Let's call it 7.27.1 for now, but it it probably going to become 7.28.0
when released.

This needs another look from the configure experts. I tested that
it works so far with MinGW64 cross-compiler; libcurl builds and
links fine, but curl not yet ...

The --silent bug came with 7561a0fc which was never in a release.
Pointed out by Kamil Dudka

4 more bugfixes, 3 more contributors

Synced the output to the same short form as we now use for
Windows SSL (WinSSL).

Previously the curl_multi interface would freeze if darwinssl was
enabled and at least one of the handles tried to connect to a Web site
using HTTPS. Removed the "wouldblock" state darwinssl was using because
I figured out a solution for our "would block but in which direction?"
dilemma.

Reported by: Santhana Todatry

DragonFly uses milliseconds, while our API and Linux use full seconds.

Reported by: John Marino
Bug: http://curl.haxx.se/bug/view.cgi?id=3546257

Bug: https://bugzilla.redhat.com/676596

... and orig_isatty which caused --silent to be entirely ignored in case
the standard output was redirected to a file!

The clean-local hook needed some polish to make sure make distclean
works. Added comment describing why.

Previous fix didnt work on Linux ...

Replaced the Windows real path from mount hack with a more
reliable and simpler hack: the MSYS shell has a builtin pwd
which understands a -W option which does convertion to Windows
paths. Tested and confirmed that this works on all MSYS versions
I have back to a 3 year old one.

1) the check for winssl needs to come before nss check
2) the SSL checks must begin with a new if or else we will
never find any SSL lib with MinGW.

This is a MSYS/MinGW-only warning; full warning text is:
Use of uninitialized value in numeric gt (>) at ../../curl/tests/runtests.pl line 2227.

Fixed 6 bugs, added 3 contributors

In many states the easy_conn pointer is referenced and just assumed to
be working. This is an added extra check since analyzing indicates
there's a risk we can end up in these states with a NULL pointer there.

It should return PARAM_NO_MEM if the strdup fails. Spotted by
clang-analyzer

Spotted by clang-analyzer

Spotted by clang-analyzer. The return code was never checked, just
stored.

va_end() needs to be used after va_start() and we don't normally use
Curl_ prefixes for purely static functions.

This avoids false positives from clang's scan-build.