxml2}" = "xyes" ])
 # jemalloc
 have_jemalloc=no
 if test "x${request_jemalloc}" != "xno"; then
-  save_LIBS=$LIBS
+  LIBS_OLD=$LIBS
  AC_SEARCH_LIBS([malloc_stats_print], [jemalloc], [have_jemalloc=yes], [],
                 [$PTHREAD_LDFLAGS])
@@ -444,7 +365,7 @@ if test "x${request_jemalloc}" != "xno"; then
    fi
  fi
-  LIBS=$save_LIBS
+  LIBS=$LIBS_OLD
  if test "x${have_jemalloc}" = "xyes" &&
     test "x${jemalloc_libs}" != "xnone required"; then
@@ -497,14 +418,13 @@ if test "x${request_asio_lib}" = "xyes"; then
  fi
 fi
-# The nghttp, nghttpd and nghttpx under src depend on zlib, OpenSSL,
+# The nghttp, nghttpd and nghttpx under src depend on zlib, OpenSSL
-# libev, and libc-ares.
+# and libev
 enable_app=no
 if test "x${request_app}" != "xno" &&
   test "x${have_zlib}" = "xyes" &&
   test "x${have_openssl}" = "xyes" &&
-   test "x${have_libev}" = "xyes" &&
+   test "x${have_libev}" = "xyes"; then
   test "x${have_libcares}" = "xyes"; then
  enable_app=yes
 fi
@@ -659,26 +579,6 @@ AC_SYS_LARGEFILE
 AC_CHECK_MEMBER([struct tm.tm_gmtoff], [have_struct_tm_tm_gmtoff=yes],
                [have_struct_tm_tm_gmtoff=no], [[#include <time.h>]])
 AC_CHECK_MEMBER([struct sockaddr_in.sin_len],
                [AC_DEFINE([HAVE_SOCKADDR_IN_SIN_LEN],[1],
                  [Define to 1 if struct sockaddr_in has sin_len member.])],
                [],
                [[
 #include <sys/types.h>
 #include <sys/socket.h>
 #include <netinet/in.h>
 ]])
 AC_CHECK_MEMBER([struct sockaddr_in6.sin6_len],
                [AC_DEFINE([HAVE_SOCKADDR_IN6_SIN6_LEN],[1],
                  [Define to 1 if struct sockaddr_in6 has sin6_len member.])],
                [],
                [[
 #include <sys/types.h>
 #include <sys/socket.h>
 #include <netinet/in.h>
 ]])
 if test "x$have_struct_tm_tm_gmtoff" = "xyes"; then
  AC_DEFINE([HAVE_STRUCT_TM_TM_GMTOFF], [1],
            [Define to 1 if you have `struct tm.tm_gmtoff` member.])
@@ -732,16 +632,18 @@ AC_CHECK_FUNC([timerfd_create],
 # For cygwin: we can link initgroups, so AC_CHECK_FUNCS succeeds, but
 # cygwin disables initgroups due to feature test macro magic with our
-# configuration.  FreeBSD declares initgroups() in unistd.h.
+# configuration.
-AC_CHECK_DECLS([initgroups], [], [], [[
+AC_CHECK_DECLS([initgroups], [], [], [[#include <grp.h>]])
  #ifdef HAVE_UNISTD_H
  # include <unistd.h>
  #endif
  #include <grp.h>
 ]])
-save_CFLAGS=$CFLAGS
+# Checks for epoll availability, primarily for examples/tiny-nghttpd
-save_CXXFLAGS=$CXXFLAGS
+AX_HAVE_EPOLL([have_epoll=yes], [have_epoll=no])
 AM_CONDITIONAL([ENABLE_TINY_NGHTTPD],
               [ test "x${have_epoll}" = "xyes" &&
                 test "x${have_timerfd_create}" = "xyes"])
 ac_save_CFLAGS=$CFLAGS
 ac_save_CXXFLAGS=$CXXFLAGS
 CFLAGS=
 CXXFLAGS=
@@ -793,25 +695,20 @@ if test "x$werror" != "xno"; then
    AX_CHECK_COMPILE_FLAG([-Wredundant-decls], [CFLAGS="$CFLAGS -Wredundant-decls"])
    # Only work with Clang for the moment
    AX_CHECK_COMPILE_FLAG([-Wheader-guard], [CFLAGS="$CFLAGS -Wheader-guard"])
    AX_CHECK_COMPILE_FLAG([-Wsometimes-uninitialized], [CFLAGS="$CFLAGS -Wsometimes-uninitialized"])
    # This is required because we pass format string as "const char*.
    AX_CHECK_COMPILE_FLAG([-Wno-format-nonliteral], [CFLAGS="$CFLAGS -Wno-format-nonliteral"])
    # For C++ compiler
    AC_LANG_PUSH(C++)
    AX_CHECK_COMPILE_FLAG([-Wall], [CXXFLAGS="$CXXFLAGS -Wall"])
    AX_CHECK_COMPILE_FLAG([-Werror], [CXXFLAGS="$CXXFLAGS -Werror"])
    AX_CHECK_COMPILE_FLAG([-Wformat-security], [CXXFLAGS="$CXXFLAGS -Wformat-security"])
    AX_CHECK_COMPILE_FLAG([-Wsometimes-uninitialized], [CXXFLAGS="$CXXFLAGS -Wsometimes-uninitialized"])
    AC_LANG_POP()
 fi
 WARNCFLAGS=$CFLAGS
 WARNCXXFLAGS=$CXXFLAGS
-CFLAGS=$save_CFLAGS
+CFLAGS=$ac_save_CFLAGS
-CXXFLAGS=$save_CXXFLAGS
+CXXFLAGS=$ac_save_CXXFLAGS
 AC_SUBST([WARNCFLAGS])
 AC_SUBST([WARNCXXFLAGS])
@@ -900,8 +797,6 @@ AC_MSG_NOTICE([summary of build options:
      C preprocessor: ${CPP}
      CPPFLAGS:       ${CPPFLAGS}
      WARNCFLAGS:     ${WARNCFLAGS}
      WARNCXXFLAGS:   ${WARNCXXFLAGS}
      CXX1XCXXFLAGS:  ${CXX1XCXXFLAGS}
      EXTRACFLAG:     ${EXTRACFLAG}
      LIBS:           ${LIBS}
    Library:
@@ -920,15 +815,13 @@ AC_MSG_NOTICE([summary of build options:
      Failmalloc:     ${enable_failmalloc}
    Libs:
      OpenSSL:        ${have_openssl} (CFLAGS='${OPENSSL_CFLAGS}' LIBS='${OPENSSL_LIBS}')
-      Libxml2:        ${have_libxml2} (CFLAGS='${LIBXML2_CPPFLAGS}' LIBS='${LIBXML2_LIBS}')
+      Libxml2:        ${have_libxml2} (CFLAGS='${XML_CPPFLAGS}' LIBS='${XML_LIBS}')
      Libev:          ${have_libev} (CFLAGS='${LIBEV_CFLAGS}' LIBS='${LIBEV_LIBS}')
      Libc-ares       ${have_libcares} (CFLAGS='${LIBCARES_CFLAGS}' LIBS='${LIBCARES_LIBS}')
      Libevent(SSL):  ${have_libevent_openssl} (CFLAGS='${LIBEVENT_OPENSSL_CFLAGS}' LIBS='${LIBEVENT_OPENSSL_LIBS}')
      Spdylay:        ${have_spdylay} (CFLAGS='${LIBSPDYLAY_CFLAGS}' LIBS='${LIBSPDYLAY_LIBS}')
      Jansson:        ${have_jansson} (CFLAGS='${JANSSON_CFLAGS}' LIBS='${JANSSON_LIBS}')
      Jemalloc:       ${have_jemalloc} (LIBS='${JEMALLOC_LIBS}')
      Zlib:           ${have_zlib} (CFLAGS='${ZLIB_CFLAGS}' LIBS='${ZLIB_LIBS}')
      Systemd:        ${have_libsystemd} (CFLAGS='${SYSTEMD_CFLAGS}' LIBS='${SYSTEMD_LIBS}')
      Boost CPPFLAGS: ${BOOST_CPPFLAGS}
      Boost LDFLAGS:  ${BOOST_LDFLAGS}
      Boost::ASIO:    ${BOOST_ASIO_LIB}
--- a/contrib/CMakeLists.txt
+++ b/contrib/CMakeLists.txt
@@ -1,12 +0,0 @@
 set(CONFIGFILES
  nghttpx-init
  nghttpx.service
  nghttpx-upstart.conf
 )
 # Note that the execute permissions of nghttpx-init is preserved
 foreach(name IN LISTS CONFIGFILES)
  configure_file("${name}.in" "${name}" @ONLY)
 endforeach()
 # set(EXTRA_DIST ${CONFIGFILES} nghttpx-logrotate tlsticketupdate.go)
--- a/contrib/Makefile.am
+++ b/contrib/Makefile.am
@@ -23,24 +23,17 @@
 configfiles = nghttpx-init nghttpx.service nghttpx-upstart.conf
-EXTRA_DIST = \
+EXTRA_DIST = $(configfiles:%=%.in) nghttpx-logrotate tlsticketupdate.go
 	CMakeLists.txt \
 	$(configfiles:%=%.in) \
 	nghttpx-logrotate \
 	tlsticketupdate.go
 edit = sed -e 's|@bindir[@]|$(bindir)|g'
-nghttpx-init: $(srcdir)/nghttpx-init.in
+nghttpx-init: %: $(srcdir)/%.in
 	rm -f $@ $@.tmp
 	$(edit) $< > $@.tmp
 	chmod +x $@.tmp
 	mv $@.tmp $@
-nghttpx.service: $(srcdir)/nghttpx.service.in
+nghttpx.service nghttpx-upstart.conf: %: $(srcdir)/%.in
 	$(edit) $< > $@
 nghttpx-upstart.conf: $(srcdir)/nghttpx-upstart.conf.in
 	$(edit) $< > $@
 $(configfiles): Makefile
--- a/contrib/nghttpx.service.in
+++ b/contrib/nghttpx.service.in
@@ -1,17 +1,10 @@
 [Unit]
 Description=HTTP/2 proxy
 Documentation=man:nghttpx
 After=network.target
 [Service]
-Type=notify
+Type=forking
-ExecStart=@bindir@/nghttpx --conf=/etc/nghttpx/nghttpx.conf
+ExecStart=@bindir@/nghttpx --conf=/etc/nghttpx/nghttpx.conf --pid-file=/run/nghttpx.pid --daemon
 ExecReload=/bin/kill --signal HUP $MAINPID
 KillSignal=SIGQUIT
 PrivateTmp=yes
 ProtectHome=yes
 ProtectSystem=full
 Restart=always
 [Install]
 WantedBy=multi-user.target
--- a/doc/CMakeLists.txt
+++ b/doc/CMakeLists.txt
@@ -1,353 +0,0 @@
 # Generated documents
 set(APIDOCS
  macros.rst
  enums.rst
  types.rst
  nghttp2_check_header_name.rst
  nghttp2_check_header_value.rst
  nghttp2_hd_deflate_bound.rst
  nghttp2_hd_deflate_change_table_size.rst
  nghttp2_hd_deflate_del.rst
  nghttp2_hd_deflate_get_dynamic_table_size.rst
  nghttp2_hd_deflate_get_max_dynamic_table_size.rst
  nghttp2_hd_deflate_get_num_table_entries.rst
  nghttp2_hd_deflate_get_table_entry.rst
  nghttp2_hd_deflate_hd.rst
  nghttp2_hd_deflate_hd_vec.rst
  nghttp2_hd_deflate_new.rst
  nghttp2_hd_deflate_new2.rst
  nghttp2_hd_inflate_change_table_size.rst
  nghttp2_hd_inflate_del.rst
  nghttp2_hd_inflate_end_headers.rst
  nghttp2_hd_inflate_get_dynamic_table_size.rst
  nghttp2_hd_inflate_get_max_dynamic_table_size.rst
  nghttp2_hd_inflate_get_num_table_entries.rst
  nghttp2_hd_inflate_get_table_entry.rst
  nghttp2_hd_inflate_hd.rst
  nghttp2_hd_inflate_hd2.rst
  nghttp2_hd_inflate_new.rst
  nghttp2_hd_inflate_new2.rst
  nghttp2_http2_strerror.rst
  nghttp2_is_fatal.rst
  nghttp2_nv_compare_name.rst
  nghttp2_option_del.rst
  nghttp2_option_new.rst
  nghttp2_option_set_builtin_recv_extension_type.rst
  nghttp2_option_set_max_deflate_dynamic_table_size.rst
  nghttp2_option_set_max_reserved_remote_streams.rst
  nghttp2_option_set_max_send_header_block_length.rst
  nghttp2_option_set_no_auto_ping_ack.rst
  nghttp2_option_set_no_auto_window_update.rst
  nghttp2_option_set_no_http_messaging.rst
  nghttp2_option_set_no_recv_client_magic.rst
  nghttp2_option_set_peer_max_concurrent_streams.rst
  nghttp2_option_set_user_recv_extension_type.rst
  nghttp2_pack_settings_payload.rst
  nghttp2_priority_spec_check_default.rst
  nghttp2_priority_spec_default_init.rst
  nghttp2_priority_spec_init.rst
  nghttp2_rcbuf_decref.rst
  nghttp2_rcbuf_get_buf.rst
  nghttp2_rcbuf_incref.rst
  nghttp2_rcbuf_is_static.rst
  nghttp2_select_next_protocol.rst
  nghttp2_session_callbacks_del.rst
  nghttp2_session_callbacks_new.rst
  nghttp2_session_callbacks_set_before_frame_send_callback.rst
  nghttp2_session_callbacks_set_data_source_read_length_callback.rst
  nghttp2_session_callbacks_set_error_callback.rst
  nghttp2_session_callbacks_set_on_begin_frame_callback.rst
  nghttp2_session_callbacks_set_on_begin_headers_callback.rst
  nghttp2_session_callbacks_set_on_data_chunk_recv_callback.rst
  nghttp2_session_callbacks_set_on_extension_chunk_recv_callback.rst
  nghttp2_session_callbacks_set_on_frame_not_send_callback.rst
  nghttp2_session_callbacks_set_on_frame_recv_callback.rst
  nghttp2_session_callbacks_set_on_frame_send_callback.rst
  nghttp2_session_callbacks_set_on_header_callback.rst
  nghttp2_session_callbacks_set_on_header_callback2.rst
  nghttp2_session_callbacks_set_on_invalid_frame_recv_callback.rst
  nghttp2_session_callbacks_set_on_invalid_header_callback.rst
  nghttp2_session_callbacks_set_on_invalid_header_callback2.rst
  nghttp2_session_callbacks_set_on_stream_close_callback.rst
  nghttp2_session_callbacks_set_pack_extension_callback.rst
  nghttp2_session_callbacks_set_recv_callback.rst
  nghttp2_session_callbacks_set_select_padding_callback.rst
  nghttp2_session_callbacks_set_send_callback.rst
  nghttp2_session_callbacks_set_send_data_callback.rst
  nghttp2_session_callbacks_set_unpack_extension_callback.rst
  nghttp2_session_change_stream_priority.rst
  nghttp2_session_check_request_allowed.rst
  nghttp2_session_check_server_session.rst
  nghttp2_session_client_new.rst
  nghttp2_session_client_new2.rst
  nghttp2_session_client_new3.rst
  nghttp2_session_consume.rst
  nghttp2_session_consume_connection.rst
  nghttp2_session_consume_stream.rst
  nghttp2_session_create_idle_stream.rst
  nghttp2_session_del.rst
  nghttp2_session_find_stream.rst
  nghttp2_session_get_effective_local_window_size.rst
  nghttp2_session_get_effective_recv_data_length.rst
  nghttp2_session_get_hd_deflate_dynamic_table_size.rst
  nghttp2_session_get_hd_inflate_dynamic_table_size.rst
  nghttp2_session_get_last_proc_stream_id.rst
  nghttp2_session_get_local_settings.rst
  nghttp2_session_get_local_window_size.rst
  nghttp2_session_get_next_stream_id.rst
  nghttp2_session_get_outbound_queue_size.rst
  nghttp2_session_get_remote_settings.rst
  nghttp2_session_get_remote_window_size.rst
  nghttp2_session_get_root_stream.rst
  nghttp2_session_get_stream_effective_local_window_size.rst
  nghttp2_session_get_stream_effective_recv_data_length.rst
  nghttp2_session_get_stream_local_close.rst
  nghttp2_session_get_stream_local_window_size.rst
  nghttp2_session_get_stream_remote_close.rst
  nghttp2_session_get_stream_remote_window_size.rst
  nghttp2_session_get_stream_user_data.rst
  nghttp2_session_mem_recv.rst
  nghttp2_session_mem_send.rst
  nghttp2_session_recv.rst
  nghttp2_session_resume_data.rst
  nghttp2_session_send.rst
  nghttp2_session_server_new.rst
  nghttp2_session_server_new2.rst
  nghttp2_session_server_new3.rst
  nghttp2_session_set_local_window_size.rst
  nghttp2_session_set_next_stream_id.rst
  nghttp2_session_set_stream_user_data.rst
  nghttp2_session_terminate_session.rst
  nghttp2_session_terminate_session2.rst
  nghttp2_session_upgrade.rst
  nghttp2_session_upgrade2.rst
  nghttp2_session_want_read.rst
  nghttp2_session_want_write.rst
  nghttp2_set_debug_vprintf_callback.rst
  nghttp2_stream_get_first_child.rst
  nghttp2_stream_get_next_sibling.rst
  nghttp2_stream_get_parent.rst
  nghttp2_stream_get_previous_sibling.rst
  nghttp2_stream_get_state.rst
  nghttp2_stream_get_sum_dependency_weight.rst
  nghttp2_stream_get_weight.rst
  nghttp2_strerror.rst
  nghttp2_submit_altsvc.rst
  nghttp2_submit_data.rst
  nghttp2_submit_extension.rst
  nghttp2_submit_goaway.rst
  nghttp2_submit_headers.rst
  nghttp2_submit_ping.rst
  nghttp2_submit_priority.rst
  nghttp2_submit_push_promise.rst
  nghttp2_submit_request.rst
  nghttp2_submit_response.rst
  nghttp2_submit_rst_stream.rst
  nghttp2_submit_settings.rst
  nghttp2_submit_shutdown_notice.rst
  nghttp2_submit_trailer.rst
  nghttp2_submit_window_update.rst
  nghttp2_version.rst
 )
 set(MAN_PAGES
  nghttp.1
  nghttpd.1
  nghttpx.1
  h2load.1
 )
 # Other .rst files from the source tree that need to be copied
 # XXX move them to sources/ and create .in files?
 set(RST_FILES
  README.rst
  programmers-guide.rst
  nghttp.1.rst
  nghttpd.1.rst
  nghttpx.1.rst
  h2load.1.rst
 )
 # XXX unused for now
 set(EXTRA_DIST
  mkapiref.py
  ${RST_FILES}
  ${APIDOCS}
  sources/index.rst
  sources/tutorial-client.rst
  sources/tutorial-server.rst
  sources/tutorial-hpack.rst
  sources/nghttpx-howto.rst
  sources/h2load-howto.rst
  sources/libnghttp2_asio.rst
  sources/python-apiref.rst
  sources/building-android-binary.rst
  sources/contribute.rst
  _exts/sphinxcontrib/LICENSE.rubydomain
  _exts/sphinxcontrib/__init__.py
  _exts/sphinxcontrib/rubydomain.py
  _themes/sphinx_rtd_theme/__init__.py
  _themes/sphinx_rtd_theme/breadcrumbs.html
  _themes/sphinx_rtd_theme/footer.html
  _themes/sphinx_rtd_theme/layout.html
  _themes/sphinx_rtd_theme/layout_old.html
  _themes/sphinx_rtd_theme/search.html
  _themes/sphinx_rtd_theme/searchbox.html
  _themes/sphinx_rtd_theme/static/css/badge_only.css
  _themes/sphinx_rtd_theme/static/css/theme.css
  _themes/sphinx_rtd_theme/static/fonts/FontAwesome.otf
  _themes/sphinx_rtd_theme/static/fonts/fontawesome-webfont.eot
  _themes/sphinx_rtd_theme/static/fonts/fontawesome-webfont.svg
  _themes/sphinx_rtd_theme/static/fonts/fontawesome-webfont.ttf
  _themes/sphinx_rtd_theme/static/fonts/fontawesome-webfont.woff
  _themes/sphinx_rtd_theme/static/js/theme.js
  _themes/sphinx_rtd_theme/theme.conf
  _themes/sphinx_rtd_theme/versions.html
  ${MAN_PAGES}
  bash_completion/nghttp
  bash_completion/nghttpd
  bash_completion/nghttpx
  bash_completion/h2load
 )
 # Based on Makefile for Sphinx documentation
 # You can set these variables from the command line.
 set(SPHINXOPTS)
 set(SPHINXBUILD sphinx-build)
 set(PAPER)
 set(BUILDDIR    manual)
 # Internal variables.
 set(PAPEROPT_a4     -D latex_paper_size=a4)
 set(PAPEROPT_letter -D latex_paper_size=letter)
 set(ALLSPHINXOPTS   -d ${BUILDDIR}/doctrees ${PAPEROPT_${PAPER}} ${SPHINXOPTS} .)
 # "Please use `make <target>' where <target> is one of"
 # "  html       to make standalone HTML files"
 # "  dirhtml    to make HTML files named index.html in directories"
 # "  singlehtml to make a single large HTML file"
 # "  pickle     to make pickle files"
 # "  json       to make JSON files"
 # "  htmlhelp   to make HTML files and a HTML help project"
 # "  qthelp     to make HTML files and a qthelp project"
 # "  devhelp    to make HTML files and a Devhelp project"
 # "  epub       to make an epub"
 # "  latex      to make LaTeX files, you can set PAPER=a4 or PAPER=letter"
 # "  latexpdf   to make LaTeX files and run them through pdflatex"
 # "  text       to make text files"
 # "  man        to make manual pages"
 # "  changes    to make an overview of all changed/added/deprecated items"
 # "  linkcheck  to check all external links for integrity"
 # "  doctest    to run all doctests embedded in the documentation (if enabled)"
 # Copy files for out-of-tree builds
 if(NOT CMAKE_CURRENT_SOURCE_DIR STREQUAL CMAKE_CURRENT_BINARY_DIR)
  set(RST_BUILD_FILES)
  foreach(rstfile IN LISTS RST_FILES)
    set(outfile "${CMAKE_CURRENT_BINARY_DIR}/${rstfile}")
    add_custom_command(OUTPUT "${outfile}"
      COMMAND ${CMAKE_COMMAND} -E copy
              "${CMAKE_CURRENT_SOURCE_DIR}/${rstfile}" "${outfile}"
      DEPENDS "${CMAKE_CURRENT_SOURCE_DIR}/${rstfile}"
    )
    list(APPEND RST_BUILD_FILES "${outfile}")
  endforeach()
 else()
  set(RST_BUILD_FILES "${RST_FILES}")
 endif()
 set(apiref_SOURCES
  ${CMAKE_BINARY_DIR}/lib/includes/nghttp2/nghttp2ver.h
  ${CMAKE_SOURCE_DIR}/lib/includes/nghttp2/nghttp2.h
 )
 # Generates apiref.rst and other files
 add_custom_command(
  OUTPUT
    apiref.rst
    ${APIDOCS}
  COMMAND
    "${PYTHON_EXECUTABLE}" "${CMAKE_CURRENT_SOURCE_DIR}/mkapiref.py"
    apiref.rst macros.rst enums.rst types.rst .
    ${apiref_SOURCES}
  DEPENDS
    ${RST_BUILD_FILES}
    ${apiref_SOURCES}
 )
 set_directory_properties(PROPERTIES ADDITIONAL_MAKE_CLEAN_FILES "${BUILDDIR}")
 # Invokes sphinx-build and prints the given messages when completed
 function(sphinxbuild builder)
  set(echo_commands)
  foreach(message IN LISTS ARGN)
    list(APPEND echo_commands COMMAND ${CMAKE_COMMAND} -E echo "${message}")
  endforeach()
  add_custom_target(${builder}
    COMMAND "${SPHINXBUILD}" -b ${builder} ${ALLSPHINXOPTS} "${BUILDDIR}/${builder}"
    COMMAND ${CMAKE_COMMAND} -E echo
    ${echo_commands}
    VERBATIM
    DEPENDS apiref.rst
  )
 endfunction()
 foreach(builder html dirhtml singlehtml)
  sphinxbuild(${builder}
    "Build finished. The HTML pages are in ${BUILDDIR}/${builder}.")
 endforeach()
 sphinxbuild(pickle  "Build finished; now you can process the pickle files.")
 sphinxbuild(json    "Build finished; now you can process the JSON files.")
 sphinxbuild(htmlhelp
  "Build finished; now you can run HTML Help Workshop with the"
  ".hhp project file in ${BUILDDIR}/htmlhelp."
 )
 sphinxbuild(qthelp
  "Build finished; now you can run \"qcollectiongenerator\" with the"
  ".qhcp project file in ${BUILDDIR}/qthelp, like this:"
  "# qcollectiongenerator ${BUILDDIR}/qthelp/nghttp2.qhcp"
  "To view the help file:"
  "# assistant -collectionFile ${BUILDDIR}/qthelp/nghttp2.qhc"
 )
 sphinxbuild(devhelp
  "Build finished."
  "To view the help file:"
  "# mkdir -p ~/.local/share/devhelp/nghttp2"
  "# ln -s ${BUILDDIR}/devhelp ~/.local/share/devhelp/nghttp2"
  "# devhelp"
 )
 sphinxbuild(epub    "Build finished. The epub file is in ${BUILDDIR}/epub.")
 sphinxbuild(latex
  "Build finished; the LaTeX files are in ${BUILDDIR}/latex."
  "Run `make' in that directory to run these through (pdf)latex"
  "(use `make latexpdf' here to do that automatically)."
 )
 # Invoke the Makefile generated by sphinx
 add_custom_target(latexpdf
  COMMAND ${CMAKE_COMMAND} -E echo "Running LaTeX files through pdflatex..."
  COMMAND make -C "${BUILDDIR}/latex" all-pdf
  COMMAND ${CMAKE_COMMAND} -E echo "pdflatex finished; the PDF files are in ${BUILDDIR}/latex."
  DEPENDS latex
 )
 sphinxbuild(text    "Build finished. The text files are in ${BUILDDIR}/text.")
 sphinxbuild(man     "Build finished. The manual pages are in ${BUILDDIR}/man.")
 sphinxbuild(changes "The overview file is in ${BUILDDIR}/changes.")
 sphinxbuild(linkcheck
  "Link check complete; look for any errors in the above output"
  "or in ${BUILDDIR}/linkcheck/output.txt."
 )
 sphinxbuild(doctest
  "Testing of doctests in the sources finished, look at the"
  "results in ${BUILDDIR}/doctest/output.txt."
 )
 foreach(_man_page IN LISTS MAN_PAGES)
  install(FILES ${_man_page}
    DESTINATION "${CMAKE_INSTALL_MANDIR}/man1"
  )
 endforeach()
--- a/doc/Makefile.am
+++ b/doc/Makefile.am
@@ -37,7 +37,6 @@ APIDOCS= \
 	nghttp2_hd_deflate_get_num_table_entries.rst \
 	nghttp2_hd_deflate_get_table_entry.rst \
 	nghttp2_hd_deflate_hd.rst \
 	nghttp2_hd_deflate_hd_vec.rst \
 	nghttp2_hd_deflate_new.rst \
 	nghttp2_hd_deflate_new2.rst \
 	nghttp2_hd_inflate_change_table_size.rst \
@@ -48,61 +47,39 @@ APIDOCS= \
 	nghttp2_hd_inflate_get_num_table_entries.rst \
 	nghttp2_hd_inflate_get_table_entry.rst \
 	nghttp2_hd_inflate_hd.rst \
 	nghttp2_hd_inflate_hd2.rst \
 	nghttp2_hd_inflate_new.rst \
 	nghttp2_hd_inflate_new2.rst \
 	nghttp2_http2_strerror.rst \
 	nghttp2_is_fatal.rst \
 	nghttp2_nv_compare_name.rst \
 	nghttp2_option_del.rst \
 	nghttp2_option_new.rst \
 	nghttp2_option_set_builtin_recv_extension_type.rst \
 	nghttp2_option_set_max_deflate_dynamic_table_size.rst \
 	nghttp2_option_set_max_reserved_remote_streams.rst \
 	nghttp2_option_set_max_send_header_block_length.rst \
 	nghttp2_option_set_no_auto_ping_ack.rst \
 	nghttp2_option_set_no_auto_window_update.rst \
 	nghttp2_option_set_no_closed_streams.rst \
 	nghttp2_option_set_no_http_messaging.rst \
 	nghttp2_option_set_no_recv_client_magic.rst \
 	nghttp2_option_set_peer_max_concurrent_streams.rst \
 	nghttp2_option_set_user_recv_extension_type.rst \
 	nghttp2_pack_settings_payload.rst \
 	nghttp2_priority_spec_check_default.rst \
 	nghttp2_priority_spec_default_init.rst \
 	nghttp2_priority_spec_init.rst \
 	nghttp2_rcbuf_decref.rst \
 	nghttp2_rcbuf_get_buf.rst \
 	nghttp2_rcbuf_incref.rst \
 	nghttp2_rcbuf_is_static.rst \
 	nghttp2_select_next_protocol.rst \
 	nghttp2_session_callbacks_del.rst \
 	nghttp2_session_callbacks_new.rst \
 	nghttp2_session_callbacks_set_before_frame_send_callback.rst \
 	nghttp2_session_callbacks_set_data_source_read_length_callback.rst \
 	nghttp2_session_callbacks_set_error_callback.rst \
 	nghttp2_session_callbacks_set_on_begin_frame_callback.rst \
 	nghttp2_session_callbacks_set_on_begin_headers_callback.rst \
 	nghttp2_session_callbacks_set_on_data_chunk_recv_callback.rst \
 	nghttp2_session_callbacks_set_on_extension_chunk_recv_callback.rst \
 	nghttp2_session_callbacks_set_on_frame_not_send_callback.rst \
 	nghttp2_session_callbacks_set_on_frame_recv_callback.rst \
 	nghttp2_session_callbacks_set_on_frame_send_callback.rst \
 	nghttp2_session_callbacks_set_on_header_callback.rst \
 	nghttp2_session_callbacks_set_on_header_callback2.rst \
 	nghttp2_session_callbacks_set_on_invalid_frame_recv_callback.rst \
 	nghttp2_session_callbacks_set_on_invalid_header_callback.rst \
 	nghttp2_session_callbacks_set_on_invalid_header_callback2.rst \
 	nghttp2_session_callbacks_set_on_stream_close_callback.rst \
 	nghttp2_session_callbacks_set_pack_extension_callback.rst \
 	nghttp2_session_callbacks_set_recv_callback.rst \
 	nghttp2_session_callbacks_set_select_padding_callback.rst \
 	nghttp2_session_callbacks_set_send_callback.rst \
 	nghttp2_session_callbacks_set_send_data_callback.rst \
 	nghttp2_session_callbacks_set_unpack_extension_callback.rst \
 	nghttp2_session_change_stream_priority.rst \
 	nghttp2_session_check_request_allowed.rst \
 	nghttp2_session_check_server_session.rst \
 	nghttp2_session_client_new.rst \
 	nghttp2_session_client_new2.rst \
 	nghttp2_session_client_new3.rst \
@@ -114,11 +91,7 @@ APIDOCS= \
 	nghttp2_session_find_stream.rst \
 	nghttp2_session_get_effective_local_window_size.rst \
 	nghttp2_session_get_effective_recv_data_length.rst \
 	nghttp2_session_get_hd_deflate_dynamic_table_size.rst \
 	nghttp2_session_get_hd_inflate_dynamic_table_size.rst \
 	nghttp2_session_get_last_proc_stream_id.rst \
 	nghttp2_session_get_local_settings.rst \
 	nghttp2_session_get_local_window_size.rst \
 	nghttp2_session_get_next_stream_id.rst \
 	nghttp2_session_get_outbound_queue_size.rst \
 	nghttp2_session_get_remote_settings.rst \
@@ -127,19 +100,20 @@ APIDOCS= \
 	nghttp2_session_get_stream_effective_local_window_size.rst \
 	nghttp2_session_get_stream_effective_recv_data_length.rst \
 	nghttp2_session_get_stream_local_close.rst \
 	nghttp2_session_get_stream_local_window_size.rst \
 	nghttp2_session_get_stream_remote_close.rst \
 	nghttp2_session_get_stream_remote_window_size.rst \
 	nghttp2_session_get_stream_user_data.rst \
 	nghttp2_session_mem_recv.rst \
 	nghttp2_session_mem_send.rst \
 	nghttp2_session_recv.rst \
 	nghttp2_session_change_stream_priority.rst \
 	nghttp2_session_check_request_allowed.rst \
 	nghttp2_session_check_server_session.rst \
 	nghttp2_session_resume_data.rst \
 	nghttp2_session_send.rst \
 	nghttp2_session_server_new.rst \
 	nghttp2_session_server_new2.rst \
 	nghttp2_session_server_new3.rst \
 	nghttp2_session_set_local_window_size.rst \
 	nghttp2_session_set_next_stream_id.rst \
 	nghttp2_session_set_stream_user_data.rst \
 	nghttp2_session_terminate_session.rst \
@@ -148,7 +122,6 @@ APIDOCS= \
 	nghttp2_session_upgrade2.rst \
 	nghttp2_session_want_read.rst \
 	nghttp2_session_want_write.rst \
 	nghttp2_set_debug_vprintf_callback.rst \
 	nghttp2_stream_get_first_child.rst \
 	nghttp2_stream_get_next_sibling.rst \
 	nghttp2_stream_get_parent.rst \
@@ -157,9 +130,7 @@ APIDOCS= \
 	nghttp2_stream_get_sum_dependency_weight.rst \
 	nghttp2_stream_get_weight.rst \
 	nghttp2_strerror.rst \
 	nghttp2_submit_altsvc.rst \
 	nghttp2_submit_data.rst \
 	nghttp2_submit_extension.rst \
 	nghttp2_submit_goaway.rst \
 	nghttp2_submit_headers.rst \
 	nghttp2_submit_ping.rst \
@@ -174,19 +145,15 @@ APIDOCS= \
 	nghttp2_submit_window_update.rst \
 	nghttp2_version.rst
-RST_FILES = \
+EXTRA_DIST = \
 	mkapiref.py \
 	README.rst \
 	programmers-guide.rst \
 	$(APIDOCS) \
 	nghttp.1.rst \
 	nghttpd.1.rst \
 	nghttpx.1.rst \
-	h2load.1.rst
+	h2load.1.rst \
 EXTRA_DIST = \
 	CMakeLists.txt \
 	mkapiref.py \
 	$(RST_FILES) \
 	$(APIDOCS) \
 	sources/index.rst \
 	sources/tutorial-client.rst \
 	sources/tutorial-server.rst \
@@ -260,15 +227,13 @@ help:
 apiref.rst: \
 	$(top_builddir)/lib/includes/nghttp2/nghttp2ver.h \
-	$(top_srcdir)/lib/includes/nghttp2/nghttp2.h
+	$(top_builddir)/lib/includes/nghttp2/nghttp2.h
 	for i in $(RST_FILES); do [ -e $(builddir)/$$i ] || cp $(srcdir)/$$i $(builddir); done
 	$(PYTHON) $(top_srcdir)/doc/mkapiref.py \
 	apiref.rst macros.rst enums.rst types.rst . $^
 $(APIDOCS): apiref.rst
 clean-local:
 	if [ $(srcdir) != $(builddir) ]; then for i in $(RST_FILES); do rm -f $(builddir)/$$i; done fi
 	-rm -f apiref.rst
 	-rm -f $(APIDOCS)
 	-rm -rf $(BUILDDIR)/*
--- a/doc/_exts/sphinxcontrib/rubydomain.py
+++ b/doc/_exts/sphinxcontrib/rubydomain.py
@@ -15,7 +15,6 @@ from docutils import nodes
 from docutils.parsers.rst import directives
 from sphinx import addnodes
 from sphinx import version_info
 from sphinx.roles import XRefRole
 from sphinx.locale import l_, _
 from sphinx.domains import Domain, ObjType, Index
@@ -232,8 +231,8 @@ class RubyObject(ObjectDescription):
        indextext = self.get_index_text(modname, name_cls)
        if indextext:
-            self.indexnode['entries'].append(
+            self.indexnode['entries'].append(('single', indextext,
-                _make_index('single', indextext, fullname, fullname))
+                                              fullname, fullname))
    def before_content(self):
        # needed for automatic qualification of members (reset in subclasses)
@@ -416,19 +415,11 @@ class RubyModule(Directive):
        # modindex currently
        if not noindex:
            indextext = _('%s (module)') % modname
-            inode = addnodes.index(entries=[_make_index(
+            inode = addnodes.index(entries=[('single', indextext,
-                'single', indextext, 'module-' + modname, modname)])
+                                             'module-' + modname, modname)])
            ret.append(inode)
        return ret
 def _make_index(entrytype, entryname, target, ignored, key=None):
    # Sphinx 1.4 introduced backward incompatible changes, it now
    # requires 5 tuples.  Last one is categorization key.  See
    # http://www.sphinx-doc.org/en/stable/extdev/nodes.html#sphinx.addnodes.index
    if version_info >= (1, 4, 0, '', 0):
        return (entrytype, entryname, target, ignored, key)
    else:
        return (entrytype, entryname, target, ignored)
 class RubyCurrentModule(Directive):
    """
--- a/doc/_themes/sphinx_rtd_theme/layout.html
+++ b/doc/_themes/sphinx_rtd_theme/layout.html
@@ -81,7 +81,6 @@
 <body class="wy-body-for-nav" role="document">
  {% block extrabody %} {% endblock %}
  <div class="wy-grid-for-nav">
    {# SIDE NAV, TOGGLES ON MOBILE #}
--- a/doc/_themes/sphinx_rtd_theme/static/css/theme.css
+++ b/doc/_themes/sphinx_rtd_theme/static/css/theme.css
--- a/doc/bash_completion/h2load
+++ b/doc/bash_completion/h2load
@@ -8,7 +8,7 @@ _h2load()
    _get_comp_words_by_ref cur prev
    case $cur in
        -*)
-            COMPREPLY=( $( compgen -W '--connection-window-bits --clients --verbose --ciphers --rate --no-tls-proto --header-table-size --requests --base-uri --h1 --threads --npn-list --rate-period --data --version --connection-inactivity-timeout --timing-script-file --encoder-header-table-size --max-concurrent-streams --connection-active-timeout --input-file --help --window-bits --header ' -- "$cur" ) )
+            COMPREPLY=( $( compgen -W '--connection-window-bits --clients --verbose --ciphers --rate --no-tls-proto --requests --base-uri --h1 --threads --npn-list --rate-period --data --version --connection-inactivity-timeout --timing-script-file --max-concurrent-streams --connection-active-timeout --input-file --header --window-bits --help ' -- "$cur" ) )
            ;;
        *)
            _filedir
--- a/doc/bash_completion/nghttp
+++ b/doc/bash_completion/nghttp
@@ -8,7 +8,7 @@ _nghttp()
    _get_comp_words_by_ref cur prev
    case $cur in
        -*)
-            COMPREPLY=( $( compgen -W '--no-push --verbose --no-dep --get-assets --har --header-table-size --multiply --encoder-header-table-size --padding --hexdump --max-concurrent-streams --continuation --connection-window-bits --peer-max-concurrent-streams --timeout --data --no-content-length --version --color --cert --upgrade --remote-name --trailer --weight --help --key --null-out --window-bits --expect-continue --stat --no-verify-peer --header ' -- "$cur" ) )
+            COMPREPLY=( $( compgen -W '--no-push --verbose --no-dep --get-assets --har --header-table-size --multiply --padding --hexdump --max-concurrent-streams --continuation --connection-window-bits --peer-max-concurrent-streams --timeout --data --no-content-length --version --color --cert --upgrade --remote-name --trailer --weight --help --key --null-out --window-bits --stat --header ' -- "$cur" ) )
            ;;
        *)
            _filedir
--- a/doc/bash_completion/nghttpd
+++ b/doc/bash_completion/nghttpd
@@ -8,7 +8,7 @@ _nghttpd()
    _get_comp_words_by_ref cur prev
    case $cur in
        -*)
-            COMPREPLY=( $( compgen -W '--htdocs --verbose --daemon --echo-upload --error-gzip --push --header-table-size --encoder-header-table-size --padding --hexdump --max-concurrent-streams --no-tls --connection-window-bits --mime-types-file --no-content-length --workers --version --color --early-response --dh-param-file --trailer --address --window-bits --verify-client --help ' -- "$cur" ) )
+            COMPREPLY=( $( compgen -W '--htdocs --verbose --daemon --echo-upload --error-gzip --push --header-table-size --padding --hexdump --max-concurrent-streams --no-tls --mime-types-file --no-content-length --workers --version --color --early-response --dh-param-file --trailer --address --verify-client --help ' -- "$cur" ) )
            ;;
        *)
            _filedir
--- a/doc/bash_completion/nghttpx
+++ b/doc/bash_completion/nghttpx
@@ -8,7 +8,7 @@ _nghttpx()
    _get_comp_words_by_ref cur prev
    case $cur in
        -*)
-            COMPREPLY=( $( compgen -W '--worker-read-rate --include --frontend-http2-dump-response-header --tls-ticket-key-file --verify-client-cacert --max-response-header-fields --backend-http2-window-size --frontend-keep-alive-timeout --backend-request-buffer --max-request-header-fields --fastopen --backend-connect-timeout --tls-max-proto-version --conf --dns-lookup-timeout --backend-http2-max-concurrent-streams --worker-write-burst --npn-list --dns-max-try --fetch-ocsp-response-file --no-via --tls-session-cache-memcached-cert-file --no-http2-cipher-black-list --mruby-file --client-no-http2-cipher-black-list --stream-read-timeout --client-ciphers --ocsp-update-interval --forwarded-for --accesslog-syslog --dns-cache-timeout --frontend-http2-read-timeout --listener-disable-timeout --ciphers --client-psk-secrets --strip-incoming-x-forwarded-for --no-server-rewrite --private-key-passwd-file --backend-keep-alive-timeout --backend-http-proxy-uri --frontend-max-requests --rlimit-nofile --no-strip-incoming-x-forwarded-proto --tls-ticket-key-memcached-cert-file --no-verify-ocsp --forwarded-by --tls-session-cache-memcached-private-key-file --error-page --ocsp-startup --backend-write-timeout --tls-dyn-rec-warmup-threshold --tls-ticket-key-memcached-max-retry --frontend-http2-window-size --http2-no-cookie-crumbling --worker-read-burst --dh-param-file --accesslog-format --errorlog-syslog --redirect-https-port --request-header-field-buffer --api-max-request-body --frontend-http2-decoder-dynamic-table-size --errorlog-file --frontend-http2-max-concurrent-streams --psk-secrets --frontend-write-timeout --tls-ticket-key-cipher --read-burst --no-add-x-forwarded-proto --backend --server-name --insecure --backend-max-backoff --log-level --host-rewrite --tls-ticket-key-memcached-interval --frontend-http2-setting-timeout --frontend-http2-connection-window-size --worker-frontend-connections --syslog-facility --no-server-push --no-location-rewrite --single-thread --tls-session-cache-memcached --no-ocsp --backend-response-buffer --tls-min-proto-version --workers --add-forwarded --worker-write-rate --add-request-header --backend-http2-settings-timeout --subcert --ecdh-curves --no-kqueue --help --frontend-frame-debug --tls-sct-dir --pid-file --frontend-http2-dump-request-header --daemon --write-rate --altsvc --backend-http2-decoder-dynamic-table-size --user --add-x-forwarded-for --frontend-read-timeout --tls-ticket-key-memcached-max-fail --backlog --write-burst --backend-connections-per-host --response-header-field-buffer --tls-ticket-key-memcached-address-family --padding --tls-session-cache-memcached-address-family --stream-write-timeout --cacert --tls-ticket-key-memcached-private-key-file --accesslog-write-early --backend-address-family --backend-http2-connection-window-size --version --add-response-header --backend-read-timeout --frontend-http2-optimize-window-size --frontend --accesslog-file --http2-proxy --backend-http2-encoder-dynamic-table-size --client-private-key-file --single-process --client-cert-file --tls-ticket-key-memcached --tls-dyn-rec-idle-timeout --frontend-http2-optimize-write-buffer-size --verify-client --frontend-http2-encoder-dynamic-table-size --read-rate --backend-connections-per-frontend --strip-incoming-forwarded ' -- "$cur" ) )
+            COMPREPLY=( $( compgen -W '--worker-read-rate --frontend-no-tls --frontend-http2-dump-response-header --backend-http1-connections-per-frontend --tls-ticket-key-file --verify-client-cacert --include --backend-request-buffer --backend-http2-connection-window-bits --conf --worker-write-burst --npn-list --fetch-ocsp-response-file --mruby-file --stream-read-timeout --tls-ticket-key-memcached --forwarded-for --accesslog-syslog --frontend-http2-read-timeout --listener-disable-timeout --frontend-http2-connection-window-bits --ciphers --strip-incoming-x-forwarded-for --private-key-passwd-file --backend-keep-alive-timeout --backend-http-proxy-uri --backend-http1-connections-per-host --rlimit-nofile --tls-dyn-rec-warmup-threshold --no-via --ocsp-update-interval --backend-write-timeout --client --tls-ticket-key-memcached-max-retry --http2-no-cookie-crumbling --worker-read-burst --client-proxy --http2-bridge --accesslog-format --errorlog-syslog --errorlog-file --http2-max-concurrent-streams --frontend-write-timeout --tls-ticket-key-cipher --read-burst --backend-ipv4 --backend-ipv6 --backend --insecure --log-level --host-rewrite --tls-proto-list --backend-http2-connections-per-worker --tls-ticket-key-memcached-interval --dh-param-file --worker-frontend-connections --syslog-facility --fastopen --no-location-rewrite --tls-session-cache-memcached --no-ocsp --backend-response-buffer --workers --add-forwarded --frontend-http2-window-bits --worker-write-rate --add-request-header --backend-tls-sni-field --subcert --help --frontend-frame-debug --pid-file --frontend-http2-dump-request-header --daemon --write-rate --altsvc --user --add-x-forwarded-for --header-field-buffer --frontend-read-timeout --tls-ticket-key-memcached-max-fail --backlog --write-burst --no-server-push --backend-http2-window-bits --padding --stream-write-timeout --cacert --forwarded-by --version --add-response-header --backend-read-timeout --frontend --accesslog-file --http2-proxy --max-header-fields --backend-no-tls --client-private-key-file --client-cert-file --accept-proxy-protocol --tls-dyn-rec-idle-timeout --verify-client --read-rate --strip-incoming-forwarded ' -- "$cur" ) )
            ;;
        *)
            _filedir
--- a/doc/conf.py.in
+++ b/doc/conf.py.in
@@ -41,7 +41,7 @@ import sys, os
 # documentation root, use os.path.abspath to make it absolute, like shown here.
 #sys.path.insert(0, os.path.abspath('.'))
-sys.path.append(os.path.abspath('@top_srcdir@/doc/_exts'))
+sys.path.append(os.path.abspath('_exts'))
 # -- General configuration -----------------------------------------------------
--- a/doc/h2load.1
+++ b/doc/h2load.1
@@ -1,6 +1,6 @@
 .\" Man page generated from reStructuredText.
 .
-.TH "H2LOAD" "1" "Aug 18, 2017" "1.25.0" "nghttp2"
+.TH "H2LOAD" "1" "February 11, 2016" "1.7.1" "nghttp2"
 .SH NAME
 h2load \- HTTP/2 benchmarking tool
 .
@@ -123,15 +123,13 @@ Add/Override a header to the requests.
 .B \-\-ciphers=<SUITE>
 Set allowed  cipher list.  The  format of the  string is
 described in OpenSSL ciphers(1).
 .sp
 Default: \fBECDHE\-ECDSA\-AES256\-GCM\-SHA384:ECDHE\-RSA\-AES256\-GCM\-SHA384:ECDHE\-ECDSA\-CHACHA20\-POLY1305:ECDHE\-RSA\-CHACHA20\-POLY1305:ECDHE\-ECDSA\-AES128\-GCM\-SHA256:ECDHE\-RSA\-AES128\-GCM\-SHA256:ECDHE\-ECDSA\-AES256\-SHA384:ECDHE\-RSA\-AES256\-SHA384:ECDHE\-ECDSA\-AES128\-SHA256:ECDHE\-RSA\-AES128\-SHA256\fP
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-p, \-\-no\-tls\-proto=<PROTOID>
 Specify ALPN identifier of the  protocol to be used when
 accessing http URI without SSL/TLS.
-Available protocols: h2c and
+Available protocols: spdy/2, spdy/3, spdy/3.1, h2c and
 http/1.1
 .sp
 Default: \fBh2c\fP
@@ -140,9 +138,7 @@ Default: \fBh2c\fP
 .TP
 .B \-d, \-\-data=<PATH>
 Post FILE to  server.  The request method  is changed to
-POST.   For  http/1.1 connection,  if  \fI\%\-d\fP  is used,  the
+POST.
 maximum number of in\-flight pipelined requests is set to
 1.
 .UNINDENT
 .INDENT 0.0
 .TP
@@ -153,7 +149,7 @@ representing the  number of  connections to be  made per
 rate period.   The maximum  number of connections  to be
 made  is  given  in  \fI\%\-c\fP   option.   This  rate  will  be
 distributed among  threads as  evenly as  possible.  For
-example,  with   \fI\%\-t\fP2  and   \fI\%\-r\fP4,  each  thread   gets  2
+example,  with   \fB\-t2\fP  and   \fB\-r4\fP,  each  thread   gets  2
 connections per period.  When the rate is 0, the program
 will run  as it  normally does, creating  connections at
 whatever variable rate it  wants.  The default value for
@@ -233,7 +229,7 @@ NPN.  The parameter must be  delimited by a single comma
 only  and any  white spaces  are  treated as  a part  of
 protocol string.
 .sp
-Default: \fBh2,h2\-16,h2\-14,http/1.1\fP
+Default: \fBh2,h2\-16,h2\-14,spdy/3.1,spdy/3,spdy/2,http/1.1\fP
 .UNINDENT
 .INDENT 0.0
 .TP
@@ -244,23 +240,6 @@ http/1.1 for both http and https URI.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-\-header\-table\-size=<SIZE>
 Specify decoder header table size.
 .sp
 Default: \fB4K\fP
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-\-encoder\-header\-table\-size=<SIZE>
 Specify encoder header table size.  The decoder (server)
 specifies  the maximum  dynamic table  size it  accepts.
 Then the negotiated dynamic table size is the minimum of
 this option value and the value which server specified.
 .sp
 Default: \fB4K\fP
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-v, \-\-verbose
 Output debug information.
 .UNINDENT
@@ -275,9 +254,6 @@ Display version information and exit.
 Display this help and exit.
 .UNINDENT
 .sp
 The <SIZE> argument is an integer and an optional unit (e.g., 10K is
 10 * 1024).  Units are K, M and G (powers of 1024).
 .sp
 The <DURATION> argument is an integer and an optional unit (e.g., 1s
 is 1 second and 500ms is 500 milliseconds).  Units are h, m, s or ms
 (hours, minutes, seconds and milliseconds, respectively).  If a unit
@@ -436,7 +412,7 @@ performance.  To set smaller flow control window, use \fI\%\-w\fP and
 window size described in HTTP/2 and SPDY protocol specification.
 .SH SEE ALSO
 .sp
-\fBnghttp(1)\fP, \fBnghttpd(1)\fP, \fBnghttpx(1)\fP
+\fInghttp(1)\fP, \fInghttpd(1)\fP, \fInghttpx(1)\fP
 .SH AUTHOR
 Tatsuhiro Tsujikawa
 .SH COPYRIGHT
--- a/doc/h2load.1.rst
+++ b/doc/h2load.1.rst
@@ -74,14 +74,14 @@ OPTIONS
 .. option:: -w, --window-bits=<N>
    Sets the stream level initial window size to (2\*\*<N>)-1.
-    For SPDY, 2\*\*<N> is used instead.
+    For SPDY, 2**<N> is used instead.
    Default: ``30``
 .. option:: -W, --connection-window-bits=<N>
    Sets  the  connection  level   initial  window  size  to
-    (2\*\*<N>)-1.  For SPDY, if <N>  is strictly less than 16,
+    (2**<N>)-1.  For SPDY, if <N>  is strictly less than 16,
    this option  is ignored.   Otherwise 2\*\*<N> is  used for
    SPDY.
@@ -96,13 +96,11 @@ OPTIONS
    Set allowed  cipher list.  The  format of the  string is
    described in OpenSSL ciphers(1).
    Default: ``ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256``
 .. option:: -p, --no-tls-proto=<PROTOID>
    Specify ALPN identifier of the  protocol to be used when
    accessing http URI without SSL/TLS.
-    Available protocols: h2c and
+    Available protocols: spdy/2, spdy/3, spdy/3.1, h2c and
    http/1.1
    Default: ``h2c``
@@ -110,9 +108,7 @@ OPTIONS
 .. option:: -d, --data=<PATH>
    Post FILE to  server.  The request method  is changed to
-    POST.   For  http/1.1 connection,  if  :option:`-d`  is used,  the
+    POST.
    maximum number of in-flight pipelined requests is set to
    1.
 .. option:: -r, --rate=<N>
@@ -122,7 +118,7 @@ OPTIONS
    rate period.   The maximum  number of connections  to be
    made  is  given  in  :option:`-c`   option.   This  rate  will  be
    distributed among  threads as  evenly as  possible.  For
-    example,  with   :option:`-t`\2  and   :option:`-r`\4,  each  thread   gets  2
+    example,  with   :option:`-t2`  and   :option:`\-r4`,  each  thread   gets  2
    connections per period.  When the rate is 0, the program
    will run  as it  normally does, creating  connections at
    whatever variable rate it  wants.  The default value for
@@ -196,7 +192,7 @@ OPTIONS
    only  and any  white spaces  are  treated as  a part  of
    protocol string.
-    Default: ``h2,h2-16,h2-14,http/1.1``
+    Default: ``h2,h2-16,h2-14,spdy/3.1,spdy/3,spdy/2,http/1.1``
 .. option:: --h1
@@ -204,21 +200,6 @@ OPTIONS
    :option:`--no-tls-proto`\=http/1.1,    which   effectively    force
    http/1.1 for both http and https URI.
 .. option:: --header-table-size=<SIZE>
    Specify decoder header table size.
    Default: ``4K``
 .. option:: --encoder-header-table-size=<SIZE>
    Specify encoder header table size.  The decoder (server)
    specifies  the maximum  dynamic table  size it  accepts.
    Then the negotiated dynamic table size is the minimum of
    this option value and the value which server specified.
    Default: ``4K``
 .. option:: -v, --verbose
    Output debug information.
@@ -233,9 +214,6 @@ OPTIONS
 The <SIZE> argument is an integer and an optional unit (e.g., 10K is
 10 * 1024).  Units are K, M and G (powers of 1024).
 The <DURATION> argument is an integer and an optional unit (e.g., 1s
 is 1 second and 500ms is 500 milliseconds).  Units are h, m, s or ms
 (hours, minutes, seconds and milliseconds, respectively).  If a unit
--- a/doc/nghttp.1
+++ b/doc/nghttp.1
@@ -1,6 +1,6 @@
 .\" Man page generated from reStructuredText.
 .
-.TH "NGHTTP" "1" "Aug 18, 2017" "1.25.0" "nghttp2"
+.TH "NGHTTP" "1" "February 11, 2016" "1.7.1" "nghttp2"
 .SH NAME
 nghttp \- HTTP/2 client
 .
@@ -142,13 +142,10 @@ HTTP upgrade request is performed with OPTIONS method.
 .INDENT 0.0
 .TP
 .B \-p, \-\-weight=<WEIGHT>
-Sets  weight of  given  URI.  This  option  can be  used
+Sets priority group weight.  The valid value range is
 multiple times, and  N\-th \fI\%\-p\fP option sets  weight of N\-th
 URI in the command line.  If  the number of \fI\%\-p\fP option is
 less than the number of URI, the last \fI\%\-p\fP option value is
 repeated.  If there is no \fI\%\-p\fP option, default weight, 16,
 is assumed.  The valid value range is
 [1, 256], inclusive.
 .sp
 Default: \fB16\fP
 .UNINDENT
 .INDENT 0.0
 .TP
@@ -170,14 +167,6 @@ multiple header table size change.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-\-encoder\-header\-table\-size=<SIZE>
 Specify encoder header table size.  The decoder (server)
 specifies  the maximum  dynamic table  size it  accepts.
 Then the negotiated dynamic table size is the minimum of
 this option value and the value which server specified.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-b, \-\-padding=<N>
 Add at  most <N>  bytes to a  frame payload  as padding.
 Specify 0 to disable padding.
@@ -228,20 +217,6 @@ accepts.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-\-expect\-continue
 Perform an Expect/Continue handshake:  wait to send DATA
 (up to  a short  timeout)  until the server sends  a 100
 Continue interim response. This option is ignored unless
 combined with the \fI\%\-d\fP option.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-y, \-\-no\-verify\-peer
 Suppress  warning  on  server  certificate  verification
 failure.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-\-version
 Display version information and exit.
 .UNINDENT
@@ -317,7 +292,7 @@ stream 11 with the weight 12.  The other resources (e.g., icon) depend
 on stream 11 with the weight 2.
 .SH SEE ALSO
 .sp
-\fBnghttpd(1)\fP, \fBnghttpx(1)\fP, \fBh2load(1)\fP
+\fInghttpd(1)\fP, \fInghttpx(1)\fP, \fIh2load(1)\fP
 .SH AUTHOR
 Tatsuhiro Tsujikawa
 .SH COPYRIGHT
--- a/doc/nghttp.1.rst
+++ b/doc/nghttp.1.rst
@@ -107,14 +107,11 @@ OPTIONS
 .. option:: -p, --weight=<WEIGHT>
-    Sets  weight of  given  URI.  This  option  can be  used
+    Sets priority group weight.  The valid value range is
    multiple times, and  N-th :option:`-p` option sets  weight of N-th
    URI in the command line.  If  the number of :option:`-p` option is
    less than the number of URI, the last :option:`-p` option value is
    repeated.  If there is no :option:`-p` option, default weight, 16,
    is assumed.  The valid value range is
    [1, 256], inclusive.
    Default: ``16``
 .. option:: -M, --peer-max-concurrent-streams=<N>
    Use  <N>  as  SETTINGS_MAX_CONCURRENT_STREAMS  value  of
@@ -131,13 +128,6 @@ OPTIONS
    frame  payload  before  the   last  value,  to  simulate
    multiple header table size change.
 .. option:: --encoder-header-table-size=<SIZE>
    Specify encoder header table size.  The decoder (server)
    specifies  the maximum  dynamic table  size it  accepts.
    Then the negotiated dynamic table size is the minimum of
    this option value and the value which server specified.
 .. option:: -b, --padding=<N>
    Add at  most <N>  bytes to a  frame payload  as padding.
@@ -179,18 +169,6 @@ OPTIONS
    The  number of  concurrent  pushed  streams this  client
    accepts.
 .. option:: --expect-continue
    Perform an Expect/Continue handshake:  wait to send DATA
    (up to  a short  timeout)  until the server sends  a 100
    Continue interim response. This option is ignored unless
    combined with the :option:`-d` option.
 .. option:: -y, --no-verify-peer
    Suppress  warning  on  server  certificate  verification
    failure.
 .. option:: --version
    Display version information and exit.
@@ -223,9 +201,7 @@ implementation.
 When connection is established, nghttp sends 5 PRIORITY frames to idle
 streams 3, 5, 7, 9 and 11 to create "anchor" nodes in dependency
-tree:
+tree::
 .. code-block:: text
                      +-----+
                      |id=0 |
--- a/doc/nghttp.h2r
+++ b/doc/nghttp.h2r
@@ -12,9 +12,7 @@ implementation.
 When connection is established, nghttp sends 5 PRIORITY frames to idle
 streams 3, 5, 7, 9 and 11 to create "anchor" nodes in dependency
-tree:
+tree::
 .. code-block:: text
                      +-----+
                      |id=0 |
--- a/doc/nghttpd.1
+++ b/doc/nghttpd.1
@@ -1,6 +1,6 @@
 .\" Man page generated from reStructuredText.
 .
-.TH "NGHTTPD" "1" "Aug 18, 2017" "1.25.0" "nghttp2"
+.TH "NGHTTPD" "1" "February 11, 2016" "1.7.1" "nghttp2"
 .SH NAME
 nghttpd \- HTTP/2 server
 .
@@ -99,14 +99,6 @@ Specify decoder header table size.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-\-encoder\-header\-table\-size=<SIZE>
 Specify encoder header table size.  The decoder (client)
 specifies  the maximum  dynamic table  size it  accepts.
 Then the negotiated dynamic table size is the minimum of
 this option value and the value which client specified.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-\-color
 Force colored log output.
 .UNINDENT
@@ -147,17 +139,6 @@ Make error response gzipped.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-w, \-\-window\-bits=<N>
 Sets the stream level initial window size to 2**<N>\-1.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-W, \-\-connection\-window\-bits=<N>
 Sets  the  connection  level   initial  window  size  to
 2**<N>\-1.
 .UNINDENT
 .INDENT 0.0
 .TP
 .B \-\-dh\-param\-file=<PATH>
 Path to file that contains  DH parameters in PEM format.
 Without  this   option,  DHE   cipher  suites   are  not
@@ -217,7 +198,7 @@ The <SIZE> argument is an integer and an optional unit (e.g., 10K is
 10 * 1024).  Units are K, M and G (powers of 1024).
 .SH SEE ALSO
 .sp
-\fBnghttp(1)\fP, \fBnghttpx(1)\fP, \fBh2load(1)\fP
+\fInghttp(1)\fP, \fInghttpx(1)\fP, \fIh2load(1)\fP
 .SH AUTHOR
 Tatsuhiro Tsujikawa
 .SH COPYRIGHT
--- a/doc/nghttpd.1.rst
+++ b/doc/nghttpd.1.rst
@@ -70,13 +70,6 @@ OPTIONS
    Specify decoder header table size.
 .. option:: --encoder-header-table-size=<SIZE>
    Specify encoder header table size.  The decoder (client)
    specifies  the maximum  dynamic table  size it  accepts.
    Then the negotiated dynamic table size is the minimum of
    this option value and the value which client specified.
 .. option:: --color
    Force colored log output.
@@ -111,15 +104,6 @@ OPTIONS
    Make error response gzipped.
 .. option:: -w, --window-bits=<N>
    Sets the stream level initial window size to 2\*\*<N>-1.
 .. option:: -W, --connection-window-bits=<N>
    Sets  the  connection  level   initial  window  size  to
    2\*\*<N>-1.
 .. option:: --dh-param-file=<PATH>
    Path to file that contains  DH parameters in PEM format.
--- a/doc/nghttpx.1
+++ b/doc/nghttpx.1
--- a/doc/nghttpx.1.rst
+++ b/doc/nghttpx.1.rst
--- a/doc/nghttpx.h2r
+++ b/doc/nghttpx.h2r
@@ -41,33 +41,6 @@ FILES
  :option:`--conf` option cannot be used in the configuration file and
  will be ignored if specified.
 Error log
  Error log is written to stderr by default.  It can be configured
  using :option:`--errorlog-file`.  The format of log message is as
  follows:
  <datetime> <master-pid> <current-pid> <thread-id> <level> (<filename>:<line>) <msg>
  <datetime>
    It is a conbination of date and time when the log is written.  It
    is in ISO 8601 format.
  <master-pid>
    It is a master process ID.
  <current-pid>
    It is a process ID which writes this log.
  <thread-id>
    It is a thread ID which writes this log.  It would be unique
    within <current-pid>.
  <filename> and <line>
    They are source file name, and line number which produce this log.
  <msg>
    It is a log message body.
 SIGNALS
 -------
@@ -76,25 +49,14 @@ SIGQUIT
  accepting connection.  After all connections are handled, nghttpx
  exits.
 SIGHUP
  Reload configuration file given in :option:`--conf`.
 SIGUSR1
  Reopen log files.
 SIGUSR2
  Fork and execute nghttpx.  It will execute the binary in the same
-  path with same command-line arguments and environment variables.  As
+  path with same command-line arguments and environment variables.
-  of nghttpx version 1.20.0, the new master process sends SIGQUIT to
+  After new process comes up, sending SIGQUIT to the original process
-  the original master process when it is ready to serve requests.  For
+  to perform hot swapping.
  the earlier versions of nghttpx, user has to send SIGQUIT to the
  original master process.
  The difference between SIGUSR2 (+ SIGQUIT) and SIGHUP is that former
  is usually used to execute new binary, and the master process is
  newly spawned.  On the other hand, the latter just reloads
  configuration file, and the same master process continues to exist.
 .. note::
@@ -123,7 +85,7 @@ backend server and extracts URI-reference with parameter
 and pushes those URIs to the frontend client. Here is a sample Link
 header field to initiate server push:
-.. code-block:: text
+.. code-block:: http
  Link: </fonts/font.woff>; rel=preload
  Link: </css/theme.css>; rel=preload
@@ -136,12 +98,12 @@ Currently, the following restriction is applied for server push:
 This limitation may be loosened in the future release.
 nghttpx also supports server push if both frontend and backend are
-HTTP/2 in default mode.  In this case, in addition to server push via
+HTTP/2 (which implies :option:`--http2-bridge` or :option:`--client`).
-Link header field, server push from backend is forwarded to frontend
+In this case, in addition to server push via Link header field, server
-HTTP/2 session.
+push from backend is relayed to frontend HTTP/2 session.
-HTTP/2 server push will be disabled if :option:`--http2-proxy` is
+HTTP/2 server push will be disabled if :option:`--http2-proxy` or
-used.
+:option:`--client-proxy` is used.
 UNIX DOMAIN SOCKET
 ------------------
@@ -171,22 +133,6 @@ be customized using :option:`--fetch-ocsp-response-file` option.
 If OCSP query is failed, previous OCSP response, if any, is continued
 to be used.
 :option:`--fetch-ocsp-response-file` option provides wide range of
 possibility to manage OCSP response.  It can take an arbitrary script
 or executable.  The requirement is that it supports the command-line
 interface of ``fetch-ocsp-response`` script, and it must return a
 valid DER encoded OCSP response on success.  It must return exit code
 0 on success, and 75 for temporary error, and the other error code for
 generic failure.  For large cluster of servers, it is not efficient
 for each server to perform OCSP query using ``fetch-ocsp-response``.
 Instead, you can retrieve OCSP response in some way, and store it in a
 disk or a shared database.  Then specify a program in
 :option:`--fetch-ocsp-response-file` to fetch it from those stores.
 This could provide a way to share the OCSP response between fleet of
 servers, and also any OCSP query strategy can be applied which may be
 beyond the ability of nghttpx itself or ``fetch-ocsp-response``
 script.
 TLS SESSION RESUMPTION
 ----------------------
@@ -204,10 +150,6 @@ insert serialized session data to memcached with
 as a memcached entry key, with expiry time 12 hours.  Session timeout
 is set to 12 hours.
 By default, connections to memcached server are not encrypted.  To
 enable encryption, use ``tls`` keyword in
 :option:`--tls-session-cache-memcached` option.
 TLS SESSION TICKET RESUMPTION
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -247,33 +189,11 @@ used, LEN must be 48.  If
 keys.  The key appeared first is used as encryption key.  All the
 remaining keys are used as decryption only.
 By default, connections to memcached server are not encrypted.  To
 enable encryption, use ``tls`` keyword in
 :option:`--tls-ticket-key-memcached` option.
 If :option:`--tls-ticket-key-file` is given, encryption key is read
 from the given file.  In this case, nghttpx does not rotate key
 automatically.  To rotate key, one has to restart nghttpx (see
 SIGNALS).
 CERTIFICATE TRANSPARENCY
 ------------------------
 nghttpx supports TLS ``signed_certificate_timestamp`` extension (`RFC
 6962 <https://tools.ietf.org/html/rfc6962>`_).  The relevant options
 are :option:`--tls-sct-dir` and ``sct-dir`` parameter in
 :option:`--subcert`.  They takes a directory, and nghttpx reads all
 files whose extension is ``.sct`` under the directory.  The ``*.sct``
 files are encoded as ``SignedCertificateTimestamp`` struct described
 in `section 3.2 of RFC 69662
 <https://tools.ietf.org/html/rfc6962#section-3.2>`_.  This format is
 the same one used by `nginx-ct
 <https://github.com/grahamedgecombe/nginx-ct>`_ and `mod_ssl_ct
 <https://httpd.apache.org/docs/trunk/mod/mod_ssl_ct.html>`_.
 `ct-submit <https://github.com/grahamedgecombe/ct-submit>`_ can be
 used to submit certificates to log servers, and obtain the
 ``SignedCertificateTimestamp`` struct which can be used with nghttpx.
 MRUBY SCRIPTING
 ---------------
@@ -337,28 +257,7 @@ respectively.
    .. rb:attr_reader:: remote_addr
-        Return IP address of a remote client.  If connection is made
+        Return IP address of a remote client.
        via UNIX domain socket, this returns the string "localhost".
    .. rb:attr_reader:: server_addr
        Return address of server that accepted the connection.  This
 	is a string which specified in :option:`--frontend` option,
 	excluding port number, and not a resolved IP address.  For
 	UNIX domain socket, this is a path to UNIX domain socket.
    .. rb:attr_reader:: server_port
        Return port number of the server frontend which accepted the
        connection from client.
    .. rb:attr_reader:: tls_used
        Return true if TLS is used on the connection.
    .. rb:attr_reader:: tls_sni
        Return the TLS SNI value which client sent in this connection.
 .. rb:class:: Request
@@ -394,13 +293,7 @@ respectively.
        Request path, including query component (i.e., /index.html).
        On assignment, copy of given value is assigned.  The path does
-        not include authority component of URI.  This may include
+        not include authority component of URI.
        query component.  nghttpx makes certain normalization for
        path.  It decodes percent-encoding for unreserved characters
        (see https://tools.ietf.org/html/rfc3986#section-2.3), and
        resolves ".." and ".".  But it may leave characters which
        should be percent-encoded as is. So be careful when comparing
        path against desired string.
    .. rb:attr_reader:: headers
@@ -427,7 +320,7 @@ respectively.
        Clear all existing request header fields.
-    .. rb:method:: push(uri)
+    .. rb:method:: push uri
        Initiate to push resource identified by *uri*.  Only HTTP/2
        protocol supports this feature.  For the other protocols, this
@@ -502,18 +395,6 @@ respectively.
        existing header fields, and then add required header fields.
        It is an error to call this method twice for a given request.
    .. rb:method:: send_info(status, headers)
        Send non-final (informational) response to a client.  *status*
        must be in the range [100, 199], inclusive.  *headers* is a
        hash containing response header fields.  Its key must be a
        string, and the associated value must be either string or
        array of strings.  Since this is not a final response, even if
        this method is invoked, request is still forwarded to a
        backend unless :rb:meth:`Nghttpx::Response#return` is called.
        This method can be called multiple times.  It cannot be called
        after :rb:meth:`Nghttpx::Response#return` is called.
 MRUBY EXAMPLES
 ~~~~~~~~~~~~~~
@@ -550,84 +431,6 @@ addresses:
    App.new
 API ENDPOINTS
 -------------
 nghttpx exposes API endpoints to manipulate it via HTTP based API.  By
 default, API endpoint is disabled.  To enable it, add a dedicated
 frontend for API using :option:`--frontend` option with "api"
 parameter.  All requests which come from this frontend address, will
 be treated as API request.
 The response is normally JSON dictionary, and at least includes the
 following keys:
 status
  The status of the request processing.  The following values are
  defined:
  Success
    The request was successful.
  Failure
    The request was failed.  No change has been made.
 code
  HTTP status code
 Additionally, depending on the API endpoint, ``data`` key may be
 present, and its value contains the API endpoint specific data.
 We wrote "normally", since nghttpx may return ordinal HTML response in
 some cases where the error has occurred before reaching API endpoint
 (e.g., header field is too large).
 The following section describes available API endpoints.
 POST /api/v1beta1/backendconfig
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 This API replaces the current backend server settings with the
 requested ones.  The request method should be POST, but PUT is also
 acceptable.  The request body must be nghttpx configuration file
 format.  For configuration file format, see `FILES`_ section.  The
 line separator inside the request body must be single LF (0x0A).
 Currently, only :option:`backend <--backend>` option is parsed, the
 others are simply ignored.  The semantics of this API is replace the
 current backend with the backend options in request body.  Describe
 the desired set of backend severs, and nghttpx makes it happen.  If
 there is no :option:`backend <--backend>` option is found in request
 body, the current set of backend is replaced with the :option:`backend
 <--backend>` option's default value, which is ``127.0.0.1,80``.
 The replacement is done instantly without breaking existing
 connections or requests.  It also avoids any process creation as is
 the case with hot swapping with signals.
 The one limitation is that only numeric IP address is allowd in
 :option:`backend <--backend>` in request body unless "dns" parameter
 is used while non numeric hostname is allowed in command-line or
 configuration file is read using :option:`--conf`.
 GET /api/v1beta1/configrevision
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 This API returns configuration revision of the current nghttpx.  The
 configuration revision is opaque string, and it changes after each
 reloading by SIGHUP.  With this API, an external application knows
 that whether nghttpx has finished reloading its configuration by
 comparing the configuration revisions between before and after
 reloading.  It is recommended to disable persistent (keep-alive)
 connection for this purpose in order to avoid to send a request using
 the reused connection which may bound to an old process.
 This API returns response including ``data`` key.  Its value is JSON
 object, and it contains at least the following key:
 configRevision
  The configuration revision of the current nghttpx
 SEE ALSO
 --------
--- a/doc/programmers-guide.rst
+++ b/doc/programmers-guide.rst
@@ -1,79 +1,6 @@
 Programmers' Guide
 ==================
 Architecture
 ------------
 The most notable point in nghttp2 library architecture is it does not
 perform any I/O.  nghttp2 only performs HTTP/2 protocol stuff based on
 input byte strings.  It will calls callback functions set by
 applications while processing input.  The output of nghttp2 is just
 byte string.  An application is responsible to send these output to
 the remote peer.  The callback functions may be called while producing
 output.
 Not doing I/O makes embedding nghttp2 library in the existing code
 base very easy.  Usually, the existing applications have its own I/O
 event loops.  It is very hard to use nghttp2 in that situation if
 nghttp2 does its own I/O.  It also makes light weight language wrapper
 for nghttp2 easy with the same reason.  The down side is that an
 application author has to write more code to write complete
 application using nghttp2.  This is especially true for simple "toy"
 application.  For the real applications, however, this is not the
 case.  This is because you probably want to support HTTP/1 which
 nghttp2 does not provide, and to do that, you will need to write your
 own HTTP/1 stack or use existing third-party library, and bind them
 together with nghttp2 and I/O event loop.  In this point, not
 performing I/O in nghttp2 has more point than doing it.
 The primary object that an application uses is :type:`nghttp2_session`
 object, which is opaque struct and its details are hidden in order to
 ensure the upgrading its internal architecture without breaking the
 backward compatibility.  An application can set callbacks to
 :type:`nghttp2_session` object through the dedicated object and
 functions, and it also interacts with it via many API function calls.
 An application can create as many :type:`nghttp2_session` object as it
 wants.  But single :type:`nghttp2_session` object must be used by a
 single thread at the same time.  This is not so hard to enforce since
 most event-based architecture applications use is single thread per
 core, and handling one connection I/O is done by single thread.
 To feed input to :type:`nghttp2_session` object, one can use
 `nghttp2_session_recv()` or `nghttp2_session_mem_recv()` functions.
 They behave similarly, and the difference is that
 `nghttp2_session_recv()` will use :type:`nghttp2_read_callback` to get
 input.  On the other hand, `nghttp2_session_mem_recv()` will take
 input as its parameter.  If in doubt, use `nghttp2_session_mem_recv()`
 since it is simpler, and could be faster since it avoids calling
 callback function.
 To get output from :type:`nghttp2_session` object, one can use
 `nghttp2_session_send()` or `nghttp2_session_mem_send()`.  The
 difference between them is that the former uses
 :type:`nghttp2_send_callback` to pass output to an application.  On
 the other hand, the latter returns the output to the caller.  If in
 doubt, use `nghttp2_session_mem_send()` since it is simpler.  But
 `nghttp2_session_send()` might be easier to use if the output buffer
 an application has is fixed sized.
 In general, an application should call `nghttp2_session_mem_send()`
 when it gets input from underlying connection.  Since there is great
 chance to get something pushed into transmission queue while the call
 of `nghttp2_session_mem_send()`, it is recommended to call
 `nghttp2_session_mem_recv()` after `nghttp2_session_mem_send()`.
 There is a question when we are safe to close HTTP/2 session without
 waiting for the closure of underlying connection.  We offer 2 API
 calls for this: `nghttp2_session_want_read()` and
 `nghttp2_session_want_write()`.  If they both return 0, application
 can destroy :type:`nghttp2_session`, and then close the underlying
 connection.  But make sure that the buffered output has been
 transmitted to the peer before closing the connection when
 `nghttp2_session_mem_send()` is used, since
 `nghttp2_session_want_write()` does not take into account the
 transmission of the buffered data outside of :type:`nghttp2_session`.
 Includes
 --------
@@ -116,10 +43,7 @@ briefly describe what the library does in this area.  In the following
 description, without loss of generality we omit CONTINUATION frame
 since they must follow HEADERS frame and are processed atomically.  In
 other words, they are just one big HEADERS frame.  To disable these
-validations, use `nghttp2_option_set_no_http_messaging()`.  Please
+validations, use `nghttp2_option_set_no_http_messaging()`.
 note that disabling this feature does not change the fundamental
 client and server model of HTTP.  That is, even if the validation is
 disabled, only client can send requests.
 For HTTP request, including those carried by PUSH_PROMISE, HTTP
 message starts with one HEADERS frame containing request headers.  It
@@ -152,11 +76,13 @@ header fields must not appear: "Connection", "Keep-Alive",
 Each header field name and value must obey the field-name and
 field-value production rules described in `RFC 7230, section
 3.2. <https://tools.ietf.org/html/rfc7230#section-3.2>`_.
-Additionally, all field name must be lower cased.  The invalid header
+Additionally, all field name must be lower cased.  While the pseudo
-fields are treated as stream error, and that stream is reset.  If
+header fields must satisfy these rules, we just ignore illegal regular
-application wants to treat these headers in their own way, use
+headers (this means that these header fields are not passed to
-`nghttp2_on_invalid_header_callback
+application callback).  This is because these illegal header fields
-<https://nghttp2.org/documentation/types.html#c.nghttp2_on_invalid_header_callback>`_.
+are floating around in existing internet and resetting stream just
 because of this may break many web sites.  This is especially true if
 we forward to or translate from HTTP/1 traffic.
 For "http" or "https" URIs, ":path" pseudo header fields must start
 with "/".  The only exception is OPTIONS request, in that case, "*" is
@@ -174,308 +100,6 @@ parsed as 64 bit signed integer.  The sum of data length in the
 following DATA frames must match with the number in "Content-Length"
 header field if it is present (this does not include padding bytes).
 RFC 7230 says that server must not send "Content-Length" in any
 response with 1xx, and 204 status code.  It also says that
 "Content-Length" is not allowed in any response with 200 status code
 to a CONNECT request.  nghttp2 enforces them as well.
 Any deviation results in stream error of type PROTOCOL_ERROR.  If
 error is found in PUSH_PROMISE frame, stream error is raised against
 promised stream.
 The order of transmission of the HTTP/2 frames
 ----------------------------------------------
 This section describes the internals of libnghttp2 about the
 scheduling of transmission of HTTP/2 frames.  This is pretty much
 internal stuff, so the details could change in the future versions of
 the library.
 libnghttp2 categorizes HTTP/2 frames into 4 categories: urgent,
 regular, syn_stream, and data in the order of higher priority.
 The urgent category includes PING and SETTINGS.  They are sent with
 highest priority.  The order inside the category is FIFO.
 The regular category includes frames other than PING, SETTINGS, DATA,
 and HEADERS which does not create stream (which counts toward
 concurrent stream limit).  The order inside the category is FIFO.
 The syn_stream category includes HEADERS frame which creates stream,
 that counts toward the concurrent stream limit.
 The data category includes DATA frame, and the scheduling among DATA
 frames are determined by HTTP/2 dependency tree.
 If the application wants to send frames in the specific order, and the
 default transmission order does not fit, it has to schedule frames by
 itself using the callbacks (e.g.,
 :type:`nghttp2_on_frame_send_callback`).
 RST_STREAM has special side effect when it is submitted by
 `nghttp2_submit_rst_stream()`.  It cancels all pending HEADERS and
 DATA frames whose stream ID matches the one in the RST_STREAM frame.
 This may cause unexpected behaviour for the application in some cases.
 For example, suppose that application wants to send RST_STREAM after
 sending response HEADERS and DATA.  Because of the reason we mentioned
 above, the following code does not work:
 .. code-block:: c
    nghttp2_submit_response(...)
    nghttp2_submit_rst_stream(...)
 RST_STREAM cancels HEADERS (and DATA), and just RST_STREAM is sent.
 The correct way is use :type:`nghttp2_on_frame_send_callback`, and
 after HEADERS and DATA frames are sent, issue
 `nghttp2_submit_rst_stream()`.  FYI,
 :type:`nghttp2_on_frame_not_send_callback` tells you why frames are
 not sent.
 Implement user defined HTTP/2 non-critical extensions
 -----------------------------------------------------
 As of nghttp2 v1.8.0, we have added HTTP/2 non-critical extension
 framework, which lets application send and receive user defined custom
 HTTP/2 non-critical extension frames.  nghttp2 also offers built-in
 functionality to send and receive official HTTP/2 extension frames
 (e.g., ALTSVC frame).  For these built-in handler, refer to the next
 section.
 To send extension frame, use `nghttp2_submit_extension()`, and
 implement :type:`nghttp2_pack_extension_callback`.  The callback
 implements how to encode data into wire format.  The callback must be
 set to :type:`nghttp2_session_callbacks` using
 `nghttp2_session_callbacks_set_pack_extension_callback()`.
 For example, we will illustrate how to send `ALTSVC
 <https://tools.ietf.org/html/draft-ietf-httpbis-alt-svc-14>`_ frame.
 .. code-block:: c
    typedef struct {
      const char *origin;
      const char *field;
    } alt_svc;
    ssize_t pack_extension_callback(nghttp2_session *session, uint8_t *buf,
                                    size_t len, const nghttp2_frame *frame,
                                    void *user_data) {
      const alt_svc *altsvc = (const alt_svc *)frame->ext.payload;
      size_t originlen = strlen(altsvc->origin);
      size_t fieldlen = strlen(altsvc->field);
      uint8_t *p;
      if (len < 2 + originlen + fieldlen || originlen > 0xffff) {
        return NGHTTP2_ERR_CANCEL;
      }
      p = buf;
      *p++ = originlen >> 8;
      *p++ = originlen & 0xff;
      memcpy(p, altsvc->origin, originlen);
      p += originlen;
      memcpy(p, altsvc->field, fieldlen);
      p += fieldlen;
      return p - buf;
    }
 This implements :type:`nghttp2_pack_extension_callback`.  We have to
 set this callback to :type:`nghttp2_session_callbacks`:
 .. code-block:: c
    nghttp2_session_callbacks_set_pack_extension_callback(
        callbacks, pack_extension_callback);
 To send ALTSVC frame, call `nghttp2_submit_extension()`:
 .. code-block:: c
  static const alt_svc altsvc = {"example.com", "h2=\":8000\""};
  nghttp2_submit_extension(session, 0xa, NGHTTP2_FLAG_NONE, 0,
                           (void *)&altsvc);
 Notice that ALTSVC is use frame type ``0xa``.
 To receive extension frames, implement 2 callbacks:
 :type:`nghttp2_unpack_extension_callback` and
 :type:`nghttp2_on_extension_chunk_recv_callback`.
 :type:`nghttp2_unpack_extension_callback` implements the way how to
 decode wire format.  :type:`nghttp2_on_extension_chunk_recv_callback`
 implements how to buffer the incoming extension payload.  These
 callbacks must be set using
 `nghttp2_session_callbacks_set_unpack_extension_callback()` and
 `nghttp2_session_callbacks_set_on_extension_chunk_recv_callback()`
 respectively.  The application also must tell the library which
 extension frame type it is willing to receive using
 `nghttp2_option_set_user_recv_extension_type()`.  Note that the
 application has to create :type:`nghttp2_option` object for that
 purpose, and initialize session with it.
 We use ALTSVC again to illustrate how to receive extension frames.  We
 use different ``alt_svc`` struct than the previous one.
 First implement 2 callbacks.  We store incoming ALTSVC payload to
 global variable ``altsvc_buffer``.  Don't do this in production code
 since this is not thread safe:
 .. code-block:: c
    typedef struct {
      const uint8_t *origin;
      size_t originlen;
      const uint8_t *field;
      size_t fieldlen;
    } alt_svc;
    /* buffers incoming ALTSVC payload */
    uint8_t altsvc_buffer[4096];
    /* The length of byte written to altsvc_buffer */
    size_t altsvc_bufferlen = 0;
    int on_extension_chunk_recv_callback(nghttp2_session *session,
                                         const nghttp2_frame_hd *hd,
                                         const uint8_t *data, size_t len,
                                         void *user_data) {
      if (sizeof(altsvc_buffer) < altsvc_bufferlen + len) {
        altsvc_bufferlen = 0;
        return NGHTTP2_ERR_CANCEL;
      }
      memcpy(altsvc_buffer + altsvc_bufferlen, data, len);
      altsvc_bufferlen += len;
      return 0;
    }
    int unpack_extension_callback(nghttp2_session *session, void **payload,
                                  const nghttp2_frame_hd *hd, void *user_data) {
      uint8_t *origin, *field;
      size_t originlen, fieldlen;
      uint8_t *p, *end;
      alt_svc *altsvc;
      if (altsvc_bufferlen < 2) {
        altsvc_bufferlen = 0;
        return NGHTTP2_ERR_CANCEL;
      }
      p = altsvc_buffer;
      end = altsvc_buffer + altsvc_bufferlen;
      originlen = ((*p) << 8) + *(p + 1);
      p += 2;
      if (p + originlen > end) {
        altsvc_bufferlen = 0;
        return NGHTTP2_ERR_CANCEL;
      }
      origin = p;
      field = p + originlen;
      fieldlen = end - field;
      altsvc = (alt_svc *)malloc(sizeof(alt_svc));
      altsvc->origin = origin;
      altsvc->originlen = originlen;
      altsvc->field = field;
      altsvc->fieldlen = fieldlen;
      *payload = altsvc;
      altsvc_bufferlen = 0;
      return 0;
    }
 Set these callbacks to :type:`nghttp2_session_callbacks`:
 .. code-block:: c
    nghttp2_session_callbacks_set_on_extension_chunk_recv_callback(
        callbacks, on_extension_chunk_recv_callback);
    nghttp2_session_callbacks_set_unpack_extension_callback(
        callbacks, unpack_extension_callback);
 In ``unpack_extension_callback`` above, we set unpacked ``alt_svc``
 object to ``*payload``.  nghttp2 library then, calls
 :type:`nghttp2_on_frame_recv_callback`, and ``*payload`` will be
 available as ``frame->ext.payload``:
 .. code-block:: c
    int on_frame_recv_callback(nghttp2_session *session,
                               const nghttp2_frame *frame, void *user_data) {
      switch (frame->hd.type) {
      ...
      case 0xa: {
        alt_svc *altsvc = (alt_svc *)frame->ext.payload;
        fprintf(stderr, "ALTSVC frame received\n");
        fprintf(stderr, " origin: %.*s\n", (int)altsvc->originlen, altsvc->origin);
        fprintf(stderr, " field : %.*s\n", (int)altsvc->fieldlen, altsvc->field);
        free(altsvc);
        break;
      }
      }
      return 0;
    }
 Finally, application should set the extension frame types it is
 willing to receive:
 .. code-block:: c
    nghttp2_option_set_user_recv_extension_type(option, 0xa);
 The :type:`nghttp2_option` must be set to :type:`nghttp2_session` on
 its creation:
 .. code-block:: c
    nghttp2_session_client_new2(&session, callbacks, user_data, option);
 How to use built-in HTTP/2 extension frame handlers
 ---------------------------------------------------
 In the previous section, we talked about the user defined HTTP/2
 extension frames.  In this section, we talk about HTTP/2 extension
 frame support built into nghttp2 library.
 As of this writing, nghttp2 supports ALTSVC extension frame.  To send
 ALTSVC frame, use `nghttp2_submit_altsvc()` function.
 To receive ALTSVC frame through built-in functionality, application
 has to use `nghttp2_option_set_builtin_recv_extension_type()` to
 indicate the willingness of receiving ALTSVC frame:
 .. code-block:: c
    nghttp2_option_set_builtin_recv_extension_type(option, NGHTTP2_ALTSVC);
 This is very similar to the case when we used to receive user defined
 frames.
 If the same frame type is set using
 `nghttp2_option_set_builtin_recv_extension_type()` and
 `nghttp2_option_set_user_recv_extension_type()`, the latter takes
 precedence.  Application can implement its own frame handler rather
 than using built-in handler.
 The :type:`nghttp2_option` must be set to :type:`nghttp2_session` on
 its creation, like so:
 .. code-block:: c
    nghttp2_session_client_new2(&session, callbacks, user_data, option);
 When ALTSVC is received, :type:`nghttp2_on_frame_recv_callback` will
 be called as usual.
--- a/doc/sources/building-android-binary.rst
+++ b/doc/sources/building-android-binary.rst
@@ -2,7 +2,7 @@ Building Android binary
 =======================
 In this article, we briefly describe how to build Android binary using
-`Android NDK <https://developer.android.com/ndk/index.html>`_
+`Android NDK <http://developer.android.com/tools/sdk/ndk/index.html>`_
 cross-compiler on Debian Linux.
 The easiest way to build android binary is use Dockerfile.android.
@@ -17,32 +17,35 @@ installed in the following way.  First, let us introduce
 under ``$ANDROID_HOME/toolchain``.  An user can freely choose the path
 for ``ANDROID_HOME``.  For example, to install toolchain under
 ``$ANDROID_HOME/toolchain``, do this in the the directory where NDK is
-unpacked:
+unpacked::
-.. code-block:: text
+    $ build/tools/make-standalone-toolchain.sh \
      --install-dir=$ANDROID_HOME/toolchain \
      --toolchain=arm-linux-androideabi-4.9 \
      --llvm-version=3.5 \
      --platform=android-16
-    $ build/tools/make_standalone_toolchain.py \
+The additional flag ``--system=linux-x86_64`` may be required if you
-      --arch arm --api 16 --stl gnustl \
+are using x86_64 system.
      --install-dir $ANDROID_HOME/toolchain
-The API level (``--api``) is not important here because we don't use
+The platform level is not important here because we don't use Android
-Android specific C/C++ API.
+specific C/C++ API.
-The dependent libraries, such as OpenSSL, libev, and c-ares should be
+The dependent libraries, such as OpenSSL and libev should be built
-built with the toolchain and installed under
+with the toolchain and installed under ``$ANDROID_HOME/usr/local``.
-``$ANDROID_HOME/usr/local``.  We recommend to build these libraries as
+We recommend to build these libraries as static library to make the
-static library to make the deployment easier.  libxml2 support is
+deployment easier.  libxml2 support is currently disabled.
 currently disabled.
 Although zlib comes with Android NDK, it seems not to be a part of
 public API, so we have to built it for our own.  That also provides us
 proper .pc file as a bonus.
 If SPDY support is required for nghttpx and h2load, build and install
 spdylay as well.
 Before running ``android-config`` and ``android-make``,
 ``ANDROID_HOME`` environment variable must be set to point to the
-correct path.  Also add ``$ANDROID_HOME/toolchain/bin`` to ``PATH``:
+correct path.  Also add ``$ANDROID_HOME/toolchain/bin`` to ``PATH``::
 .. code-block:: text
    $ export PATH=$PATH:$ANDROID_HOME/toolchain/bin
@@ -94,26 +97,6 @@ patch, to configure libev, use the following script:
 And run ``make install`` to build and install.
 To configure c-ares, use the following script:
 .. code-block:: sh
    #!/bin/sh -e
    if [ -z "$ANDROID_HOME" ]; then
        echo 'No $ANDROID_HOME specified.'
        exit 1
    fi
    PREFIX=$ANDROID_HOME/usr/local
    TOOLCHAIN=$ANDROID_HOME/toolchain
    PATH=$TOOLCHAIN/bin:$PATH
    ./configure \
        --host=arm-linux-androideabi \
        --build=`dpkg-architecture -qDEB_BUILD_GNU_TYPE` \
        --prefix=$PREFIX \
        --disable-shared
 To configure zlib, use the following script:
 .. code-block:: sh
@@ -143,13 +126,39 @@ To configure zlib, use the following script:
 And run ``make install`` to build and install.
 To configure spdylay, use the following script:
 .. code-block:: sh
    #!/bin/sh -e
    if [ -z "$ANDROID_HOME" ]; then
 	echo 'No $ANDROID_HOME specified.'
 	exit 1
    fi
    PREFIX=$ANDROID_HOME/usr/local
    TOOLCHAIN=$ANDROID_HOME/toolchain
    PATH=$TOOLCHAIN/bin:$PATH
    ./configure \
 	--disable-shared \
 	--host=arm-linux-androideabi \
 	--build=`dpkg-architecture -qDEB_BUILD_GNU_TYPE` \
 	--prefix=$PREFIX \
 	--without-libxml2 \
 	--disable-src \
 	--disable-examples \
 	CPPFLAGS="-I$PREFIX/include" \
 	PKG_CONFIG_LIBDIR="$PREFIX/lib/pkgconfig" \
 	LDFLAGS="-L$PREFIX/lib"
 And run ``make install`` to build and install.
 After prerequisite libraries are prepared, run ``android-config`` and
 then ``android-make`` to compile nghttp2 source files.
 If all went well, application binaries, such as nghttpx, are created
 under src directory.  Strip debugging information from the binary
-using the following command:
+using the following command::
 .. code-block:: text
    $ arm-linux-androideabi-strip src/nghttpx
--- a/doc/sources/contribute.rst
+++ b/doc/sources/contribute.rst
@@ -26,7 +26,8 @@ Coding style
 We use clang-format to format source code consistently.  The
 clang-format configuration file .clang-format is located at the root
 directory.  Since clang-format produces slightly different results
-between versions, we currently use clang-format 4.0.
+between versions, we currently use clang-format which comes with
 clang-3.6.
 To detect any violation to the coding style, we recommend to setup git
 pre-commit hook to check coding style of the changes you introduced.
@@ -34,7 +35,7 @@ The pre-commit file is located at the root directory.  Copy it under
 .git/hooks and make sure that it is executable.  The pre-commit script
 uses clang-format-diff.py to detect any style errors.  If it is not in
 your PATH or it exists under different name (e.g.,
-clang-format-diff-4.0 in debian), either add it to PATH variable or
+clang-format-diff-3.6 in debian), either add it to PATH variable or
 add git option ``clangformatdiff.binary`` to point to the script.
 For emacs users, integrating clang-format to emacs is very easy.
--- a/doc/sources/h2load-howto.rst
+++ b/doc/sources/h2load-howto.rst
@@ -1,43 +1,33 @@
 .. program:: h2load
 h2load - HTTP/2 benchmarking tool - HOW-TO
 ==========================================
-:doc:`h2load.1` is benchmarking tool for HTTP/2 and HTTP/1.1.  If
+h2load is benchmarking tool for HTTP/2 and HTTP/1.1.  If built with
-built with spdylay (http://tatsuhiro-t.github.io/spdylay/) library, it
+spdylay (http://tatsuhiro-t.github.io/spdylay/) library, it also
-also supports SPDY protocol.  It supports SSL/TLS and clear text for
+supports SPDY protocol.  It supports SSL/TLS and clear text for all
-all supported protocols.
+supported protocols.
 Compiling from source
 ---------------------
 h2load is compiled alongside nghttp2 and requires that the
 ``--enable-app`` flag is passed to ``./configure`` and `required
 dependencies <https://github.com/nghttp2/nghttp2#requirements>`_ are
 available during compilation. For details on compiling, see `nghttp2:
 Building from Git
 <https://github.com/nghttp2/nghttp2#building-from-git>`_.
 Basic Usage
 -----------
 In order to set benchmark settings, specify following 3 options.
-:option:`-n`
+``-n``
    The number of total requests.  Default: 1
-:option:`-c`
+``-c``
    The number of concurrent clients.  Default: 1
-:option:`-m`
+``-m``
-   The max concurrent streams to issue per client.  Default: 1
+   The max concurrent streams to issue per client.
   If ``auto`` is given, the number of given URIs is used.
   Default: ``auto``
 For SSL/TLS connection, the protocol will be negotiated via ALPN/NPN.
-You can set specific protocols in :option:`--npn-list` option.  For
+You can set specific protocols in ``--npn-list`` option.  For
 cleartext connection, the default protocol is HTTP/2.  To change the
-protocol in cleartext connection, use :option:`--no-tls-proto` option.
+protocol in cleartext connection, use ``--no-tls-proto`` option.  For
-For convenience, :option:`--h1` option forces HTTP/1.1 for both
+convenience, ``--h1`` option forces HTTP/1.1 for both cleartext and
-cleartext and SSL/TLS connections.
+SSL/TLS connections.
 Here is a command-line to perform benchmark to URI \https://localhost
 using total 100000 requests, 100 concurrent clients and 10 max
@@ -72,11 +62,11 @@ benchmarking results.  By default, h2load uses large enough flow
 control window, which effectively disables flow control.  To adjust
 receiver flow control window size, there are following options:
-:option:`-w`
+``-w``
   Sets  the stream  level  initial  window size  to
   (2**<N>)-1.  For SPDY, 2**<N> is used instead.
-:option:`-W`
+``-W``
   Sets the connection level  initial window size to
   (2**<N>)-1.  For  SPDY, if  <N> is  strictly less
   than  16,  this  option  is  ignored.   Otherwise
@@ -86,17 +76,17 @@ Multi-Threading
 ---------------
 Sometimes benchmarking client itself becomes a bottleneck.  To remedy
-this situation, use :option:`-t` option to specify the number of native
+this situation, use ``-t`` option to specify the number of native
 thread to use.
-:option:`-t`
+``-t``
    The number of native threads. Default: 1
 Selecting protocol for clear text
 ---------------------------------
 By default, if \http:// URI is given, HTTP/2 protocol is used.  To
-change the protocol to use for clear text, use :option:`-p` option.
+change the protocol to use for clear text, use ``-p`` option.
 Multiple URIs
 -------------
@@ -107,12 +97,3 @@ If multiple URIs are specified, they are used in round robin manner.
    Please note that h2load uses scheme, host and port in the first URI
    and ignores those parts in the rest of the URIs.
 UNIX domain socket
 ------------------
 To request against UNIX domain socket, use :option:`--base-uri`, and
 specify ``unix:`` followed by the path to UNIX domain socket.  For
 example, if UNIX domain socket is ``/tmp/nghttpx.sock``, use
 ``--base-uri=unix:/tmp/nghttpx.sock``.  h2load uses scheme, host and
 port in the first URI in command-line or input file.
--- a/doc/sources/index.rst
+++ b/doc/sources/index.rst
@@ -8,8 +8,7 @@ nghttp2 - HTTP/2 C Library
 This is an implementation of Hypertext Transfer Protocol version 2.
-The project is hosted at `github.com/nghttp2/nghttp2
+The project is hosted at `github.com/tatsuhiro-t/nghttp2 <https://github.com/tatsuhiro-t/nghttp2>`_.
 <https://github.com/nghttp2/nghttp2>`_.
 Contents:
@@ -37,18 +36,17 @@ Contents:
   asio_http2_server.h
   asio_http2_client.h
   asio_http2.h
-   Source <https://github.com/nghttp2/nghttp2>
+   Source <https://github.com/tatsuhiro-t/nghttp2>
-   Issues <https://github.com/nghttp2/nghttp2/issues>
+   Issues <https://github.com/tatsuhiro-t/nghttp2/issues>
   nghttp2.org <https://nghttp2.org/>
 Released Versions
 =================
-https://github.com/nghttp2/nghttp2/releases
+https://github.com/tatsuhiro-t/nghttp2/releases
 Resources
 ---------
 * HTTP/2 https://tools.ietf.org/html/rfc7540
 * HPACK https://tools.ietf.org/html/rfc7541
 * HTTP Alternative Services https://tools.ietf.org/html/rfc7838
--- a/doc/sources/nghttpx-howto.rst
+++ b/doc/sources/nghttpx-howto.rst
@@ -1,101 +1,74 @@
 .. program:: nghttpx
 nghttpx - HTTP/2 proxy - HOW-TO
 ===============================
-:doc:`nghttpx.1` is a proxy translating protocols between HTTP/2 and
+nghttpx is a proxy translating protocols between HTTP/2 and other
-other protocols (e.g., HTTP/1, SPDY).  It operates in several modes
+protocols (e.g., HTTP/1, SPDY).  It operates in several modes and each
-and each mode may require additional programs to work with.  This
+mode may require additional programs to work with.  This article
-article describes each operation mode and explains the intended
+describes each operation mode and explains the intended use-cases.  It
-use-cases.  It also covers some useful options later.
+also covers some useful options later.
 Default mode
 ------------
-If nghttpx is invoked without :option:`--http2-proxy`, it operates in
+If nghttpx is invoked without any ``-s``, ``-p`` and ``--client``, it
-default mode.  In this mode, it works as reverse proxy (gateway) for
+operates in default mode.  In this mode, nghttpx frontend listens for
-both HTTP/2 and HTTP/1 clients to backend servers.  This is also known
+HTTP/2 requests and translates them to HTTP/1 requests.  Thus it works
-as "HTTP/2 router".  If nghttpx is linked with spdylay library and
+as reverse proxy (gateway) for HTTP/2 clients to HTTP/1 web server.
-frontend connection is SSL/TLS, the frontend also supports SPDY
+HTTP/1 requests are also supported in frontend as a fallback.  If
-protocol.
+nghttpx is linked with spdylay library and frontend connection is
 SSL/TLS, the frontend also supports SPDY protocol.
-By default, frontend connection is encrypted using SSL/TLS.  So
+By default, this mode's frontend connection is encrypted using
-server's private key and certificate must be supplied to the command
+SSL/TLS.  So server's private key and certificate must be supplied to
-line (or through configuration file).  In this case, the frontend
+the command line (or through configuration file).  In this case, the
-protocol selection will be done via ALPN or NPN.
+frontend protocol selection will be done via ALPN or NPN.
-To turn off encryption on frontend connection, use ``no-tls`` keyword
+With ``--frontend-no-tls`` option, user can turn off SSL/TLS in
-in :option:`--frontend` option.  In this case, SPDY protocol is not
+frontend connection.  In this case, SPDY protocol is not available
-available even if spdylay library is liked to nghttpx.  HTTP/2 and
+even if spdylay library is liked to nghttpx.  HTTP/2 and HTTP/1 are
-HTTP/1 are available on the frontend, and an HTTP/1 connection can be
+available on the frontend and a HTTP/1 connection can be upgraded to
-upgraded to HTTP/2 using HTTP Upgrade.  Starting HTTP/2 connection by
+HTTP/2 using HTTP Upgrade.  Starting HTTP/2 connection by sending
-sending HTTP/2 connection preface is also supported.
+HTTP/2 connection preface is also supported.
-nghttpx can listen on multiple frontend addresses.  This is achieved
+The backend is supposed to be HTTP/1 Web server.  For example, to make
 by using multiple :option:`--frontend` options.  For each frontend
 address, TLS can be enabled or disabled.
 By default, backend connections are not encrypted.  To enable TLS
 encryption on backend connections, use ``tls`` keyword in
 :option:`--backend` option.  Using patterns and ``proto`` keyword in
 :option:`--backend` option, backend application protocol can be
 specified per host/request path pattern.  It means that you can use
 both HTTP/2 and HTTP/1 in backend connections at the same time.  Note
 that default backend protocol is HTTP/1.1.  To use HTTP/2 in backend,
 you have to specify ``h2`` in ``proto`` keyword in :option:`--backend`
 explicitly.
 The backend is supposed to be Web server.  For example, to make
 nghttpx listen to encrypted HTTP/2 requests at port 8443, and a
-backend Web server is configured to listen to HTTP request at port
+backend HTTP/1 web server is configured to listen to HTTP/1 request at
-8080 in the same host, run nghttpx command-line like this:
+port 8080 in the same host, run nghttpx command-line like this::
 .. code-block:: text
    $ nghttpx -f0.0.0.0,8443 -b127.0.0.1,8080 /path/to/server.key /path/to/server.crt
 Then HTTP/2 enabled client can access to the nghttpx in HTTP/2.  For
-example, you can send GET request to the server using nghttp:
+example, you can send GET request to the server using nghttp::
 .. code-block:: text
    $ nghttp -nv https://localhost:8443/
 HTTP/2 proxy mode
 -----------------
-If nghttpx is invoked with :option:`--http2-proxy` (or its shorthand
+If nghttpx is invoked with ``-s`` option, it operates in HTTP/2 proxy
-:option:`-s`) option, it operates in HTTP/2 proxy mode.  The supported
+mode.  The supported protocols in frontend and backend connections are
-protocols in frontend and backend connections are the same in `default
+the same in `default mode`_.  The difference is that this mode acts
-mode`_.  The difference is that this mode acts like forward proxy and
+like forward proxy and assumes the backend is HTTP/1 proxy server
-assumes the backend is HTTP proxy server (e.g., Squid, Apache Traffic
+(e.g., squid, traffic server).  So HTTP/1 request must include
-Server).  HTTP/1 request must include absolute URI in request line.
+absolute URI in request line.
 By default, frontend connection is encrypted.  So this mode is also
 called secure proxy.  If nghttpx is linked with spdylay, it supports
 SPDY protocols and it works as so called SPDY proxy.
-To turn off encryption on frontend connection, use ``no-tls`` keyword
+With ``--frontend-no-tls`` option, SSL/TLS is turned off in frontend
-in :option:`--frontend` option.
+connection, so the connection gets insecure.
-The backend must be HTTP proxy server.  nghttpx supports multiple
+The backend must be HTTP/1 proxy server.  nghttpx supports multiple
-backend server addresses.  It translates incoming requests to HTTP
+backend server addresses.  It translates incoming requests to HTTP/1
 request to backend server.  The backend server performs real proxy
 work for each request, for example, dispatching requests to the origin
 server and caching contents.
 The backend connection is not encrypted by default.  To enable
 encryption, use ``tls`` keyword in :option:`--backend` option.  The
 default backend protocol is HTTP/1.1.  To use HTTP/2 in backend
 connection, use :option:`--backend` option, and specify ``h2`` in
 ``proto`` keyword explicitly.
 For example, to make nghttpx listen to encrypted HTTP/2 requests at
-port 8443, and a backend HTTP proxy server is configured to listen to
+port 8443, and a backend HTTP/1 proxy server is configured to listen
-HTTP/1 request at port 8080 in the same host, run nghttpx command-line
+to HTTP/1 request at port 8080 in the same host, run nghttpx
-like this:
+command-line like this::
 .. code-block:: text
    $ nghttpx -s -f'*,8443' -b127.0.0.1,8080 /path/to/server.key /path/to/server.crt
@@ -118,78 +91,152 @@ Chromium require valid certificate for secure proxy.
 For Firefox, open Preference window and select Advanced then click
 Network tab.  Clicking Connection Settings button will show the
 dialog.  Select "Automatic proxy configuration URL" and enter the path
-to proxy.pac file, something like this:
+to proxy.pac file, something like this::
 .. code-block:: text
    file:///path/to/proxy.pac
-For Chromium, use following command-line:
+For Chromium, use following command-line::
 .. code-block:: text
    $ google-chrome --proxy-pac-url=file:///path/to/proxy.pac --use-npn
 As HTTP/1 proxy server, Squid may work as out-of-box.  Traffic server
 requires to be configured as forward proxy.  Here is the minimum
-configuration items to edit:
+configuration items to edit::
 .. code-block:: text
    CONFIG proxy.config.reverse_proxy.enabled INT 0
    CONFIG proxy.config.url_remap.remap_required INT 0
 Consult Traffic server `documentation
-<http://trafficserver.readthedocs.org/en/latest/admin-guide/configuration/transparent-forward-proxying.en.html>`_
+<https://docs.trafficserver.apache.org/en/latest/admin/forward-proxy.en.html>`_
 to know how to configure traffic server as forward proxy and its
 security implications.
-ALPN support
+Client mode
------------
+-----------
-ALPN support requires OpenSSL >= 1.0.2.
+If nghttpx is invoked with ``--client`` option, it operates in client
 mode.  In this mode, nghttpx listens for plain, unencrypted HTTP/2 and
 HTTP/1 requests and translates them to encrypted HTTP/2 requests to
 the backend.  User cannot enable SSL/TLS in frontend connection.
-Disable frontend SSL/TLS
+HTTP/1 frontend connection can be upgraded to HTTP/2 using HTTP
------------------------
+Upgrade.  To disable SSL/TLS in backend connection, use
 ``--backend-no-tls`` option.
-The frontend connections are encrypted with SSL/TLS by default.  To
+By default, the number of backend HTTP/2 connections per worker
-turn off SSL/TLS, use ``no-tls`` keyword in :option:`--frontend`
+(thread) is determined by number of ``-b`` option.  To adjust this
-option.  If this option is used, the private key and certificate are
+value, use ``--backend-http2-connections-per-worker`` option.
 not required to run nghttpx.
-Enable backend SSL/TLS
+The backend server is supporsed to be a HTTP/2 web server (e.g.,
----------------------
+nghttpd).  The one use-case of this mode is utilize existing HTTP/1
 clients to test HTTP/2 deployment.  Suppose that HTTP/2 web server
 listens to port 80 without encryption.  Then run nghttpx as client
 mode to access to that web server::
-The backend connections are not encrypted by default.  To enable
+    $ nghttpx --client -f127.0.0.1,8080 -b127.0.0.1,80 --backend-no-tls
 SSL/TLS encryption, use ``tls`` keyword in :option:`--backend` option.
-Enable SSL/TLS on memcached connection
+.. note::
 --------------------------------------
-By default, memcached connection is not encrypted.  To enable
+    You may need ``-k`` option if HTTP/2 server enables SSL/TLS and
-encryption, use ``tls`` keyword in
+    its certificate is self-signed. But please note that it is
-:option:`--tls-ticket-key-memcached` for TLS ticket key, and
+    insecure.
 :option:`--tls-session-cache-memcached` for TLS session cache.
-Specifying additional server certificates
+Then you can use curl to access HTTP/2 server via nghttpx::
 -----------------------------------------
-nghttpx accepts additional server private key and certificate pairs
+    $ curl http://localhost:8080/
-using :option:`--subcert` option.  It can be used multiple times.
+
 Client proxy mode
 -----------------
 If nghttpx is invoked with ``-p`` option, it operates in client proxy
 mode.  This mode behaves like `client mode`_, but it works like
 forward proxy.  So HTTP/1 request must include absolute URI in request
 line.
 HTTP/1 frontend connection can be upgraded to HTTP/2 using HTTP
 Upgrade.  To disable SSL/TLS in backend connection, use
 ``--backend-no-tls`` option.
 By default, the number of backend HTTP/2 connections per worker
 (thread) is determined by number of ``-b`` option.  To adjust this
 value, use ``--backend-http2-connections-per-worker`` option.
 The backend server must be a HTTP/2 proxy.  You can use nghttpx in
 `HTTP/2 proxy mode`_ as backend server.  The one use-case of this mode
 is utilize existing HTTP/1 clients to test HTTP/2 connections between
 2 proxies. The another use-case is use this mode to aggregate local
 HTTP/1 connections to one HTTP/2 backend encrypted connection.  This
 makes HTTP/1 clients which does not support secure proxy can use
 secure HTTP/2 proxy via nghttpx client mode.
 Suppose that HTTP/2 proxy listens to port 8443, just like we saw in
 `HTTP/2 proxy mode`_.  To run nghttpx in client proxy mode to access
 that server, invoke nghttpx like this::
    $ nghttpx -p -f127.0.0.1,8080 -b127.0.0.1,8443
 .. note::
    You may need ``-k`` option if HTTP/2 server's certificate is
    self-signed. But please note that it is insecure.
 Then you can use curl to issue HTTP request via HTTP/2 proxy::
    $ curl --http-proxy=http://localhost:8080 http://www.google.com/
 You can configure web browser to use localhost:8080 as forward
 proxy.
 HTTP/2 bridge mode
 ------------------
 If nghttpx is invoked with ``--http2-bridge`` option, it operates in
 HTTP/2 bridge mode.  The supported protocols in frontend connections
 are the same in `default mode`_.  The protocol in backend is HTTP/2
 only.
 With ``--frontend-no-tls`` option, SSL/TLS is turned off in frontend
 connection, so the connection gets insecure.  To disable SSL/TLS in
 backend connection, use ``--backend-no-tls`` option.
 By default, the number of backend HTTP/2 connections per worker
 (thread) is determined by number of ``-b`` option.  To adjust this
 value, use ``--backend-http2-connections-per-worker`` option.
 The backend server is supporsed to be a HTTP/2 web server or HTTP/2
 proxy.  If backend server is HTTP/2 proxy, use
 ``--no-location-rewrite`` and ``--no-host-rewrite`` options to disable
 rewriting location, host and :authority header field.
 The use-case of this mode is aggregate the incoming connections to one
 HTTP/2 connection.  One backend HTTP/2 connection is created per
 worker (thread).
 Disable SSL/TLS
 ---------------
 In `default mode`_, `HTTP/2 proxy mode`_ and `HTTP/2 bridge mode`_,
 frontend connections are encrypted with SSL/TLS by default.  To turn
 off SSL/TLS, use ``--frontend-no-tls`` option.  If this option is
 used, the private key and certificate are not required to run nghttpx.
 In `client mode`_, `client proxy mode`_ and `HTTP/2 bridge mode`_,
 backend connections are encrypted with SSL/TLS by default.  To turn
 off SSL/TLS, use ``--backend-no-tls`` option.
 Specifying additional CA certificate
 ------------------------------------
 By default, nghttpx tries to read CA certificate from system.  But
 depending on the system you use, this may fail or is not supported.
-To specify CA certificate manually, use :option:`--cacert` option.
+To specify CA certificate manually, use ``--cacert`` option.  The
-The specified file must be PEM format and can contain multiple
+specified file must be PEM format and can contain multiple
 certificates.
 By default, nghttpx validates server's certificate.  If you want to
 turn off this validation, knowing this is really insecure and what you
-are doing, you can use :option:`--insecure` option to disable
+are doing, you can use ``-k`` option to disable certificate
-certificate validation.
+validation.
 Read/write rate limit
 ---------------------
@@ -198,9 +245,9 @@ nghttpx supports transfer rate limiting on frontend connections.  You
 can do rate limit per frontend connection for reading and writing
 individually.
-To perform rate limit for reading, use :option:`--read-rate` and
+To perform rate limit for reading, use ``--read-rate`` and
-:option:`--read-burst` options.  For writing, use
+``--read-burst`` options.  For writing, use ``--write-rate`` and
-:option:`--write-rate` and :option:`--write-burst`.
+``--write-burst``.
 Please note that rate limit is performed on top of TCP and nothing to
 do with HTTP/2 flow control.
@@ -211,17 +258,17 @@ Rewriting location header field
 nghttpx automatically rewrites location response header field if the
 following all conditions satisfy:
-* In the default mode (:option:`--http2-proxy` is not used)
+* URI in location header field is not absolute URI or is not https URI.
 * :option:`--no-location-rewrite` is not used
 * URI in location header field is an absolute URI
 * URI in location header field includes non empty host component.
 * host (without port) in URI in location header field must match the
-  host appearing in ``:authority`` or ``host`` header field.
+  host appearing in :authority or host header field.
-When rewrite happens, URI scheme is replaced with the ones used in
+When rewrite happens, URI scheme and port are replaced with the ones
-frontend, and authority is replaced with which appears in
+used in frontend, and host is replaced with which appears in
-``:authority``, or ``host`` request header field.  ``:authority``
+:authority or host request header field.  :authority header field has
-header field has precedence over ``host``.
+precedence.  If the above conditions are not met with the host value
 in :authority header field, rewrite is retried with the value in host
 header field.
 Hot swapping
 ------------
@@ -229,21 +276,12 @@ Hot swapping
 nghttpx supports hot swapping using signals.  The hot swapping in
 nghttpx is multi step process.  First send USR2 signal to nghttpx
 process.  It will do fork and execute new executable, using same
-command-line arguments and environment variables.
+command-line arguments and environment variables.  At this point, both
-
+current and new processes can accept requests.  To gracefully shutdown
-As of nghttpx version 1.20.0, that is all you have to do.  The new
+current process, send QUIT signal to current nghttpx process.  When
-master process sends QUIT signal to the original process, when it is
+all existing frontend connections are done, the current process will
-ready to serve requests, to shut it down gracefully.
+exit.  At this point, only new nghttpx process exists and serves
-
+incoming requests.
 For earlier versions of nghttpx, you have to do one more thing.  At
 this point, both current and new processes can accept requests.  To
 gracefully shutdown current process, send QUIT signal to current
 nghttpx process.  When all existing frontend connections are done, the
 current process will exit.  At this point, only new nghttpx process
 exists and serves incoming requests.
 If you want to just reload configuration file without executing new
 binary, send SIGHUP to nghttpx master process.
 Re-opening log files
 --------------------
@@ -251,275 +289,14 @@ Re-opening log files
 When rotating log files, it is desirable to re-open log files after
 log rotation daemon renamed existing log files.  To tell nghttpx to
 re-open log files, send USR1 signal to nghttpx process.  It will
-re-open files specified by :option:`--accesslog-file` and
+re-open files specified by ``--accesslog-file`` and
-:option:`--errorlog-file` options.
+``--errorlog-file`` options.
 Multiple frontend addresses
 ---------------------------
 nghttpx can listen on multiple frontend addresses.  To specify them,
 just use :option:`--frontend` (or its shorthand :option:`-f`) option
 repeatedly.  TLS can be enabled or disabled per frontend address
 basis.  For example, to listen on port 443 with TLS enabled, and on
 port 80 without TLS:
 .. code-block:: text
   frontend=*,443
   frontend=*,80;no-tls
 Multiple backend addresses
 --------------------------
 nghttpx supports multiple backend addresses.  To specify them, just
-use :option:`--backend` (or its shorthand :option:`-b`) option
+use ``-b`` option repeatedly.  For example, to use backend1:8080 and
-repeatedly.  For example, to use ``192.168.0.10:8080`` and
+backend2:8080, use command-line like this: ``-bbackend1,8080
-``192.168.0.11:8080``, use command-line like this:
+-bbackend2,8080``.  For HTTP/2 backend, see also
-``-b192.168.0.10,8080 -b192.168.0.11,8080``.  In configuration file,
+``--backend-http2-connections-per-worker`` option.
 this looks like:
 .. code-block:: text
   backend=192.168.0.10,8080
   backend=192.168.0.11,8008
 nghttpx can route request to different backend according to request
 host and path.  For example, to route request destined to host
 ``doc.example.com`` to backend server ``docserv:3000``, you can write
 like so:
 .. code-block:: text
   backend=docserv,3000;doc.example.com/
 When you write this option in command-line, you should enclose
 argument with single or double quotes, since the character ``;`` has a
 special meaning in shell.
 To route, request to request path ``/foo`` to backend server
 ``[::1]:8080``, you can write like so:
 .. code-block:: text
   backend=::1,8080;/foo
 If the last character of path pattern is ``/``, all request paths
 which start with that pattern match:
 .. code-block:: text
   backend=::1,8080;/bar/
 The request path ``/bar/buzz`` matches the ``/bar/``.
 You can use ``*`` at the end of the path pattern to make it wildcard
 pattern.  ``*`` must match at least one character:
 .. code-block:: text
   backend=::1,8080;/sample*
 The request path ``/sample1/foo`` matches the ``/sample*`` pattern.
 Of course, you can specify both host and request path at the same
 time:
 .. code-block:: text
   backend=192.168.0.10,8080;example.com/foo
 We can use ``*`` in the left most position of host to achieve wildcard
 suffix match.  If ``*`` is the left most character, then the remaining
 string should match the request host suffix.  ``*`` must match at
 least one character.  For example, ``*.example.com`` matches
 ``www.example.com`` and ``dev.example.com``, and does not match
 ``example.com`` and ``nghttp2.org``.  The exact match (without ``*``)
 always takes precedence over wildcard match.
 One important thing you have to remember is that we have to specify
 default routing pattern for so called "catch all" pattern.  To write
 "catch all" pattern, just specify backend server address, without
 pattern.
 Usually, host is the value of ``Host`` header field.  In HTTP/2, the
 value of ``:authority`` pseudo header field is used.
 When you write multiple backend addresses sharing the same routing
 pattern, they are used as load balancing.  For example, to use 2
 servers ``serv1:3000`` and ``serv2:3000`` for request host
 ``example.com`` and path ``/myservice``, you can write like so:
 .. code-block:: text
   backend=serv1,3000;example.com/myservice
   backend=serv2,3000;example.com/myservice
 You can also specify backend application protocol in
 :option:`--backend` option using ``proto`` keyword after pattern.
 Utilizing this allows ngttpx to route certain request to HTTP/2, other
 requests to HTTP/1.  For example, to route requests to ``/ws/`` in
 backend HTTP/1.1 connection, and use backend HTTP/2 for other
 requests, do this:
 .. code-block:: text
   backend=serv1,3000;/;proto=h2
   backend=serv1,3000;/ws/;proto=http/1.1
 The default backend protocol is HTTP/1.1.
 TLS can be enabled per pattern basis:
 .. code-block:: text
   backend=serv1,8443;/;proto=h2;tls
   backend=serv2,8080;/ws/;proto=http/1.1
 In the above case, connection to serv1 will be encrypted by TLS.  On
 the other hand, connection to serv2 will not be encrypted by TLS.
 Dynamic hostname lookup
 -----------------------
 By default, nghttpx performs backend hostname lookup at start up, or
 configuration reload, and keeps using them in its entire session.  To
 make nghttpx perform hostname lookup dynamically, use ``dns``
 parameter in :option:`--backend` option, like so:
 .. code-block:: text
   backend=foo.example.com;;dns
 nghttpx will cache resolved addresses for certain period of time.  To
 change this cache period, use :option:`--dns-cache-timeout`.
 Enable PROXY protocol
 ---------------------
 PROXY protocol can be enabled per frontend.  In order to enable PROXY
 protocol, use ``proxyproto`` parameter in :option:`--frontend` option,
 like so:
 .. code-block:: text
   frontend=*,443;proxyproto
 PSK cipher suites
 -----------------
 nghttpx supports pre-shared key (PSK) cipher suites for both frontend
 and backend TLS connections.  For frontend connection, use
 :option:`--psk-secrets` option to specify a file which contains PSK
 identity and secrets.  The format of the file is
 ``<identity>:<hex-secret>``, where ``<identity>`` is PSK identity, and
 ``<hex-secret>`` is PSK secret in hex, like so:
 .. code-block:: text
   client1:9567800e065e078085c241d54a01c6c3f24b3bab71a606600f4c6ad2c134f3b9
   client2:b1376c3f8f6dcf7c886c5bdcceecd1e6f1d708622b6ddd21bda26ebd0c0bca99
 nghttpx server accepts any of the identity and secret pairs in the
 file.  The default cipher suite list does not contain PSK cipher
 suites.  In order to use PSK, PSK cipher suite must be enabled by
 using :option:`--ciphers` option.  The desired PSK cipher suite may be
 listed in `HTTP/2 cipher black list
 <https://tools.ietf.org/html/rfc7540#appendix-A>`_.  In order to use
 such PSK cipher suite with HTTP/2, disable HTTP/2 cipher black list by
 using :option:`--no-http2-cipher-black-list` option.  But you should
 understand its implications.
 At the time of writing, even if only PSK cipher suites are specified
 in :option:`--ciphers` option, certificate and private key are still
 required.
 For backend connection, use :option:`--client-psk-secrets` option to
 specify a file which contains single PSK identity and secret.  The
 format is the same as the file used by :option:`--psk-secrets`
 described above, but only first identity and secret pair is solely
 used, like so:
 .. code-block:: text
   client2:b1376c3f8f6dcf7c886c5bdcceecd1e6f1d708622b6ddd21bda26ebd0c0bca99
 The default cipher suite list does not contain PSK cipher suites.  In
 order to use PSK, PSK cipher suite must be enabled by using
 :option:`--client-ciphers` option.  The desired PSK cipher suite may
 be listed in `HTTP/2 cipher black list
 <https://tools.ietf.org/html/rfc7540#appendix-A>`_.  In order to use
 such PSK cipher suite with HTTP/2, disable HTTP/2 cipher black list by
 using :option:`--client-no-http2-cipher-black-list` option.  But you
 should understand its implications.
 Migration from nghttpx v1.18.x or earlier
 -----------------------------------------
 As of nghttpx v1.19.0, :option:`--ciphers` option only changes cipher
 list for frontend TLS connection.  In order to change cipher list for
 backend connection, use :option:`--client-ciphers` option.
 Similarly, :option:`--no-http2-cipher-black-list` option only disables
 HTTP/2 cipher black list for frontend connection.  In order to disable
 HTTP/2 cipher black list for backend connection, use
 :option:`--client-no-http2-cipher-black-list` option.
 ``--accept-proxy-protocol`` option was deprecated.  Instead, use
 ``proxyproto`` parameter in :option:`--frontend` option to enable
 PROXY protocol support per frontend.
 Migration from nghttpx v1.8.0 or earlier
 ----------------------------------------
 As of nghttpx 1.9.0, ``--frontend-no-tls`` and ``--backend-no-tls``
 have been removed.
 To disable encryption on frontend connection, use ``no-tls`` keyword
 in :option:`--frontend` potion:
 .. code-block:: text
   frontend=*,3000;no-tls
 The TLS encryption is now disabled on backend connection in all modes
 by default.  To enable encryption on backend connection, use ``tls``
 keyword in :option:`--backend` option:
 .. code-block:: text
   backend=127.0.0.1,8080;tls
 As of nghttpx 1.9.0, ``--http2-bridge``, ``--client`` and
 ``--client-proxy`` options have been removed.  These functionality can
 be used using combinations of options.
 Use following option instead of ``--http2-bridge``:
 .. code-block:: text
   backend=<ADDR>,<PORT>;;proto=h2;tls
 Use following options instead of ``--client``:
 .. code-block:: text
   frontend=<ADDR>,<PORT>;no-tls
   backend=<ADDR>,<PORT>;;proto=h2;tls
 Use following options instead of ``--client-proxy``:
 .. code-block:: text
   http2-proxy=yes
   frontend=<ADDR>,<PORT>;no-tls
   backend=<ADDR>,<PORT>;;proto=h2;tls
 We also removed ``--backend-http2-connections-per-worker`` option.  It
 was present because previously the number of backend h2 connection was
 statically configured, and defaulted to 1.  Now the number of backend
 h2 connection is increased on demand.  We know the maximum number of
 concurrent streams per connection.  When we push as many request as
 the maximum concurrency to the one connection, we create another new
 connection so that we can distribute load and avoid delay the request
 processing.  This is done automatically without any configuration.
--- a/doc/sources/python-apiref.rst
+++ b/doc/sources/python-apiref.rst
@@ -13,7 +13,7 @@ The extension module is called ``nghttp2``.
 determined by configure script.  If the detected Python version is not
 what you expect, specify a path to Python executable in ``PYTHON``
 variable as an argument to configure script (e.g., ``./configure
-PYTHON=/usr/bin/python3.5``).
+PYTHON=/usr/bin/python3.4``).
 HPACK API
 ---------
@@ -136,15 +136,13 @@ HTTP/2 servers
 .. note::
-   We use :py:mod:`asyncio` for HTTP/2 server classes, and ALPN.
+   We use :py:mod:`asyncio` for HTTP/2 server classes.  Therefore,
-   Therefore, Python 3.5 or later is required to use these objects.
+   Python 3.4 or later is required to use these objects.  To
-   To explicitly configure nghttp2 build to use Python 3.5, specify
+   explicitly configure nghttp2 build to use Python 3.4, specify the
-   the ``PYTHON`` variable to the path to Python 3.5 executable when
+   ``PYTHON`` variable to the path to Python 3.4 executable when
-   invoking configure script like this:
+   invoking configure script like this::
-   .. code-block:: text
+       $ ./configure PYTHON=/usr/bin/python3.4
       $ ./configure PYTHON=/usr/bin/python3.5
 .. py:class:: HTTP2Server(address, RequestHandlerClass, ssl=None)
--- a/doc/sources/tutorial-client.rst
+++ b/doc/sources/tutorial-client.rst
@@ -7,9 +7,7 @@ the end of this page.  It also resides in the examples directory in
 the archive or repository.
 This simple client takes a single HTTPS URI and retrieves the resource
-at the URI. The synopsis is:
+at the URI. The synopsis is::
 .. code-block:: text
    $ libevent-client HTTPS_URI
@@ -33,17 +31,6 @@ protocol the library supports::
      return SSL_TLSEXT_ERR_OK;
    }
 If you are following TLS related RFC, you know that NPN is not the
 standardized way to negotiate HTTP/2.  NPN itself is not event
 published as RFC.  The standard way to negotiate HTTP/2 is ALPN,
 Application-Layer Protocol Negotiation Extension, defined in `RFC 7301
 <https://tools.ietf.org/html/rfc7301>`_.  The one caveat of ALPN is
 that OpenSSL >= 1.0.2 is required.  We use macro to enable/disable
 ALPN support depending on OpenSSL version.  OpenSSL's ALPN
 implementation does not require callback function like the above.  But
 we have to instruct OpenSSL SSL_CTX to use ALPN, which we'll talk
 about soon.
 The callback is added to the SSL_CTX object using
 ``SSL_CTX_set_next_proto_select_cb()``::
@@ -59,18 +46,9 @@ The callback is added to the SSL_CTX object using
                              SSL_OP_NO_COMPRESSION |
                              SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION);
      SSL_CTX_set_next_proto_select_cb(ssl_ctx, select_next_proto_cb, NULL);
    #if OPENSSL_VERSION_NUMBER >= 0x10002000L
      SSL_CTX_set_alpn_protos(ssl_ctx, (const unsigned char *)"\x02h2", 3);
    #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
      return ssl_ctx;
    }
 Here we see ``SSL_CTX_get_alpn_protos()`` function call.  We instructs
 OpenSSL to notify the server that we support h2, ALPN identifier for
 HTTP/2.
 The example client defines a couple of structs:
 We define and use a ``http2_session_data`` structure to store data
@@ -146,27 +124,7 @@ underlying network socket::
      if (events & BEV_EVENT_CONNECTED) {
        int fd = bufferevent_getfd(bev);
        int val = 1;
        const unsigned char *alpn = NULL;
        unsigned int alpnlen = 0;
        SSL *ssl;
        fprintf(stderr, "Connected\n");
        ssl = bufferevent_openssl_get_ssl(session_data->bev);
        SSL_get0_next_proto_negotiated(ssl, &alpn, &alpnlen);
    #if OPENSSL_VERSION_NUMBER >= 0x10002000L
        if (alpn == NULL) {
          SSL_get0_alpn_selected(ssl, &alpn, &alpnlen);
        }
    #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
        if (alpn == NULL || alpnlen != 2 || memcmp("h2", alpn, 2) != 0) {
          fprintf(stderr, "h2 is not negotiated\n");
          delete_http2_session_data(session_data);
          return;
        }
        setsockopt(fd, IPPROTO_TCP, TCP_NODELAY, (char *)&val, sizeof(val));
        initialize_nghttp2_session(session_data);
        send_client_connection_header(session_data);
@@ -186,9 +144,6 @@ underlying network socket::
      delete_http2_session_data(session_data);
    }
 Here we validate that HTTP/2 is negotiated, and if not, drop
 connection.
 For ``BEV_EVENT_EOF``, ``BEV_EVENT_ERROR``, and ``BEV_EVENT_TIMEOUT``
 events, we just simply tear down the connection.
--- a/doc/sources/tutorial-hpack.rst
+++ b/doc/sources/tutorial-hpack.rst
@@ -78,16 +78,15 @@ header data.  To initialize the object, use
    int nghttp2_hd_inflate_new(nghttp2_hd_inflater **inflater_ptr);
-To inflate header data, use `nghttp2_hd_inflate_hd2()`::
+To inflate header data, use `nghttp2_hd_inflate_hd()`::
-    ssize_t nghttp2_hd_inflate_hd2(nghttp2_hd_inflater *inflater,
+    ssize_t nghttp2_hd_inflate_hd(nghttp2_hd_inflater *inflater,
-                                   nghttp2_nv *nv_out, int *inflate_flags,
+                                  nghttp2_nv *nv_out, int *inflate_flags,
-                                   const uint8_t *in, size_t inlen,
+                                  uint8_t *in, size_t inlen, int in_final);
                                   int in_final);
-`nghttp2_hd_inflate_hd2()` reads a stream of bytes and outputs a
+`nghttp2_hd_inflate_hd()` reads a stream of bytes and outputs a single
-single header field at a time. Multiple calls are normally required to
+header field at a time. Multiple calls are normally required to read a
-read a full stream of bytes and output all of the header fields.
+full stream of bytes and output all of the header fields.
 The *inflater* is the inflater object initialized above.  The *nv_out*
 is a pointer to a :type:`nghttp2_nv` into which one header field may
@@ -119,7 +118,11 @@ If *in_final* is zero and the :macro:`NGHTTP2_HD_INFLATE_EMIT` flag is
 not set, it indicates that all given data was processed.  The caller
 is required to pass additional data.
-Example usage of `nghttp2_hd_inflate_hd2()` is shown in the
+It is important to note that the function may produce one or more
 header fields even if *inlen* is 0 when *in_final* is nonzero, due to
 differential encoding.
 Example usage of `nghttp2_hd_inflate_hd()` is shown in the
 `inflate_header_block()` function in `deflate.c`_.
 Finally, to delete a :type:`nghttp2_hd_inflater` object, use
--- a/doc/sources/tutorial-server.rst
+++ b/doc/sources/tutorial-server.rst
@@ -10,9 +10,7 @@ archive or repository.
 This simple server takes 3 arguments: The port number to listen on,
 the path to your SSL/TLS private key file, and the path to your
-certificate file.  The synopsis is:
+certificate file.  The synopsis is::
 .. code-block:: text
    $ libevent-server PORT /path/to/server.key /path/to/server.crt
@@ -27,17 +25,7 @@ application protocols the server supports to a client.  In this
 example program, when creating the ``SSL_CTX`` object, we store the
 application protocol name in the wire format of NPN in a statically
 allocated buffer. This is safe because we only create one ``SSL_CTX``
-object in the program's entire lifetime.
+object in the program's entire lifetime::
 If you are following TLS related RFC, you know that NPN is not the
 standardized way to negotiate HTTP/2.  NPN itself is not even
 published as RFC.  The standard way to negotiate HTTP/2 is ALPN,
 Application-Layer Protocol Negotiation Extension, defined in `RFC 7301
 <https://tools.ietf.org/html/rfc7301>`_.  The one caveat of ALPN is
 that OpenSSL >= 1.0.2 is required.  We use macro to enable/disable
 ALPN support depending on OpenSSL version.  In ALPN, client sends the
 list of supported application protocols, and server selects one of
 them.  We provide the callback for it::
    static unsigned char next_proto_list[256];
    static size_t next_proto_list_len;
@@ -49,22 +37,6 @@ them.  We provide the callback for it::
      return SSL_TLSEXT_ERR_OK;
    }
    #if OPENSSL_VERSION_NUMBER >= 0x10002000L
    static int alpn_select_proto_cb(SSL *ssl _U_, const unsigned char **out,
                                    unsigned char *outlen, const unsigned char *in,
                                    unsigned int inlen, void *arg _U_) {
      int rv;
      rv = nghttp2_select_next_protocol((unsigned char **)out, outlen, in, inlen);
      if (rv != 1) {
        return SSL_TLSEXT_ERR_NOACK;
      }
      return SSL_TLSEXT_ERR_OK;
    }
    #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
    static SSL_CTX *create_ssl_ctx(const char *key_file, const char *cert_file) {
      SSL_CTX *ssl_ctx;
      EC_KEY *ecdh;
@@ -79,11 +51,6 @@ them.  We provide the callback for it::
      next_proto_list_len = 1 + NGHTTP2_PROTO_VERSION_ID_LEN;
      SSL_CTX_set_next_protos_advertised_cb(ssl_ctx, next_proto_cb, NULL);
    #if OPENSSL_VERSION_NUMBER >= 0x10002000L
      SSL_CTX_set_alpn_select_cb(ssl_ctx, alpn_select_proto_cb, NULL);
    #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
      return ssl_ctx;
    }
@@ -97,11 +64,6 @@ OpenSSL implementation, we just assign the pointer to the NPN buffers
 we filled in earlier. The NPN callback function is set to the
 ``SSL_CTX`` object using ``SSL_CTX_set_next_protos_advertised_cb()``.
 In ``alpn_select_proto_cb()``, we use `nghttp2_select_next_protocol()`
 to select application protocol.  The `nghttp2_select_next_protocol()`
 returns 1 only if it selected h2 (ALPN identifier for HTTP/2), and out
 parameters were assigned accordingly.
 Next, let's take a look at the main structures used by the example
 application:
@@ -205,31 +167,11 @@ underlying network socket::
    static void eventcb(struct bufferevent *bev _U_, short events, void *ptr) {
      http2_session_data *session_data = (http2_session_data *)ptr;
      if (events & BEV_EVENT_CONNECTED) {
        const unsigned char *alpn = NULL;
        unsigned int alpnlen = 0;
        SSL *ssl;
        fprintf(stderr, "%s connected\n", session_data->client_addr);
        ssl = bufferevent_openssl_get_ssl(session_data->bev);
        SSL_get0_next_proto_negotiated(ssl, &alpn, &alpnlen);
    #if OPENSSL_VERSION_NUMBER >= 0x10002000L
        if (alpn == NULL) {
          SSL_get0_alpn_selected(ssl, &alpn, &alpnlen);
        }
    #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
        if (alpn == NULL || alpnlen != 2 || memcmp("h2", alpn, 2) != 0) {
          fprintf(stderr, "%s h2 is not negotiated\n", session_data->client_addr);
          delete_http2_session_data(session_data);
          return;
        }
        initialize_nghttp2_session(session_data);
-        if (send_server_connection_header(session_data) != 0 ||
+        if (send_server_connection_header(session_data) != 0) {
            session_send(session_data) != 0) {
          delete_http2_session_data(session_data);
          return;
        }
@@ -246,9 +188,6 @@ underlying network socket::
      delete_http2_session_data(session_data);
    }
 Here we validate that HTTP/2 is negotiated, and if not, drop
 connection.
 For the ``BEV_EVENT_EOF``, ``BEV_EVENT_ERROR``, and
 ``BEV_EVENT_TIMEOUT`` events, we just simply tear down the connection.
 The ``delete_http2_session_data()`` function destroys the
--- a/examples/CMakeLists.txt
+++ b/examples/CMakeLists.txt
@@ -1,49 +0,0 @@
 if(ENABLE_EXAMPLES)
  file(GLOB c_sources *.c)
  set_source_files_properties(${c_sources} PROPERTIES
    COMPILE_FLAGS "${WARNCFLAGS}")
  file(GLOB cxx_sources *.cc)
  set_source_files_properties(${cxx_sources} PROPERTIES
    COMPILE_FLAGS "${WARNCXXFLAGS} ${CXX1XCXXFLAGS}")
  include_directories(
    ${CMAKE_SOURCE_DIR}
    ${CMAKE_SOURCE_DIR}/lib/includes
    ${CMAKE_BINARY_DIR}/lib/includes
    ${CMAKE_SOURCE_DIR}/src/includes
    ${CMAKE_SOURCE_DIR}/third-party
    ${LIBEVENT_INCLUDE_DIRS}
    ${OPENSSL_INCLUDE_DIRS}
  )
  link_libraries(
    nghttp2
    ${LIBEVENT_OPENSSL_LIBRARIES}
    ${OPENSSL_LIBRARIES}
    ${APP_LIBRARIES}
  )
  add_executable(client           client.c $<TARGET_OBJECTS:http-parser>)
  add_executable(libevent-client  libevent-client.c $<TARGET_OBJECTS:http-parser>)
  add_executable(libevent-server  libevent-server.c $<TARGET_OBJECTS:http-parser>)
  add_executable(deflate          deflate.c $<TARGET_OBJECTS:http-parser>)
  if(ENABLE_ASIO_LIB)
    foreach(name asio-sv asio-sv2 asio-cl asio-cl2)
      add_executable(${name} ${name}.cc $<TARGET_OBJECTS:http-parser>)
      target_include_directories(${name} PRIVATE
        ${OPENSSL_INCLUDE_DIRS}
        ${Boost_INCLUDE_DIRS}
      )
      target_link_libraries(${name}
        nghttp2
        nghttp2_asio
        ${JEMALLOC_LIBRARIES}
        ${OPENSSL_LIBRARIES}
        ${Boost_LIBRARIES}
        ${APP_LIBRARIES}
      )
    endforeach()
  endif()
 endif()
--- a/examples/Makefile.am
+++ b/examples/Makefile.am
@@ -21,12 +21,10 @@
 # OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
 # WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
 EXTRA_DIST = CMakeLists.txt
 if ENABLE_EXAMPLES
 AM_CFLAGS = $(WARNCFLAGS)
-AM_CXXFLAGS = $(WARNCXXFLAGS) $(CXX1XCXXFLAGS)
+AM_CXXFLAGS = $(WARNCXXFLAGS)
 AM_CPPFLAGS = \
 	-I$(top_srcdir)/lib/includes \
 	-I$(top_builddir)/lib/includes \
@@ -51,6 +49,14 @@ libevent_server_SOURCES = libevent-server.c
 deflate_SOURCES = deflate.c
 if ENABLE_TINY_NGHTTPD
 noinst_PROGRAMS += tiny-nghttpd
 tiny_nghttpd_SOURCES = tiny-nghttpd.c
 endif # ENABLE_TINY_NGHTTPD
 if ENABLE_ASIO_LIB
 noinst_PROGRAMS += asio-sv asio-sv2 asio-cl asio-cl2
@@ -62,11 +68,11 @@ ASIOCPPFLAGS = ${AM_CPPFLAGS} ${BOOST_CPPFLAGS}
 ASIOLDADD = $(top_builddir)/lib/libnghttp2.la \
 	$(top_builddir)/src/libnghttp2_asio.la @JEMALLOC_LIBS@ \
 	$(top_builddir)/third-party/libhttp-parser.la \
 	@OPENSSL_LIBS@ \
 	${BOOST_LDFLAGS} \
 	${BOOST_ASIO_LIB} \
 	${BOOST_THREAD_LIB} \
 	${BOOST_SYSTEM_LIB} \
 	@OPENSSL_LIBS@ \
 	@APPLDFLAGS@
 asio_sv_SOURCES = asio-sv.cc
--- a/examples/client.c
+++ b/examples/client.c
@@ -66,13 +66,13 @@ enum { IO_NONE, WANT_READ, WANT_WRITE };
 #define MAKE_NV(NAME, VALUE)                                                   \
  {                                                                            \
-    (uint8_t *)NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, sizeof(VALUE) - 1,    \
+    (uint8_t *) NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, sizeof(VALUE) - 1,   \
        NGHTTP2_NV_FLAG_NONE                                                   \
  }
 #define MAKE_NV_CS(NAME, VALUE)                                                \
  {                                                                            \
-    (uint8_t *)NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, strlen(VALUE),        \
+    (uint8_t *) NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, strlen(VALUE),       \
        NGHTTP2_NV_FLAG_NONE                                                   \
  }
@@ -159,13 +159,10 @@ static void diec(const char *func, int error_code) {
 * bytes actually written. See the documentation of
 * nghttp2_send_callback for the details.
 */
-static ssize_t send_callback(nghttp2_session *session, const uint8_t *data,
+static ssize_t send_callback(nghttp2_session *session _U_, const uint8_t *data,
-                             size_t length, int flags, void *user_data) {
+                             size_t length, int flags _U_, void *user_data) {
  struct Connection *connection;
  int rv;
  (void)session;
  (void)flags;
  connection = (struct Connection *)user_data;
  connection->want_io = IO_NONE;
  ERR_clear_error();
@@ -189,13 +186,10 @@ static ssize_t send_callback(nghttp2_session *session, const uint8_t *data,
 * |length| bytes. Returns the number of bytes stored in |buf|. See
 * the documentation of nghttp2_recv_callback for the details.
 */
-static ssize_t recv_callback(nghttp2_session *session, uint8_t *buf,
+static ssize_t recv_callback(nghttp2_session *session _U_, uint8_t *buf,
-                             size_t length, int flags, void *user_data) {
+                             size_t length, int flags _U_, void *user_data) {
  struct Connection *connection;
  int rv;
  (void)session;
  (void)flags;
  connection = (struct Connection *)user_data;
  connection->want_io = IO_NONE;
  ERR_clear_error();
@@ -216,19 +210,18 @@ static ssize_t recv_callback(nghttp2_session *session, uint8_t *buf,
 }
 static int on_frame_send_callback(nghttp2_session *session,
-                                  const nghttp2_frame *frame, void *user_data) {
+                                  const nghttp2_frame *frame,
                                  void *user_data _U_) {
  size_t i;
  (void)user_data;
  switch (frame->hd.type) {
  case NGHTTP2_HEADERS:
    if (nghttp2_session_get_stream_user_data(session, frame->hd.stream_id)) {
      const nghttp2_nv *nva = frame->headers.nva;
      printf("[INFO] C ----------------------------> S (HEADERS)\n");
      for (i = 0; i < frame->headers.nvlen; ++i) {
-        fwrite(nva[i].name, 1, nva[i].namelen, stdout);
+        fwrite(nva[i].name, nva[i].namelen, 1, stdout);
        printf(": ");
-        fwrite(nva[i].value, 1, nva[i].valuelen, stdout);
+        fwrite(nva[i].value, nva[i].valuelen, 1, stdout);
        printf("\n");
      }
    }
@@ -244,10 +237,9 @@ static int on_frame_send_callback(nghttp2_session *session,
 }
 static int on_frame_recv_callback(nghttp2_session *session,
-                                  const nghttp2_frame *frame, void *user_data) {
+                                  const nghttp2_frame *frame,
                                  void *user_data _U_) {
  size_t i;
  (void)user_data;
  switch (frame->hd.type) {
  case NGHTTP2_HEADERS:
    if (frame->headers.cat == NGHTTP2_HCAT_RESPONSE) {
@@ -257,9 +249,9 @@ static int on_frame_recv_callback(nghttp2_session *session,
      if (req) {
        printf("[INFO] C <---------------------------- S (HEADERS)\n");
        for (i = 0; i < frame->headers.nvlen; ++i) {
-          fwrite(nva[i].name, 1, nva[i].namelen, stdout);
+          fwrite(nva[i].name, nva[i].namelen, 1, stdout);
          printf(": ");
-          fwrite(nva[i].value, 1, nva[i].valuelen, stdout);
+          fwrite(nva[i].value, nva[i].valuelen, 1, stdout);
          printf("\n");
        }
      }
@@ -282,11 +274,9 @@ static int on_frame_recv_callback(nghttp2_session *session,
 * we submit GOAWAY and close the session.
 */
 static int on_stream_close_callback(nghttp2_session *session, int32_t stream_id,
-                                    uint32_t error_code, void *user_data) {
+                                    uint32_t error_code _U_,
                                    void *user_data _U_) {
  struct Request *req;
  (void)error_code;
  (void)user_data;
  req = nghttp2_session_get_stream_user_data(session, stream_id);
  if (req) {
    int rv;
@@ -299,17 +289,17 @@ static int on_stream_close_callback(nghttp2_session *session, int32_t stream_id,
  return 0;
 }
 #define MAX_OUTLEN 4096
 /*
 * The implementation of nghttp2_on_data_chunk_recv_callback type. We
 * use this function to print the received response body.
 */
-static int on_data_chunk_recv_callback(nghttp2_session *session, uint8_t flags,
+static int on_data_chunk_recv_callback(nghttp2_session *session,
-                                       int32_t stream_id, const uint8_t *data,
+                                       uint8_t flags _U_, int32_t stream_id,
-                                       size_t len, void *user_data) {
+                                       const uint8_t *data, size_t len,
                                       void *user_data _U_) {
  struct Request *req;
  (void)flags;
  (void)user_data;
  req = nghttp2_session_get_stream_user_data(session, stream_id);
  if (req) {
    printf("[INFO] C <---------------------------- S (DATA chunk)\n"
@@ -350,13 +340,10 @@ static void setup_nghttp2_callbacks(nghttp2_session_callbacks *callbacks) {
 * HTTP/2 protocol, if server does not offer HTTP/2 the nghttp2
 * library supports, we terminate program.
 */
-static int select_next_proto_cb(SSL *ssl, unsigned char **out,
+static int select_next_proto_cb(SSL *ssl _U_, unsigned char **out,
                                unsigned char *outlen, const unsigned char *in,
-                                unsigned int inlen, void *arg) {
+                                unsigned int inlen, void *arg _U_) {
  int rv;
  (void)ssl;
  (void)arg;
  /* nghttp2_select_next_protocol() selects HTTP/2 protocol the
     nghttp2 library supports. */
  rv = nghttp2_select_next_protocol(out, outlen, in, inlen);
@@ -472,12 +459,11 @@ static void ctl_poll(struct pollfd *pollfd, struct Connection *connection) {
 static void submit_request(struct Connection *connection, struct Request *req) {
  int32_t stream_id;
  /* Make sure that the last item is NULL */
-  const nghttp2_nv nva[] = {MAKE_NV(":method", "GET"),
+  const nghttp2_nv nva[] = {
-                            MAKE_NV_CS(":path", req->path),
+      MAKE_NV(":method", "GET"), MAKE_NV_CS(":path", req->path),
-                            MAKE_NV(":scheme", "https"),
+      MAKE_NV(":scheme", "https"), MAKE_NV_CS(":authority", req->hostport),
-                            MAKE_NV_CS(":authority", req->hostport),
+      MAKE_NV("accept", "*/*"),
-                            MAKE_NV("accept", "*/*"),
+      MAKE_NV("user-agent", "nghttp2/" NGHTTP2_VERSION)};
                            MAKE_NV("user-agent", "nghttp2/" NGHTTP2_VERSION)};
  stream_id = nghttp2_submit_request(connection->session, NULL, nva,
                                     sizeof(nva) / sizeof(nva[0]), NULL, req);
@@ -578,11 +564,7 @@ static void fetch_uri(const struct URI *uri) {
    diec("nghttp2_session_client_new", rv);
  }
-  rv = nghttp2_submit_settings(connection.session, NGHTTP2_FLAG_NONE, NULL, 0);
+  nghttp2_submit_settings(connection.session, NGHTTP2_FLAG_NONE, NULL, 0);
  if (rv != 0) {
    diec("nghttp2_submit_settings", rv);
  }
  /* Submit the HTTP request to the outbound queue. */
  submit_request(&connection, &req);
@@ -711,6 +693,9 @@ int main(int argc, char **argv) {
  act.sa_handler = SIG_IGN;
  sigaction(SIGPIPE, &act, 0);
 #ifndef OPENSSL_IS_BORINGSSL
  OPENSSL_config(NULL);
 #endif /* OPENSSL_IS_BORINGSSL */
  SSL_load_error_strings();
  SSL_library_init();
--- a/examples/deflate.c
+++ b/examples/deflate.c
@@ -33,7 +33,7 @@
 #define MAKE_NV(K, V)                                                          \
  {                                                                            \
-    (uint8_t *)K, (uint8_t *)V, sizeof(K) - 1, sizeof(V) - 1,                  \
+    (uint8_t *) K, (uint8_t *)V, sizeof(K) - 1, sizeof(V) - 1,                 \
        NGHTTP2_NV_FLAG_NONE                                                   \
  }
@@ -44,7 +44,7 @@ static void deflate(nghttp2_hd_deflater *deflater,
 static int inflate_header_block(nghttp2_hd_inflater *inflater, uint8_t *in,
                                size_t inlen, int final);
-int main() {
+int main(int argc _U_, char **argv _U_) {
  int rv;
  nghttp2_hd_deflater *deflater;
  nghttp2_hd_inflater *inflater;
@@ -109,9 +109,9 @@ static void deflate(nghttp2_hd_deflater *deflater,
  printf("Input (%zu byte(s)):\n\n", sum);
  for (i = 0; i < nvlen; ++i) {
-    fwrite(nva[i].name, 1, nva[i].namelen, stdout);
+    fwrite(nva[i].name, nva[i].namelen, 1, stdout);
    printf(": ");
-    fwrite(nva[i].value, 1, nva[i].valuelen, stdout);
+    fwrite(nva[i].value, nva[i].valuelen, 1, stdout);
    printf("\n");
  }
@@ -186,9 +186,9 @@ int inflate_header_block(nghttp2_hd_inflater *inflater, uint8_t *in,
    inlen -= proclen;
    if (inflate_flags & NGHTTP2_HD_INFLATE_EMIT) {
-      fwrite(nv.name, 1, nv.namelen, stderr);
+      fwrite(nv.name, nv.namelen, 1, stderr);
      fprintf(stderr, ": ");
-      fwrite(nv.value, 1, nv.valuelen, stderr);
+      fwrite(nv.value, nv.valuelen, 1, stderr);
      fprintf(stderr, "\n");
    }
--- a/examples/libevent-client.c
+++ b/examples/libevent-client.c
@@ -179,9 +179,9 @@ static void delete_http2_session_data(http2_session_data *session_data) {
 static void print_header(FILE *f, const uint8_t *name, size_t namelen,
                         const uint8_t *value, size_t valuelen) {
-  fwrite(name, 1, namelen, f);
+  fwrite(name, namelen, 1, f);
  fprintf(f, ": ");
-  fwrite(value, 1, valuelen, f);
+  fwrite(value, valuelen, 1, f);
  fprintf(f, "\n");
 }
@@ -199,27 +199,22 @@ static void print_headers(FILE *f, nghttp2_nv *nva, size_t nvlen) {
 /* nghttp2_send_callback. Here we transmit the |data|, |length| bytes,
   to the network. Because we are using libevent bufferevent, we just
   write those bytes into bufferevent buffer. */
-static ssize_t send_callback(nghttp2_session *session, const uint8_t *data,
+static ssize_t send_callback(nghttp2_session *session _U_, const uint8_t *data,
-                             size_t length, int flags, void *user_data) {
+                             size_t length, int flags _U_, void *user_data) {
  http2_session_data *session_data = (http2_session_data *)user_data;
  struct bufferevent *bev = session_data->bev;
  (void)session;
  (void)flags;
  bufferevent_write(bev, data, length);
  return (ssize_t)length;
 }
 /* nghttp2_on_header_callback: Called when nghttp2 library emits
   single header name/value pair. */
-static int on_header_callback(nghttp2_session *session,
+static int on_header_callback(nghttp2_session *session _U_,
                              const nghttp2_frame *frame, const uint8_t *name,
                              size_t namelen, const uint8_t *value,
-                              size_t valuelen, uint8_t flags, void *user_data) {
+                              size_t valuelen, uint8_t flags _U_,
                              void *user_data) {
  http2_session_data *session_data = (http2_session_data *)user_data;
  (void)session;
  (void)flags;
  switch (frame->hd.type) {
  case NGHTTP2_HEADERS:
    if (frame->headers.cat == NGHTTP2_HCAT_RESPONSE &&
@@ -234,12 +229,10 @@ static int on_header_callback(nghttp2_session *session,
 /* nghttp2_on_begin_headers_callback: Called when nghttp2 library gets
   started to receive header block. */
-static int on_begin_headers_callback(nghttp2_session *session,
+static int on_begin_headers_callback(nghttp2_session *session _U_,
                                     const nghttp2_frame *frame,
                                     void *user_data) {
  http2_session_data *session_data = (http2_session_data *)user_data;
  (void)session;
  switch (frame->hd.type) {
  case NGHTTP2_HEADERS:
    if (frame->headers.cat == NGHTTP2_HCAT_RESPONSE &&
@@ -254,11 +247,9 @@ static int on_begin_headers_callback(nghttp2_session *session,
 /* nghttp2_on_frame_recv_callback: Called when nghttp2 library
   received a complete frame from the remote peer. */
-static int on_frame_recv_callback(nghttp2_session *session,
+static int on_frame_recv_callback(nghttp2_session *session _U_,
                                  const nghttp2_frame *frame, void *user_data) {
  http2_session_data *session_data = (http2_session_data *)user_data;
  (void)session;
  switch (frame->hd.type) {
  case NGHTTP2_HEADERS:
    if (frame->headers.cat == NGHTTP2_HCAT_RESPONSE &&
@@ -275,15 +266,13 @@ static int on_frame_recv_callback(nghttp2_session *session,
   is meant to the stream we initiated, print the received data in
   stdout, so that the user can redirect its output to the file
   easily. */
-static int on_data_chunk_recv_callback(nghttp2_session *session, uint8_t flags,
+static int on_data_chunk_recv_callback(nghttp2_session *session _U_,
-                                       int32_t stream_id, const uint8_t *data,
+                                       uint8_t flags _U_, int32_t stream_id,
-                                       size_t len, void *user_data) {
+                                       const uint8_t *data, size_t len,
                                       void *user_data) {
  http2_session_data *session_data = (http2_session_data *)user_data;
  (void)session;
  (void)flags;
  if (session_data->stream_data->stream_id == stream_id) {
-    fwrite(data, 1, len, stdout);
+    fwrite(data, len, 1, stdout);
  }
  return 0;
 }
@@ -298,7 +287,7 @@ static int on_stream_close_callback(nghttp2_session *session, int32_t stream_id,
  int rv;
  if (session_data->stream_data->stream_id == stream_id) {
-    fprintf(stderr, "Stream %d closed with error_code=%u\n", stream_id,
+    fprintf(stderr, "Stream %d closed with error_code=%d\n", stream_id,
            error_code);
    rv = nghttp2_session_terminate_session(session, NGHTTP2_NO_ERROR);
    if (rv != 0) {
@@ -311,12 +300,9 @@ static int on_stream_close_callback(nghttp2_session *session, int32_t stream_id,
 /* NPN TLS extension client callback. We check that server advertised
   the HTTP/2 protocol the nghttp2 library supports. If not, exit
   the program. */
-static int select_next_proto_cb(SSL *ssl, unsigned char **out,
+static int select_next_proto_cb(SSL *ssl _U_, unsigned char **out,
                                unsigned char *outlen, const unsigned char *in,
-                                unsigned int inlen, void *arg) {
+                                unsigned int inlen, void *arg _U_) {
  (void)ssl;
  (void)arg;
  if (nghttp2_select_next_protocol(out, outlen, in, inlen) <= 0) {
    errx(1, "Server did not advertise " NGHTTP2_PROTO_VERSION_ID);
  }
@@ -336,11 +322,6 @@ static SSL_CTX *create_ssl_ctx(void) {
                          SSL_OP_NO_COMPRESSION |
                          SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION);
  SSL_CTX_set_next_proto_select_cb(ssl_ctx, select_next_proto_cb, NULL);
 #if OPENSSL_VERSION_NUMBER >= 0x10002000L
  SSL_CTX_set_alpn_protos(ssl_ctx, (const unsigned char *)"\x02h2", 3);
 #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
  return ssl_ctx;
 }
@@ -397,13 +378,13 @@ static void send_client_connection_header(http2_session_data *session_data) {
 #define MAKE_NV(NAME, VALUE, VALUELEN)                                         \
  {                                                                            \
-    (uint8_t *)NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, VALUELEN,             \
+    (uint8_t *) NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, VALUELEN,            \
        NGHTTP2_NV_FLAG_NONE                                                   \
  }
 #define MAKE_NV2(NAME, VALUE)                                                  \
  {                                                                            \
-    (uint8_t *)NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, sizeof(VALUE) - 1,    \
+    (uint8_t *) NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, sizeof(VALUE) - 1,   \
        NGHTTP2_NV_FLAG_NONE                                                   \
  }
@@ -475,10 +456,8 @@ static void readcb(struct bufferevent *bev, void *ptr) {
   receiving GOAWAY, we check the some conditions on the nghttp2
   library and output buffer of bufferevent. If it indicates we have
   no business to this session, tear down the connection. */
-static void writecb(struct bufferevent *bev, void *ptr) {
+static void writecb(struct bufferevent *bev _U_, void *ptr) {
  http2_session_data *session_data = (http2_session_data *)ptr;
  (void)bev;
  if (nghttp2_session_want_read(session_data->session) == 0 &&
      nghttp2_session_want_write(session_data->session) == 0 &&
      evbuffer_get_length(bufferevent_get_output(session_data->bev)) == 0) {
@@ -496,27 +475,7 @@ static void eventcb(struct bufferevent *bev, short events, void *ptr) {
  if (events & BEV_EVENT_CONNECTED) {
    int fd = bufferevent_getfd(bev);
    int val = 1;
    const unsigned char *alpn = NULL;
    unsigned int alpnlen = 0;
    SSL *ssl;
    fprintf(stderr, "Connected\n");
    ssl = bufferevent_openssl_get_ssl(session_data->bev);
    SSL_get0_next_proto_negotiated(ssl, &alpn, &alpnlen);
 #if OPENSSL_VERSION_NUMBER >= 0x10002000L
    if (alpn == NULL) {
      SSL_get0_alpn_selected(ssl, &alpn, &alpnlen);
    }
 #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
    if (alpn == NULL || alpnlen != 2 || memcmp("h2", alpn, 2) != 0) {
      fprintf(stderr, "h2 is not negotiated\n");
      delete_http2_session_data(session_data);
      return;
    }
    setsockopt(fd, IPPROTO_TCP, TCP_NODELAY, (char *)&val, sizeof(val));
    initialize_nghttp2_session(session_data);
    send_client_connection_header(session_data);
@@ -610,6 +569,9 @@ int main(int argc, char **argv) {
  act.sa_handler = SIG_IGN;
  sigaction(SIGPIPE, &act, NULL);
 #ifndef OPENSSL_IS_BORINGSSL
  OPENSSL_config(NULL);
 #endif /* OPENSSL_IS_BORINGSSL */
  SSL_load_error_strings();
  SSL_library_init();
--- a/examples/libevent-server.c
+++ b/examples/libevent-server.c
@@ -79,7 +79,7 @@
 #define MAKE_NV(NAME, VALUE)                                                   \
  {                                                                            \
-    (uint8_t *)NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, sizeof(VALUE) - 1,    \
+    (uint8_t *) NAME, (uint8_t *)VALUE, sizeof(NAME) - 1, sizeof(VALUE) - 1,   \
        NGHTTP2_NV_FLAG_NONE                                                   \
  }
@@ -109,34 +109,13 @@ struct app_context {
 static unsigned char next_proto_list[256];
 static size_t next_proto_list_len;
-static int next_proto_cb(SSL *ssl, const unsigned char **data,
+static int next_proto_cb(SSL *s _U_, const unsigned char **data,
-                         unsigned int *len, void *arg) {
+                         unsigned int *len, void *arg _U_) {
  (void)ssl;
  (void)arg;
  *data = next_proto_list;
  *len = (unsigned int)next_proto_list_len;
  return SSL_TLSEXT_ERR_OK;
 }
 #if OPENSSL_VERSION_NUMBER >= 0x10002000L
 static int alpn_select_proto_cb(SSL *ssl, const unsigned char **out,
                                unsigned char *outlen, const unsigned char *in,
                                unsigned int inlen, void *arg) {
  int rv;
  (void)ssl;
  (void)arg;
  rv = nghttp2_select_next_protocol((unsigned char **)out, outlen, in, inlen);
  if (rv != 1) {
    return SSL_TLSEXT_ERR_NOACK;
  }
  return SSL_TLSEXT_ERR_OK;
 }
 #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
 /* Create SSL_CTX. */
 static SSL_CTX *create_ssl_ctx(const char *key_file, const char *cert_file) {
  SSL_CTX *ssl_ctx;
@@ -173,11 +152,6 @@ static SSL_CTX *create_ssl_ctx(const char *key_file, const char *cert_file) {
  next_proto_list_len = 1 + NGHTTP2_PROTO_VERSION_ID_LEN;
  SSL_CTX_set_next_protos_advertised_cb(ssl_ctx, next_proto_cb, NULL);
 #if OPENSSL_VERSION_NUMBER >= 0x10002000L
  SSL_CTX_set_alpn_select_cb(ssl_ctx, alpn_select_proto_cb, NULL);
 #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
  return ssl_ctx;
 }
@@ -202,10 +176,8 @@ static void add_stream(http2_session_data *session_data,
  }
 }
-static void remove_stream(http2_session_data *session_data,
+static void remove_stream(http2_session_data *session_data _U_,
                          http2_stream_data *stream_data) {
  (void)session_data;
  stream_data->prev->next = stream_data->next;
  if (stream_data->next) {
    stream_data->next->prev = stream_data->prev;
@@ -316,13 +288,10 @@ static int session_recv(http2_session_data *session_data) {
  return 0;
 }
-static ssize_t send_callback(nghttp2_session *session, const uint8_t *data,
+static ssize_t send_callback(nghttp2_session *session _U_, const uint8_t *data,
-                             size_t length, int flags, void *user_data) {
+                             size_t length, int flags _U_, void *user_data) {
  http2_session_data *session_data = (http2_session_data *)user_data;
  struct bufferevent *bev = session_data->bev;
  (void)session;
  (void)flags;
  /* Avoid excessive buffering in server side. */
  if (evbuffer_get_length(bufferevent_get_output(session_data->bev)) >=
      OUTPUT_WOULDBLOCK_THRESHOLD) {
@@ -385,17 +354,13 @@ static char *percent_decode(const uint8_t *value, size_t valuelen) {
  return res;
 }
-static ssize_t file_read_callback(nghttp2_session *session, int32_t stream_id,
+static ssize_t file_read_callback(nghttp2_session *session _U_,
-                                  uint8_t *buf, size_t length,
+                                  int32_t stream_id _U_, uint8_t *buf,
-                                  uint32_t *data_flags,
+                                  size_t length, uint32_t *data_flags,
                                  nghttp2_data_source *source,
-                                  void *user_data) {
+                                  void *user_data _U_) {
  int fd = source->fd;
  ssize_t r;
  (void)session;
  (void)stream_id;
  (void)user_data;
  while ((r = read(fd, buf, length)) == -1 && errno == EINTR)
    ;
  if (r == -1) {
@@ -468,12 +433,10 @@ static int error_reply(nghttp2_session *session,
 static int on_header_callback(nghttp2_session *session,
                              const nghttp2_frame *frame, const uint8_t *name,
                              size_t namelen, const uint8_t *value,
-                              size_t valuelen, uint8_t flags, void *user_data) {
+                              size_t valuelen, uint8_t flags _U_,
                              void *user_data _U_) {
  http2_stream_data *stream_data;
  const char PATH[] = ":path";
  (void)flags;
  (void)user_data;
  switch (frame->hd.type) {
  case NGHTTP2_HEADERS:
    if (frame->headers.cat != NGHTTP2_HCAT_REQUEST) {
@@ -586,10 +549,9 @@ static int on_frame_recv_callback(nghttp2_session *session,
 }
 static int on_stream_close_callback(nghttp2_session *session, int32_t stream_id,
-                                    uint32_t error_code, void *user_data) {
+                                    uint32_t error_code _U_, void *user_data) {
  http2_session_data *session_data = (http2_session_data *)user_data;
  http2_stream_data *stream_data;
  (void)error_code;
  stream_data = nghttp2_session_get_stream_user_data(session, stream_id);
  if (!stream_data) {
@@ -642,10 +604,8 @@ static int send_server_connection_header(http2_session_data *session_data) {
 /* readcb for bufferevent after client connection header was
   checked. */
-static void readcb(struct bufferevent *bev, void *ptr) {
+static void readcb(struct bufferevent *bev _U_, void *ptr) {
  http2_session_data *session_data = (http2_session_data *)ptr;
  (void)bev;
  if (session_recv(session_data) != 0) {
    delete_http2_session_data(session_data);
    return;
@@ -677,35 +637,14 @@ static void writecb(struct bufferevent *bev, void *ptr) {
 }
 /* eventcb for bufferevent */
-static void eventcb(struct bufferevent *bev, short events, void *ptr) {
+static void eventcb(struct bufferevent *bev _U_, short events, void *ptr) {
  http2_session_data *session_data = (http2_session_data *)ptr;
  if (events & BEV_EVENT_CONNECTED) {
    const unsigned char *alpn = NULL;
    unsigned int alpnlen = 0;
    SSL *ssl;
    (void)bev;
    fprintf(stderr, "%s connected\n", session_data->client_addr);
    ssl = bufferevent_openssl_get_ssl(session_data->bev);
    SSL_get0_next_proto_negotiated(ssl, &alpn, &alpnlen);
 #if OPENSSL_VERSION_NUMBER >= 0x10002000L
    if (alpn == NULL) {
      SSL_get0_alpn_selected(ssl, &alpn, &alpnlen);
    }
 #endif // OPENSSL_VERSION_NUMBER >= 0x10002000L
    if (alpn == NULL || alpnlen != 2 || memcmp("h2", alpn, 2) != 0) {
      fprintf(stderr, "%s h2 is not negotiated\n", session_data->client_addr);
      delete_http2_session_data(session_data);
      return;
    }
    initialize_nghttp2_session(session_data);
-    if (send_server_connection_header(session_data) != 0 ||
+    if (send_server_connection_header(session_data) != 0) {
        session_send(session_data) != 0) {
      delete_http2_session_data(session_data);
      return;
    }
@@ -723,11 +662,10 @@ static void eventcb(struct bufferevent *bev, short events, void *ptr) {
 }
 /* callback for evconnlistener */
-static void acceptcb(struct evconnlistener *listener, int fd,
+static void acceptcb(struct evconnlistener *listener _U_, int fd,
                     struct sockaddr *addr, int addrlen, void *arg) {
  app_context *app_ctx = (app_context *)arg;
  http2_session_data *session_data;
  (void)listener;
  session_data = create_http2_session_data(app_ctx, fd, addr, addrlen);
@@ -802,6 +740,9 @@ int main(int argc, char **argv) {
  act.sa_handler = SIG_IGN;
  sigaction(SIGPIPE, &act, NULL);
 #ifndef OPENSSL_IS_BORINGSSL
  OPENSSL_config(NULL);
 #endif /* OPENSSL_IS_BORINGSSL */
  SSL_load_error_strings();
  SSL_library_init();
--- a/examples/tiny-nghttpd.c
+++ b/examples/tiny-nghttpd.c
--- a/fuzz/README.rst
+++ b/fuzz/README.rst
@@ -1,33 +0,0 @@
 Fuzzer
 ======
 This directory contains fuzzer target mainly written to integrate
 nghttp2 into `oss-fuzz <https://github.com/google/oss-fuzz>`_.
 fuzz_target.cc contains an entry point of fuzzer.  corpus directory
 contains initial data for fuzzer.
 The file name of initial data under corpus is the lower-cased hex
 string of SHA-256 hash of its own content.
 corpus/h2spec contains input data which was recorded when we ran
 `h2spec <https://github.com/summerwind/h2spec>`_ against nghttpd.
 corpus/nghttp contains input data which was recorded when we ran
 nghttp against nghttpd with some varying command line options of
 nghttp.
 To build fuzz_target.cc, make sure that libnghttp2 is built with
 following compiler/linker flags:
 .. code-block:: text
    CPPFLAGS="-fsanitize-coverage=edge -fsanitize=addres"
    LDFLAGS="-fsanitize-coverage=edge -fsanitize=addres"
 Then, fuzz_target.cc can be built using the following command:
 .. code-block:: text
    $ clang++ -fsanitize-coverage=edge -fsanitize=address -I../lib/includes -std=c++11 fuzz_target.cc ../lib/.libs/libnghttp2.a  /usr/lib/llvm-3.9/lib/libFuzzer.a -o nghttp2_fuzzer
--- a/fuzz/corpus/h2spec/025ca25c8427361ea5498e4c3ba49d20eac5b4332f7b75b8f74bfba5e43f59f8
+++ b/fuzz/corpus/h2spec/025ca25c8427361ea5498e4c3ba49d20eac5b4332f7b75b8f74bfba5e43f59f8
--- a/fuzz/corpus/h2spec/0276779c73bddcebc63b863c23a338b4c827bf6164640ff20a2d64d45a6b3f5a
+++ b/fuzz/corpus/h2spec/0276779c73bddcebc63b863c23a338b4c827bf6164640ff20a2d64d45a6b3f5a
--- a/fuzz/corpus/h2spec/0428d1e3b2364efcc93ffd8fcfff43b378a92c7da44268b9dda2bf32a1178c66
+++ b/fuzz/corpus/h2spec/0428d1e3b2364efcc93ffd8fcfff43b378a92c7da44268b9dda2bf32a1178c66
--- a/fuzz/corpus/h2spec/06bc5f79b7e68e005bd4382bd3a6c6b1b6005c5f7d5783e99baf2f8f7432d71a
+++ b/fuzz/corpus/h2spec/06bc5f79b7e68e005bd4382bd3a6c6b1b6005c5f7d5783e99baf2f8f7432d71a
--- a/fuzz/corpus/h2spec/09f76550ec065944a5d1d52f5d07b1dd87de1f651f80ef82c2815b0248b7dccd
+++ b/fuzz/corpus/h2spec/09f76550ec065944a5d1d52f5d07b1dd87de1f651f80ef82c2815b0248b7dccd
--- a/fuzz/corpus/h2spec/0b39d9df6e1721030667980a41547272ad42377149edcf130b2bf0b76804c61f
+++ b/fuzz/corpus/h2spec/0b39d9df6e1721030667980a41547272ad42377149edcf130b2bf0b76804c61f
@@ -1,2 +0,0 @@
 INVALID CONNECTION PREFACE
--- a/fuzz/corpus/h2spec/0bb4365b02c05540936f9606ca725770a731e73c2144c7b81953dcc4b4f73c32
+++ b/fuzz/corpus/h2spec/0bb4365b02c05540936f9606ca725770a731e73c2144c7b81953dcc4b4f73c32
--- a/fuzz/corpus/h2spec/0d577f6eb853e987b8fdab6ca4615a351ab74bfc75eb0d227acbef6a35bcae39
+++ b/fuzz/corpus/h2spec/0d577f6eb853e987b8fdab6ca4615a351ab74bfc75eb0d227acbef6a35bcae39
--- a/fuzz/corpus/h2spec/0df702020c019dd33d0643c5a2b9a9637d325c8f38b4cc6d3f808b5b2a4169a9
+++ b/fuzz/corpus/h2spec/0df702020c019dd33d0643c5a2b9a9637d325c8f38b4cc6d3f808b5b2a4169a9
--- a/fuzz/corpus/h2spec/0f8054152149c73e64c9f3e83f97e6585c8a51ec2413e7a2e8dfcc444082a5c5
+++ b/fuzz/corpus/h2spec/0f8054152149c73e64c9f3e83f97e6585c8a51ec2413e7a2e8dfcc444082a5c5
--- a/fuzz/corpus/h2spec/105f72bc9184bf47a857ed84e8c2f917946ec7ef3f4720535478b41e097a798a
+++ b/fuzz/corpus/h2spec/105f72bc9184bf47a857ed84e8c2f917946ec7ef3f4720535478b41e097a798a
--- a/fuzz/corpus/h2spec/1368ed7160cc4115e31a8a158af429421570e7363a3b75441edc5d740513b0dc
+++ b/fuzz/corpus/h2spec/1368ed7160cc4115e31a8a158af429421570e7363a3b75441edc5d740513b0dc
--- a/fuzz/corpus/h2spec/1402c49b963994284b0d429edfac603133e0144dba08836f90b1ae164b328800
+++ b/fuzz/corpus/h2spec/1402c49b963994284b0d429edfac603133e0144dba08836f90b1ae164b328800
--- a/fuzz/corpus/h2spec/1468c2cddae629788f6957847b76c09921e984796f6dc482859b119cf4879300
+++ b/fuzz/corpus/h2spec/1468c2cddae629788f6957847b76c09921e984796f6dc482859b119cf4879300
--- a/fuzz/corpus/h2spec/14f66ce296f03e52f039f4fad189d3d70aebe70ecb14ffb1ffe2cd5fc5d1e5f0
+++ b/fuzz/corpus/h2spec/14f66ce296f03e52f039f4fad189d3d70aebe70ecb14ffb1ffe2cd5fc5d1e5f0
--- a/fuzz/corpus/h2spec/17caaf734401d2d25d09a65432789b45aff588c606536e93824b89739a6d07ab
+++ b/fuzz/corpus/h2spec/17caaf734401d2d25d09a65432789b45aff588c606536e93824b89739a6d07ab
--- a/fuzz/corpus/h2spec/195b4a74a62fabc877052454d935ebc543f4d1305e318ccd2ff407517636bed8
+++ b/fuzz/corpus/h2spec/195b4a74a62fabc877052454d935ebc543f4d1305e318ccd2ff407517636bed8
--- a/fuzz/corpus/h2spec/1960fc215485486f3e8ab97f853954e6f11c1f4754ccd83b1603b808878cfa76
+++ b/fuzz/corpus/h2spec/1960fc215485486f3e8ab97f853954e6f11c1f4754ccd83b1603b808878cfa76
--- a/fuzz/corpus/h2spec/1a56272611761f0687dfb0ea37c900f13f429b750c87e6175b234b881bda6248
+++ b/fuzz/corpus/h2spec/1a56272611761f0687dfb0ea37c900f13f429b750c87e6175b234b881bda6248
--- a/fuzz/corpus/h2spec/1d31cd88fae35f2329e201983d11256d2432fcdeb55bfba9634aa88e3794adc6
+++ b/fuzz/corpus/h2spec/1d31cd88fae35f2329e201983d11256d2432fcdeb55bfba9634aa88e3794adc6
--- a/fuzz/corpus/h2spec/1e27187b10c02fe7e151818ddd0722f69830ac04975ddb5a9d83cdc406cbb678
+++ b/fuzz/corpus/h2spec/1e27187b10c02fe7e151818ddd0722f69830ac04975ddb5a9d83cdc406cbb678
--- a/fuzz/corpus/h2spec/1ecace234d8542fbaab35c7c55330e80d8121a0cff19633a56eba8f2182a59df
+++ b/fuzz/corpus/h2spec/1ecace234d8542fbaab35c7c55330e80d8121a0cff19633a56eba8f2182a59df
--- a/fuzz/corpus/h2spec/1f4f3a16f5ad0425e0b38601339096b80a382afa1083a19c4deab11be847502f
+++ b/fuzz/corpus/h2spec/1f4f3a16f5ad0425e0b38601339096b80a382afa1083a19c4deab11be847502f
--- a/fuzz/corpus/h2spec/203a798d4b658be744fe34042038692eaede4d2c1f9e05a27f2410a6e0230132
+++ b/fuzz/corpus/h2spec/203a798d4b658be744fe34042038692eaede4d2c1f9e05a27f2410a6e0230132
--- a/fuzz/corpus/h2spec/21904e842e90becb56ff9748ae962bb543dd5ca188dabc30897726f87403fbce
+++ b/fuzz/corpus/h2spec/21904e842e90becb56ff9748ae962bb543dd5ca188dabc30897726f87403fbce
--- a/fuzz/corpus/h2spec/23df7e0419240a9709b55af68a89c9750332ae5063e36401eae150ce63188fe0
+++ b/fuzz/corpus/h2spec/23df7e0419240a9709b55af68a89c9750332ae5063e36401eae150ce63188fe0
--- a/fuzz/corpus/h2spec/245ba702520fa32cf41d994f5d37e4111fe6203bac35b220d50362d5e986aa91
+++ b/fuzz/corpus/h2spec/245ba702520fa32cf41d994f5d37e4111fe6203bac35b220d50362d5e986aa91
--- a/fuzz/corpus/h2spec/274faf343feb9cb44079316401fee50c647552c99c0550ebfd7a3b736e8db9e5
+++ b/fuzz/corpus/h2spec/274faf343feb9cb44079316401fee50c647552c99c0550ebfd7a3b736e8db9e5
--- a/fuzz/corpus/h2spec/2b042a1dfa3aeed6af58c58a4336f1386633bac75dea2c4b64c02541e7320933
+++ b/fuzz/corpus/h2spec/2b042a1dfa3aeed6af58c58a4336f1386633bac75dea2c4b64c02541e7320933
--- a/fuzz/corpus/h2spec/2d8ec606661a9f12960893aab9a74dd392cbdae104307e8512e5e4113739e93a
+++ b/fuzz/corpus/h2spec/2d8ec606661a9f12960893aab9a74dd392cbdae104307e8512e5e4113739e93a
--- a/fuzz/corpus/h2spec/2e0c8a3ce53e8e3711f781b480efaf9e2526f4ae87c5f5a585d68d6f7f7da13c
+++ b/fuzz/corpus/h2spec/2e0c8a3ce53e8e3711f781b480efaf9e2526f4ae87c5f5a585d68d6f7f7da13c
--- a/fuzz/corpus/h2spec/315e6acba7d715333d0865a8dfc0cd0e7aef8a1f5f420eae3d39067ad78df17d
+++ b/fuzz/corpus/h2spec/315e6acba7d715333d0865a8dfc0cd0e7aef8a1f5f420eae3d39067ad78df17d
--- a/fuzz/corpus/h2spec/3376a2cdde0b98759f14490881328f80b5d3c942de3b1304a0382923ce896f8f
+++ b/fuzz/corpus/h2spec/3376a2cdde0b98759f14490881328f80b5d3c942de3b1304a0382923ce896f8f
--- a/fuzz/corpus/h2spec/35c2719913a19f197fb6484a34c3574da63554ff06f52377b73a9cfc24eb02ca
+++ b/fuzz/corpus/h2spec/35c2719913a19f197fb6484a34c3574da63554ff06f52377b73a9cfc24eb02ca
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Tatsuhiro Tsujikawa	5563a0bea6	Update man pages	2016-02-11 23:13:41 +09:00
Tatsuhiro Tsujikawa	5952f071da	Bump up version number to 1.7.1	2016-02-11 23:10:34 +09:00
Tatsuhiro Tsujikawa	5a7486164f	Fix configure script for non-gcc, clang build	2016-02-11 23:09:11 +09:00
Tatsuhiro Tsujikawa	c8395edfbe	asio: client: Limit incoming response header field buffer size	2016-02-10 22:36:01 +09:00
Tatsuhiro Tsujikawa	3bff503a16	Add warning	2016-02-04 23:38:46 +09:00
Tatsuhiro Tsujikawa	7a0ab83107	nghttp: Limit incoming header field buffer	2016-02-04 23:38:46 +09:00
Tatsuhiro Tsujikawa	026919b7ea	asio: server: Limit incoming request header field buffer size	2016-02-04 23:38:46 +09:00
Tatsuhiro Tsujikawa	64d7288428	nghttpd: Limit request header buffer	2016-02-04 23:38:46 +09:00