Pending RELEASE-NOTES for the upcoming release

This is work in progress and will change before the release goes public on 5th of January 2022.

Changes:

• mime: use percent-escaping for multipart form field and file names

Bugfixes:

• azure: make the "w/o HTTP/SMTP/IMAP" build disable SSL proper
• cmake: don't set _USRDLL on a static Windows build
• cmake: private identifiers use CURL_ instead of CMAKE_ prefix
• config.d: update documentation to match the path search
• configure: add -lm to configure for rustls build.
• configure: better diagnostics if hyper is built wrong
• configure: don't enable TLS when --without-* flags are used
• configure: fix runtime-lib detection on macOS
• curl.1: require "see also" for every documented option
• curl: improve error message for --head with -J
• curl_easy_cleanup.3: remove from multi handle first
• curl_easy_escape.3: call curl_easy_cleanup in example
• curl_easy_unescape.3: call curl_easy_cleanup in example
• curl_share_setopt.3: split out options into their own manpages
• CURLOPT_STDERR.3: does not work with libcurl as a win32 DLL
• digest: compute user:realm:pass digest w/o userhash
• docs/checksrc: Add documentation for STRERROR
• docs/cmdline-opts: do not say "protocols: all"
• docs/INSTALL.md: typo fix : added missing "get" verb
• docs: address proselint nits
• docs: consistent manpage SYNOPSIS
• docs: Update the Reducing Size section
• FAQ: typo fix : "yout" ➤ "your"
• gen.pl: improve example output format
• http2:set_transfer_url() return early on OOM
• HTTP3: update quiche build instructions
• http: enable haproxy support for hyper backend
• insecure.d: detail its use for SFTP and SCP as well
• insecure.d: expand and clarify
• libssh2: fix error message for sha256 mismatch
• lift: ignore is a deprecated config option, use ignoreRules
• Makefile.m32: rename -winssl option to -schannel and tidy up
• mbedTLS: add support for CURLOPT_CAINFO_BLOB
• mbedTLS: include NULL byte in blob data length for CURLOPT_CAINFO_BLOB
• multi: handle errors returned from socket/timer callbacks
• multi: shut down CONNECT in Curl_detach_connnection
• netrc.d: edit the .netrc example to look nicer
• openldap: implement STARTTLS
• openssl: check the return value of BIO_new()
• openssl: remove `RSA_METHOD_FLAG_NO_CHECK` handling if unavailable
• openssl: remove usage of deprecated `SSL_get_peer_certificate`
• openssl: use non-deprecated API to read key parameters
• page-footer: add a mention of how to report bugs to the man page
• page-footer: document more environment variables
• request.d: refer to 'method' rather than 'command'
• retry-all-errors.d: make the example complete
• runtests: make the SSH library a testable feature
• rustls: read of zero bytes might be okay
• rustls: remove comment about checking handshaking
• rustls: remove incorrect EOF check
• test1554: adjust for hyper
• test1556: adjust for hyper
• test302[12]: run only with the libssh2 backend
• tests/CI.md: add more information on CI environments
• tftp: mark protocol as not possible to do over CONNECT
• tool_findfile: updated search for a file in the homedir
• tool_operate: only set SSH related libcurl options for SSH URLs
• url.c: fix the SIGPIPE comment for Curl_close
• urlapi: accept port number zero
• urlapi: provide more detailed return codes
• urlapi: reject short file URLs
• version_win32: Check build number and platform id
• vtls/rustls: adapt to the updated rustls_version proto
• writeout: fix %{http_version} for HTTP/3
• zuul.d: update rustls-ffi to version 0.8.2

Contributors:

Alessandro Ghedini, Bernat Mut, Bernhard Walle, Boris Rasin, Brad Fitzpatrick, Bruno Baguette, Damien Walsh, Dan Fandrich, Daniel Stenberg, David Bohman, Don J Olmstead, Even Rouault, Florian Van Heghe, Glenn Strauss, Jacob Hoffman-Andrews, Jeff Luszcz, jeffrson on github, Jun Tseng, Kevin Burke, Marcelo Juchem, Marcel Raad, Mark Dodgson, nimaje on github, Patrick Monnerat, Paul Howarth, Ray Satiro, Rikard Falkeborn, Ryan Sleevi, Stan Hu, Stefan Eissing, Stephane Pellegrino, Stephen M. Coakley, Viktor Szakats, Vincent Grande, Wyatt O'Day,