Update Release Candidate

e1b3ea22 · Joanne Hugé · 79b3408d · 7ad08c72 · e1b3ea22 · e1b3ea22
Commit e1b3ea22 authored Apr 17, 2023 by Joanne Hugé
69 changed files
--- a/component/curl/buildout.cfg
+++ b/component/curl/buildout.cfg
@@ -19,8 +19,8 @@ parts =
 [curl]
 recipe = slapos.recipe.cmmi
 shared = true
-url = https://curl.se/download/curl-7.87.0.tar.xz
-md5sum = 0b0f5de173afd303229e5272689578d7
+url = https://curl.se/download/curl-8.0.1.tar.xz
+md5sum = f6c2fdeb30ad30234378a56c28350845
 configure-options =
  --disable-static
  --disable-ech
@@ -67,28 +67,20 @@ configure-options =
 ALT-SVC = --disable-alt-svc
 LDFLAGS =
 OPENSSL = ${openssl:location}
-PATH =
 PKG_CONFIG_PATH =
 WITH =

 environment =
-  PATH=${perl:location}/bin:${pkgconfig:location}/bin:${xz-utils:location}/bin:${:PATH}:%(PATH)s
+  PATH=${perl:location}/bin:${pkgconfig:location}/bin:${xz-utils:location}/bin:%(PATH)s
  PKG_CONFIG_PATH=${:OPENSSL}/lib/pkgconfig:${nghttp2:location}/lib/pkgconfig${:PKG_CONFIG_PATH}
  LDFLAGS=-Wl,-rpath=${zlib:location}/lib -Wl,-rpath=${:OPENSSL}/lib -Wl,-rpath=${nghttp2:location}/lib -Wl,-rpath=${zstd:location}/lib ${:LDFLAGS}

 [curl-http3]
 <= curl
-url = https://shacache.nxdcdn.com/73669dd9ed7aefbb30414c6ce2dd20c39bb2f106cf420dedf7d302eb2c4147876a05b0a1458661bcb66ab1d944e7254a42802caa31070a7e43e9dd24f98320b8
-md5sum = d71d04dd7201480df1024d5c754a9613
-pre-configure =
-  autoreconf -fisv -I ${libtool:location}/share/aclocal -I ${pkgconfig:location}/share/aclocal
-  automake
-  autoconf

 ALT-SVC = --enable-alt-svc
 LDFLAGS = -Wl,-rpath=${nghttp3:location}/lib -Wl,-rpath=${ngtcp2:location}/lib
 OPENSSL = ${openssl-quictls:location}
-PATH = ${autoconf:location}/bin:${automake:location}/bin:${libtool:location}/bin:${m4:location}/bin
 PKG_CONFIG_PATH = :${nghttp3:location}/lib/pkgconfig:${ngtcp2:location}/lib/pkgconfig
 WITH =
  --with-nghttp3=${nghttp3:location}

--- a/component/haproxy/buildout.cfg
+++ b/component/haproxy/buildout.cfg
@@ -13,8 +13,8 @@ parts = haproxy
 [haproxy]
 recipe = slapos.recipe.cmmi
 shared = true
-url = https://www.haproxy.org/download/2.6/src/haproxy-2.6.9.tar.gz
-md5sum = 8c8fa1a2f9592efa2793bcc74e2ea501
+url = https://www.haproxy.org/download/2.6/src/haproxy-2.6.11.tar.gz
+md5sum = 1c5b8b0399158e44826c616424396df6
 configure-command = true
 # for Linux kernel 2.6.28 and above, we use "linux-glibc" as the TARGET,
 # otherwise use "generic".

--- a/component/nghttp3/buildout.cfg
+++ b/component/nghttp3/buildout.cfg
@@ -7,8 +7,8 @@ extends =
 [nghttp3]
 recipe = slapos.recipe.cmmi
 shared = true
-url = https://github.com/ngtcp2/nghttp3/archive/refs/tags/v0.8.0.tar.gz
-md5sum = c6068762cdf221ae1fed2351af40b4d6
+url = https://github.com/ngtcp2/nghttp3/archive/refs/tags/v0.9.0.tar.gz
+md5sum = e0eb54109d0d511268b9e2cf6aec4044
 pre-configure =
  autoreconf -fisv -I ${libtool:location}/share/aclocal -I ${pkgconfig:location}/share/aclocal
  automake

--- a/component/nginx/buildout.cfg
+++ b/component/nginx/buildout.cfg
@@ -11,8 +11,8 @@ parts = nginx-output
 [nginx-common]
 recipe = slapos.recipe.cmmi
 shared = true
-url = https://nginx.org/download/nginx-1.20.1.tar.gz
-md5sum = 8ca6edd5076bdfad30a69c9c9b41cc68
+url = https://nginx.org/download/nginx-1.22.1.tar.gz
+md5sum = 8296d957561aeed0261d9be4d3decaec

 [nginx]
 <= nginx-common

--- a/component/ngtcp2/buildout.cfg
+++ b/component/ngtcp2/buildout.cfg
@@ -8,8 +8,8 @@ extends =
 [ngtcp2]
 recipe = slapos.recipe.cmmi
 shared = true
-url = https://github.com/ngtcp2/ngtcp2/archive/refs/tags/v0.12.1.tar.gz
-md5sum = c826c4630689d2afb9300b97cc5e52a3
+url = https://github.com/ngtcp2/ngtcp2/archive/refs/tags/v0.13.1.tar.gz
+md5sum = 52a58aadbaf195cebff0289adda0e8db
 pre-configure =
  autoreconf -fisv -I ${libtool:location}/share/aclocal -I ${pkgconfig:location}/share/aclocal
  automake

--- a/component/openssl/buildout.cfg
+++ b/component/openssl/buildout.cfg
@@ -48,8 +48,8 @@ environment =

 [openssl-quictls]
 <= openssl
-url = https://github.com/quictls/openssl/archive/refs/tags/openssl-3.0.8-quic1.tar.gz
-md5sum = a203b9b158429ca75539b55a137d317b
+url = https://github.com/quictls/openssl/archive/refs/tags/OpenSSL_1_1_1t-quic1.tar.gz
+md5sum = 8281790102204592d944e08d6ee09c5f

 [openssl-output]
 # Shared binary location to ease migration

--- a/component/python-sslpsk/buildout.cfg
+++ b/component/python-sslpsk/buildout.cfg
+[buildout]
+extends =
+  ../openssl/buildout.cfg
+  ../pkgconfig/buildout.cfg
+
+parts =
+  python-sslpsk
+
+[python-sslpsk]
+recipe = zc.recipe.egg:custom
+egg = sslpsk
+environment = python-sslpsk-env
+library-dirs =
+  ${openssl:location}/lib/
+rpath =
+  ${openssl:location}/lib/
+
+[python-sslpsk-env]
+PATH = ${pkgconfig:location}/bin:%(PATH)s
+PKG_CONFIG_PATH = ${openssl:location}/lib/pkgconfig
+CPATH = ${openssl:location}/include
--- a/component/trafficserver/buildout.cfg
+++ b/component/trafficserver/buildout.cfg
@@ -24,8 +24,8 @@ min_version = 8

 [trafficserver]
 recipe = slapos.recipe.cmmi
-url = https://dlcdn.apache.org/trafficserver/trafficserver-9.1.3.tar.bz2
-md5sum = 020e09019d38704a2cf96f4ae8450709
+url = https://dlcdn.apache.org/trafficserver/trafficserver-9.2.0.tar.bz2
+md5sum = 3188d53f0a2eb618fb9399e098161691
 shared = true
 patch-options = -p1
 configure-options =

--- a/software/beremiz-ide/software.cfg
+++ b/software/beremiz-ide/software.cfg
@@ -211,3 +211,4 @@ trollius = 2.2.1
 pathlib = 1.0.1
 ddt = 1.4.4
 click = 7.1.2
+sslpsk = 1.0.0
--- a/software/beremiz-ide/test.cfg
+++ b/software/beremiz-ide/test.cfg
 [buildout]

 extends =
+    ../../component/python-sslpsk/buildout.cfg
    software.cfg
    ../../component/git/buildout.cfg
    ../../component/pytest/buildout.cfg
@@ -25,6 +26,7 @@ setup-eggs =

 [python-interpreter]
 eggs +=
+  ${python-sslpsk:egg}
  ${pytest:eggs}
  pytest-timeout
  ${ddt:egg}

--- a/software/metabase/buildout.hash.cfg
+++ b/software/metabase/buildout.hash.cfg
 [instance-profile]
 filename = instance.cfg.in
-md5sum = c79f0bcf9dac25060340aa829c4f291c
+md5sum = 685e7b371768f6977896d7214fd379f1
--- a/software/metabase/instance.cfg.in
+++ b/software/metabase/instance.cfg.in
@@ -130,7 +130,7 @@ recipe = slapos.cookbook:generate.password

 [postgresql]
 recipe = slapos.cookbook:postgres
-bin = ${postgresql10:location}/bin/
+bin = ${postgresql10:location}/bin
 services = $${directory:service}
 dbname  = metabase_db
 superuser = metabase-psql
@@ -190,13 +190,21 @@ wrapper-path = $${directory:bin}/$${:_buildout_section_name_}
 command-line =
  sh -e -c "\
    echo 'This will replace current database with latest backup. Hit Ctrl+C to cancel';
-    sleep 5;
+    sleep 10;
+    $${postgresql:bin}/dropdb \
+        -h $${postgresql:pgdata-directory} \
+        -U $${postgresql:superuser} \
+        --if-exists \
+        $${postgresql:dbname};
+    $${postgresql:bin}/createdb \
+        -h $${postgresql:pgdata-directory} \
+        -U $${postgresql:superuser} \
+        $${postgresql:dbname};
    $${postgresql:bin}/pg_restore \
        --exit-on-error \
-        --clean \
-        --create \
        -h $${postgresql:pgdata-directory} \
        -U $${postgresql:superuser} \
+        -d $${postgresql:dbname} \
        $${postgresql-backup:backup-file}"

 [cron]

--- a/software/metabase/test/test.py
+++ b/software/metabase/test/test.py
@@ -25,23 +25,32 @@
 #
 ##############################################################################

+import contextlib
 import os
 import json
 from urllib import parse
+import shutil
+import subprocess
+import time
+
 import requests

 from slapos.testing.testcase import makeModuleSetUpAndTestCaseClass
+from slapos.testing.utils import CrontabMixin
+

-setUpModule, MetabaseTestCase = makeModuleSetUpAndTestCaseClass(
+setUpModule, BaseTestCase = makeModuleSetUpAndTestCaseClass(
    os.path.abspath(
        os.path.join(os.path.dirname(__file__), '..', 'software.cfg')))


-class TestMetabaseSetup(MetabaseTestCase):
+class MetabaseTestCase(BaseTestCase):
  __partition_reference__ = 'S'  # postgresql use a socket in data dir
  # instance can take time, /api/session/properties timeout at the beginning.
  instance_max_retry = 30

+
+class TestMetabaseSetup(MetabaseTestCase):
  def test_setup(self):
    url = self.computer_partition.getConnectionParameterDict()['url']
    resp = requests.get(parse.urljoin(url, '/setup'), verify=False)
@@ -94,3 +103,62 @@ class TestMetabaseSetup(MetabaseTestCase):
            "password": password
        }).json()
    self.assertTrue(session.get('id'))
+
+
+class TestMetabaseBackup(MetabaseTestCase, CrontabMixin):
+  def test_backup(self):
+    self._executeCrontabAtDate('postgresql-backup-crontab-entry', '2100-01-01')
+    with open(
+      os.path.join(
+        self.computer_partition_root_path, 'srv', 'backup', 'backup.pg_dump'),
+      'rb') as f:
+      self.assertIn(b'CREATE DATABASE metabase_db', f.read())
+
+  def test_restore(self):
+    # restore a "known good" backup and check we can login with the
+    # user from the backup.
+    url = self.computer_partition.getConnectionParameterDict()['url']
+
+    shutil.copyfile(
+      os.path.join(os.path.dirname(__file__), 'testdata', 'backup.pg_dump'),
+      os.path.join(
+        self.computer_partition_root_path, 'srv', 'backup', 'backup.pg_dump')
+    )
+
+    with self.slap.instance_supervisor_rpc as supervisor:
+      # stop metabase, so that it does not interfere with restoring the backup
+      info, = [i for i in
+         supervisor.getAllProcessInfo() if 'metabase-instance' in i['name']]
+      metabase_process_name = f"{info['group']}:{info['name']}"
+      supervisor.stopProcess(metabase_process_name)
+
+      # restart postgres, to terminate all current connections
+      info, = [i for i in
+         supervisor.getAllProcessInfo() if 'postgres' in i['name']]
+      postresql_process_name = f"{info['group']}:{info['name']}"
+      supervisor.stopProcess(postresql_process_name)
+      supervisor.startProcess(postresql_process_name)
+
+    subprocess.check_output(
+      os.path.join(
+        self.computer_partition_root_path, 'bin', 'postgresql-restore-backup'))
+
+    with self.slap.instance_supervisor_rpc as supervisor:
+      supervisor.startProcess(metabase_process_name)
+
+    for _ in range(30):
+      with contextlib.suppress(requests.exceptions.RequestException):
+        time.sleep(1)
+        resp = requests.post(
+          parse.urljoin(url, '/api/session'),
+          verify=False,
+          json={
+            "username": "youlooknicetoday@email.com",
+            "password": "passwordformbackup123"
+          }, timeout=5)
+        if resp.ok:
+          session = resp.json()
+          break
+    else:
+      resp.raise_for_status()
+    self.assertTrue(session.get('id'))
--- a/software/metabase/test/testdata/backup.pg_dump
+++ b/software/metabase/test/testdata/backup.pg_dump
--- a/software/ors-amarisoft/buildout.hash.cfg
+++ b/software/ors-amarisoft/buildout.hash.cfg
@@ -56,7 +56,7 @@ md5sum = 765fd303d6013cf4dbee108c53623412

 [template-obsolete]
 _update_hash_filename_ = instance-obsolete.jinja2.cfg
-md5sum = e9bd42aa4861c41b684911ad0f37ba4d
+md5sum = c5f581ba01654b2aec46000abf8d0e35

 [ue_db.jinja2.cfg]
 filename = config/ue_db.jinja2.cfg
@@ -64,7 +64,7 @@ md5sum = dcaac06553a3222b14c0013a13f4a149

 [enb.jinja2.cfg]
 filename = config/enb.jinja2.cfg
-md5sum = 0b2a37e6902fd5ad3d6b37e11eebec69
+md5sum = 1333ef2400f2088221ed879f1b03e777

 [sib23.asn]
 filename = config/sib23.asn
@@ -72,7 +72,7 @@ md5sum = b377dac7f1fcf94fb9ce9ebed617f36a

 [gnb.jinja2.cfg]
 filename = config/gnb.jinja2.cfg
-md5sum = cbbbdeda9ddaaf5957d91ef31afe6051
+md5sum = a49375a59ddda6b8e6eab30e7af30dc6

 [ltelogs.jinja2.sh]
 filename = ltelogs.jinja2.sh

--- a/software/ors-amarisoft/changelog.rst
+++ b/software/ors-amarisoft/changelog.rst
@@ -19,3 +19,8 @@ Version 1.0.316 (2023-04-14)
    - enb
    - gnb
    - core-network (replaces epc software type)
+
+Version 1.0.317 (2023-04-18)
+-------------
+
+* Add support for inter gNB NR handover
--- a/software/ors-amarisoft/config/enb.jinja2.cfg
+++ b/software/ors-amarisoft/config/enb.jinja2.cfg
@@ -23,6 +23,9 @@
  rf_driver: {
      name: "sdr",
      args: "dev0=/dev/sdr0",
+{% if slapparameter_dict.get('gps_sync', False) %}
+        sync: "gps",
+{% endif %}
      rx_antenna:"tx_rx",
  },
  tx_gain: {{ slapparameter_dict.get('tx_gain', slap_configuration['configuration.default_lte_tx_gain']) }},

--- a/software/ors-amarisoft/config/gnb.jinja2.cfg
+++ b/software/ors-amarisoft/config/gnb.jinja2.cfg
+{% set dl_nr_arfcn = slapparameter_dict.get('dl_nr_arfcn', slap_configuration['configuration.default_dl_nr_arfcn']) %}
+{% set band = slapparameter_dict.get('nr_band', slap_configuration['configuration.default_nr_band']) %}
+{% set gnb_id_bits = slapparameter_dict.get('gnb_id_bits', 28) %}
+
 #define FR2                  0  // Values: 0 (FR1), 1 (FR2)
 #define NR_TDD_CONFIG        2  // Values: FR1: 1, 2, 3, 4 (compatible with LTE TDD config 2) FR2: 10
 #define N_ANTENNA_DL         {{ slapparameter_dict.get('n_antenna_dl', slap_configuration['configuration.default_n_antenna_dl']) }}  // Values: 1 (SISO), 2 (MIMO 2x2), 4 (MIMO 4x4)
@@ -29,10 +33,10 @@
 {% else %}
  rf_driver: {
        name: "sdr",
-
        args: "dev0=/dev/sdr0",
-
-        // sync: "gps",
+{% if slapparameter_dict.get('gps_sync', False) %}
+        sync: "gps",
+{% endif %}
        rx_antenna: "tx_rx",
  },
  tx_gain: {{ slapparameter_dict.get('tx_gain', slap_configuration['configuration.default_nr_tx_gain']) }},
@@ -68,7 +72,7 @@
  gtp_addr: "127.0.1.1",
 {% endif %}

-  gnb_id_bits: {{ slapparameter_dict.get('gnb_id_bits', 28) }},
+  gnb_id_bits: {{ gnb_id_bits }},
  gnb_id: {{ slapparameter_dict.get('gnb_id', '0x12345') }},

  nr_support: true,
@@ -92,11 +96,38 @@
  nr_cell_list: [
  {
    rf_port: 0,
-    cell_id: 0x01,
-    band: {{ slapparameter_dict.get('nr_band', slap_configuration['configuration.default_nr_band']) }},
-    dl_nr_arfcn: {{ slapparameter_dict.get('dl_nr_arfcn', slap_configuration['configuration.default_dl_nr_arfcn']) }},
+    cell_id: {{ slapparameter_dict.get('cell_id', '0x01') }},
+    band: {{ band }},
+    dl_nr_arfcn: {{ dl_nr_arfcn }},
    subcarrier_spacing: 30,
    ssb_pos_bitmap: "{{ slapparameter_dict.get('ssb_pos_bitmap', slap_configuration['configuration.default_nr_ssb_pos_bitmap']) }}",
+
+{%- if slapparameter_dict.get('ncell_list', '') %}
+    ncell_list: [
+{%- for i, k in enumerate(slapparameter_dict['ncell_list']) %}
+{%- if i == 0 -%}
+      {
+{%- else -%}
+      , {
+{%- endif %}
+        rat: "nr",
+        ssb_nr_arfcn: {{ dl_nr_arfcn }},
+        dl_nr_arfcn: {{ dl_nr_arfcn }},
+        ul_nr_arfcn: {{ dl_nr_arfcn }},
+        n_id_cell: 500,
+        gnb_id_bits: {{ gnb_id_bits }},
+        nr_cell_id: {{ slapparameter_dict['ncell_list'][k].get('nr_cell_id', '') }},
+        tac: {{ slapparameter_dict['ncell_list'][k].get('tac', 1) }},
+        band: {{ band }},
+        ssb_subcarrier_spacing: 30,
+        ssb_period: 20,
+        ssb_offset: 0,
+        ssb_duration: 1,
+      }
+{%- endfor -%}
+    ],
+{% endif %}
+
  },
  ],


--- a/software/ors-amarisoft/instance-enb-input-schema.json.jinja2
+++ b/software/ors-amarisoft/instance-enb-input-schema.json.jinja2
@@ -25,6 +25,12 @@
      "type": "number",
      "default": {{ default_lte_rx_gain }}
    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_earfcn": {
      "title": "DL EARFCN",
      "description": "Downlink E-UTRA Absolute Radio Frequency Channel Number of the cell",

--- a/software/ors-amarisoft/instance-gnb-input-schema.json.jinja2
+++ b/software/ors-amarisoft/instance-gnb-input-schema.json.jinja2
@@ -25,6 +25,24 @@
      "type": "number",
      "default": {{ default_nr_rx_gain }}
    },
+    "n_antenna_dl": {
+      "title": "Number of DL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": {{ default_n_antenna_dl }}
+    },
+    "n_antenna_ul": {
+      "title": "Number of UL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": {{ default_n_antenna_ul }}
+    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_nr_arfcn": {
      "title": "DL NR ARFCN",
      "description": "Downlink NR Absolute Radio Frequency Channel Number of the cell",
@@ -61,6 +79,31 @@
      "type": "object",
      "default": {}
    },
+    "ncell_list": {
+      "title": "Neighbour Cell Info",
+      "description": "Neighbour Cell Info",
+      "patternProperties": {
+        ".*": {
+          "properties": {
+            "nr_cell_id": {
+              "title": "NR Cell ID",
+              "description": "Concatenation of gnb_id and cell_id of the neighbour cell",
+              "type": "string",
+              "default": "0x1234501"
+            },
+            "tac": {
+              "default": 100,
+              "title": "Tracking Area Code",
+              "description": "Integer (range 0 to 16777215)",
+              "type": "number"
+            }
+          },
+          "type": "object"
+        }
+      },
+      "type": "object",
+      "default": {}
+    },
    "gnb_id": {
      "title": "gNB ID",
      "description": "gNB ID",
@@ -73,6 +116,12 @@
      "type": "number",
      "default": 28
    },
+    "cell_id": {
+      "title": "Cell ID",
+      "description": "Cell ID",
+      "type": "string",
+      "default": "0x01"
+    },
    "pci": {
      "title": "Physical Cell ID",
      "description": "Physical Cell ID",
@@ -199,18 +248,6 @@
      "description": "Duration during which average temperature should not exceed specified threshold",
      "type": "number",
      "default": 600
-    },
-    "n_antenna_dl": {
-      "title": "Number of DL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": {{ default_n_antenna_dl }}
-    },
-    "n_antenna_ul": {
-      "title": "Number of UL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": {{ default_n_antenna_ul }}
    }
  }
 }
--- a/software/ors-amarisoft/instance-obsolete.jinja2.cfg
+++ b/software/ors-amarisoft/instance-obsolete.jinja2.cfg
-{% set obsolete_message = "This software type doesn't exist anymore. Please see documentation at XXXX" -%}
+{% set obsolete_message = "This software type doesn't exist anymore. Please ask Rapid.Space team to switch your services to the correct software types (gNB, eNB and Core Network)" -%}

 {% set part_list = [] -%}
 {%- for i, slave in enumerate(slave_instance_list) %}

--- a/software/ors-amarisoft/instance-tdd1900-enb-input-schema.json
+++ b/software/ors-amarisoft/instance-tdd1900-enb-input-schema.json
@@ -25,6 +25,12 @@
      "type": "number",
      "default": 45
    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_earfcn": {
      "title": "DL EARFCN",
      "description": "Downlink E-UTRA Absolute Radio Frequency Channel Number of the cell",

--- a/software/ors-amarisoft/instance-tdd1900-gnb-input-schema.json
+++ b/software/ors-amarisoft/instance-tdd1900-gnb-input-schema.json
@@ -25,6 +25,24 @@
      "type": "number",
      "default": 45
    },
+    "n_antenna_dl": {
+      "title": "Number of DL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": 2
+    },
+    "n_antenna_ul": {
+      "title": "Number of UL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": 2
+    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_nr_arfcn": {
      "title": "DL NR ARFCN",
      "description": "Downlink NR Absolute Radio Frequency Channel Number of the cell",
@@ -61,6 +79,31 @@
      "type": "object",
      "default": {}
    },
+    "ncell_list": {
+      "title": "Neighbour Cell Info",
+      "description": "Neighbour Cell Info",
+      "patternProperties": {
+        ".*": {
+          "properties": {
+            "nr_cell_id": {
+              "title": "NR Cell ID",
+              "description": "Concatenation of gnb_id and cell_id of the neighbour cell",
+              "type": "string",
+              "default": "0x1234501"
+            },
+            "tac": {
+              "default": 100,
+              "title": "Tracking Area Code",
+              "description": "Integer (range 0 to 16777215)",
+              "type": "number"
+            }
+          },
+          "type": "object"
+        }
+      },
+      "type": "object",
+      "default": {}
+    },
    "gnb_id": {
      "title": "gNB ID",
      "description": "gNB ID",
@@ -73,6 +116,12 @@
      "type": "number",
      "default": 28
    },
+    "cell_id": {
+      "title": "Cell ID",
+      "description": "Cell ID",
+      "type": "string",
+      "default": "0x01"
+    },
    "pci": {
      "title": "Physical Cell ID",
      "description": "Physical Cell ID",
@@ -199,18 +248,6 @@
      "description": "Duration during which average temperature should not exceed specified threshold",
      "type": "number",
      "default": 600
-    },
-    "n_antenna_dl": {
-      "title": "Number of DL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": 2
-    },
-    "n_antenna_ul": {
-      "title": "Number of UL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": 2
    }
  }
 }
--- a/software/ors-amarisoft/instance-tdd2600-enb-input-schema.json
+++ b/software/ors-amarisoft/instance-tdd2600-enb-input-schema.json
@@ -25,6 +25,12 @@
      "type": "number",
      "default": 45
    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_earfcn": {
      "title": "DL EARFCN",
      "description": "Downlink E-UTRA Absolute Radio Frequency Channel Number of the cell",

--- a/software/ors-amarisoft/instance-tdd2600-gnb-input-schema.json
+++ b/software/ors-amarisoft/instance-tdd2600-gnb-input-schema.json
@@ -25,6 +25,24 @@
      "type": "number",
      "default": 45
    },
+    "n_antenna_dl": {
+      "title": "Number of DL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": 2
+    },
+    "n_antenna_ul": {
+      "title": "Number of UL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": 2
+    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_nr_arfcn": {
      "title": "DL NR ARFCN",
      "description": "Downlink NR Absolute Radio Frequency Channel Number of the cell",
@@ -61,6 +79,31 @@
      "type": "object",
      "default": {}
    },
+    "ncell_list": {
+      "title": "Neighbour Cell Info",
+      "description": "Neighbour Cell Info",
+      "patternProperties": {
+        ".*": {
+          "properties": {
+            "nr_cell_id": {
+              "title": "NR Cell ID",
+              "description": "Concatenation of gnb_id and cell_id of the neighbour cell",
+              "type": "string",
+              "default": "0x1234501"
+            },
+            "tac": {
+              "default": 100,
+              "title": "Tracking Area Code",
+              "description": "Integer (range 0 to 16777215)",
+              "type": "number"
+            }
+          },
+          "type": "object"
+        }
+      },
+      "type": "object",
+      "default": {}
+    },
    "gnb_id": {
      "title": "gNB ID",
      "description": "gNB ID",
@@ -73,6 +116,12 @@
      "type": "number",
      "default": 28
    },
+    "cell_id": {
+      "title": "Cell ID",
+      "description": "Cell ID",
+      "type": "string",
+      "default": "0x01"
+    },
    "pci": {
      "title": "Physical Cell ID",
      "description": "Physical Cell ID",
@@ -199,18 +248,6 @@
      "description": "Duration during which average temperature should not exceed specified threshold",
      "type": "number",
      "default": 600
-    },
-    "n_antenna_dl": {
-      "title": "Number of DL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": 2
-    },
-    "n_antenna_ul": {
-      "title": "Number of UL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": 2
    }
  }
 }
--- a/software/ors-amarisoft/instance-tdd3500-enb-input-schema.json
+++ b/software/ors-amarisoft/instance-tdd3500-enb-input-schema.json
@@ -25,6 +25,12 @@
      "type": "number",
      "default": 45
    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_earfcn": {
      "title": "DL EARFCN",
      "description": "Downlink E-UTRA Absolute Radio Frequency Channel Number of the cell",

--- a/software/ors-amarisoft/instance-tdd3500-gnb-input-schema.json
+++ b/software/ors-amarisoft/instance-tdd3500-gnb-input-schema.json
@@ -25,6 +25,24 @@
      "type": "number",
      "default": 45
    },
+    "n_antenna_dl": {
+      "title": "Number of DL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": 2
+    },
+    "n_antenna_ul": {
+      "title": "Number of UL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": 2
+    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_nr_arfcn": {
      "title": "DL NR ARFCN",
      "description": "Downlink NR Absolute Radio Frequency Channel Number of the cell",
@@ -61,6 +79,31 @@
      "type": "object",
      "default": {}
    },
+    "ncell_list": {
+      "title": "Neighbour Cell Info",
+      "description": "Neighbour Cell Info",
+      "patternProperties": {
+        ".*": {
+          "properties": {
+            "nr_cell_id": {
+              "title": "NR Cell ID",
+              "description": "Concatenation of gnb_id and cell_id of the neighbour cell",
+              "type": "string",
+              "default": "0x1234501"
+            },
+            "tac": {
+              "default": 100,
+              "title": "Tracking Area Code",
+              "description": "Integer (range 0 to 16777215)",
+              "type": "number"
+            }
+          },
+          "type": "object"
+        }
+      },
+      "type": "object",
+      "default": {}
+    },
    "gnb_id": {
      "title": "gNB ID",
      "description": "gNB ID",
@@ -73,6 +116,12 @@
      "type": "number",
      "default": 28
    },
+    "cell_id": {
+      "title": "Cell ID",
+      "description": "Cell ID",
+      "type": "string",
+      "default": "0x01"
+    },
    "pci": {
      "title": "Physical Cell ID",
      "description": "Physical Cell ID",
@@ -199,18 +248,6 @@
      "description": "Duration during which average temperature should not exceed specified threshold",
      "type": "number",
      "default": 600
-    },
-    "n_antenna_dl": {
-      "title": "Number of DL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": 2
-    },
-    "n_antenna_ul": {
-      "title": "Number of UL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": 2
    }
  }
 }
--- a/software/ors-amarisoft/instance-tdd3700-enb-input-schema.json
+++ b/software/ors-amarisoft/instance-tdd3700-enb-input-schema.json
@@ -25,6 +25,12 @@
      "type": "number",
      "default": 45
    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_earfcn": {
      "title": "DL EARFCN",
      "description": "Downlink E-UTRA Absolute Radio Frequency Channel Number of the cell",

--- a/software/ors-amarisoft/instance-tdd3700-gnb-input-schema.json
+++ b/software/ors-amarisoft/instance-tdd3700-gnb-input-schema.json
@@ -25,6 +25,24 @@
      "type": "number",
      "default": 45
    },
+    "n_antenna_dl": {
+      "title": "Number of DL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": 2
+    },
+    "n_antenna_ul": {
+      "title": "Number of UL antennas",
+      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
+      "type": "number",
+      "default": 2
+    },
+    "gps_sync": {
+      "default": false,
+      "title": "GPS synchronisation",
+      "description": "True if GPS should be used for synchronisation",
+      "type": "boolean"
+    },
    "dl_nr_arfcn": {
      "title": "DL NR ARFCN",
      "description": "Downlink NR Absolute Radio Frequency Channel Number of the cell",
@@ -61,6 +79,31 @@
      "type": "object",
      "default": {}
    },
+    "ncell_list": {
+      "title": "Neighbour Cell Info",
+      "description": "Neighbour Cell Info",
+      "patternProperties": {
+        ".*": {
+          "properties": {
+            "nr_cell_id": {
+              "title": "NR Cell ID",
+              "description": "Concatenation of gnb_id and cell_id of the neighbour cell",
+              "type": "string",
+              "default": "0x1234501"
+            },
+            "tac": {
+              "default": 100,
+              "title": "Tracking Area Code",
+              "description": "Integer (range 0 to 16777215)",
+              "type": "number"
+            }
+          },
+          "type": "object"
+        }
+      },
+      "type": "object",
+      "default": {}
+    },
    "gnb_id": {
      "title": "gNB ID",
      "description": "gNB ID",
@@ -73,6 +116,12 @@
      "type": "number",
      "default": 28
    },
+    "cell_id": {
+      "title": "Cell ID",
+      "description": "Cell ID",
+      "type": "string",
+      "default": "0x01"
+    },
    "pci": {
      "title": "Physical Cell ID",
      "description": "Physical Cell ID",
@@ -199,18 +248,6 @@
      "description": "Duration during which average temperature should not exceed specified threshold",
      "type": "number",
      "default": 600
-    },
-    "n_antenna_dl": {
-      "title": "Number of DL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of DL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": 2
-    },
-    "n_antenna_ul": {
-      "title": "Number of UL antennas",
-      "description": "Enumeration: 1, 2, 4 or 8. Number of UL antennas. It must be the same for all NB-IoT and LTE cells sharing the same RF port.",
-      "type": "number",
-      "default": 2
    }
  }
 }
--- a/software/rapid-cdn/README.rst
+++ b/software/rapid-cdn/README.rst
@@ -25,6 +25,8 @@ These parameters are:
  * ``-frontend-config-i-foo``: Frontend i will be requested with parameter foo, supported parameters are:
    * ``ram-cache-size``
    * ``disk-cache-size``
+    * ``enable-http3``
+    * ``http3-port``
  * ``-sla-i-foo`` : where "i" is the number of the concerned frontend (between 1 and "-frontend-quantity") and "foo" a sla parameter.

 For example::
@@ -480,17 +482,3 @@ websocket
 ~~~~~~~~~

 All frontends are websocket aware now, and ``type:websocket`` parameter became optional. It's required if support for ``websocket-path-list`` or ``websocket-transparent`` is required.
-
-Experimental QuicTLS
-~~~~~~~~~~~~~~~~~~~~
-
-`QuicTLS <https://github.com/quictls/openssl>`_ can be used instead of classic OpenSSL on given node by using parameter ``-frontend-i-experimental-haproxy-flavour`` and setting it to ``quic``. This allows to test out if there are any issues with QuicTLS are with normal usage.
-
-Experimental QUIC
-~~~~~~~~~~~~~~~~~
-
-QUIC with HTTP3 is available as experimental feature. It has to be enabled on each node separately by using ``-frontend-i-experimental-haproxy-quic``. Then given node will reply with proper headers on HTTPS to advertise QUIC. Please note that ``-frontend-i-experimental-haproxy-flavour`` has to be set to ``quic`` on this node too.
-
-Please note that due to limitations of iptables method used to expose low ports, the ``-frontend-i-experimental-quic-port`` is by default ``443``, which is used when advertisting the QUIC/HTTP3 port to the client.
-
-Note that then all frontends will be served with QUIC advertised on such node, so it's important to run such experiments very carefully, for example on same zone/region with DNS.
--- a/software/rapid-cdn/buildout.hash.cfg
+++ b/software/rapid-cdn/buildout.hash.cfg
@@ -14,7 +14,7 @@
 # not need these here).
 [template]
 filename = instance.cfg.in
-md5sum = f249b268bd3e74f6f2dcdd437b1c9f71
+md5sum = c478478882232200fbe4bf3e7d2a4ff0

 [profile-common]
 filename = instance-common.cfg.in
@@ -22,15 +22,15 @@ md5sum = 5784bea3bd608913769ff9a8afcccb68

 [profile-frontend]
 filename = instance-frontend.cfg.in
-md5sum = 83dca4b9ba8d8beeed2d5d861dee0e3f
+md5sum = 5c2f79d0773bd8594ccf1c34a7d27d53

 [profile-master]
 filename = instance-master.cfg.in
-md5sum = 2ac67006dede70c905b0d32b4a995b9a
+md5sum = 3006197ddce87bd92866b76b5ce8ce08

 [profile-slave-list]
 filename = instance-slave-list.cfg.in
-md5sum = 1e6f3c8eec64cb5c59b06c1a35502e6b
+md5sum = 5d0b7461ecde54f68fda7f4e5fc2c82f

 [profile-master-publish-slave-information]
 filename = instance-master-publish-slave-information.cfg.in
@@ -38,7 +38,7 @@ md5sum = cba4d995962f7fbeae3f61c9372c4181

 [template-frontend-haproxy-configuration]
 _update_hash_filename_ = templates/frontend-haproxy.cfg.in
-md5sum = 2e964dbe75f725c4e45e62720a77bba3
+md5sum = ceb36ef6bdf5f508b5303a1680057bc8

 [template-frontend-haproxy-crt-list]
 _update_hash_filename_ = templates/frontend-haproxy-crt-list.in
@@ -106,7 +106,7 @@ md5sum = a9854d48e750b3599043715c95138d5d

 [template-frontend-haproxy-rsyslogd-conf]
 _update_hash_filename_ = templates/frontend-haproxy-rsyslogd.conf.in
-md5sum = 420f66264d4cd24070a5a7b325e09ccd
+md5sum = 5b5907dfcac25f62da182024751cac30

 [template-backend-haproxy-rsyslogd-conf]
 _update_hash_filename_ = templates/backend-haproxy-rsyslogd.conf.in

--- a/software/rapid-cdn/instance-frontend.cfg.in
+++ b/software/rapid-cdn/instance-frontend.cfg.in
 {% import "caucase" as caucase with context %}
 {%- set TRUE_VALUES = ['y', 'yes', '1', 'true'] -%}
-{%- set QUIC_PORT = instance_parameter_dict.get('configuration.frontend-quic-port', '443') %}
-{%- if instance_parameter_dict.get('configuration.frontend-haproxy-flavour', 'basic') == 'quic' %}
+{%- set HTTP3_PORT = instance_parameter_dict.get('configuration.http3-port', '443') %}
+{%- if instance_parameter_dict.get('configuration.enable-http3', 'false').lower() in TRUE_VALUES %}
+{%-   set FRONTEND_HTTP3 = True %}
+{%- else %}
+{%-   set FRONTEND_HTTP3 = False %}
+{%- endif %}
+{%- if FRONTEND_HTTP3 %}
 {%-   set FRONTEND_HAPROXY_EXECUTABLE = software_parameter_dict['haproxy_quic_executable'] %}
-{%-   if instance_parameter_dict.get('configuration.frontend-haproxy-quic', 'false').lower() in TRUE_VALUES %}
-{%-     set FRONTEND_HAPROXY_QUIC = True %}
-{%-   else %}
-{%-     set FRONTEND_HAPROXY_QUIC = False %}
-{%-   endif %}
 {%- else %}
 {%-   set FRONTEND_HAPROXY_EXECUTABLE = software_parameter_dict['haproxy_executable'] %}
-{%-   set FRONTEND_HAPROXY_QUIC = False %}
 {%- endif %}
 {%- set BACKEND_HAPROXY_EXECUTABLE = software_parameter_dict['haproxy_executable'] %}
 [buildout]
@@ -27,7 +26,6 @@ parts =
  caucase-updater-promise
  backend-client-caucase-updater
  backend-client-caucase-updater-promise
-  port-redirection
  promise-logrotate-setup

  trafficserver-launcher
@@ -371,7 +369,7 @@ organization = {{ slapparameter_dict['cluster-identification'] }}
 organizational-unit = {{ instance_parameter_dict['configuration.frontend-name'] }}
 backend-client-caucase-url = {{ slapparameter_dict['backend-client-caucase-url'] }}
 url-ready-file = ${directory:var}/url-ready.txt
-quic = {{ FRONTEND_HAPROXY_QUIC }}
+http3-enable = {{ FRONTEND_HTTP3 }}
 extra-context =
    key backend_client_caucase_url :backend-client-caucase-url
    import furl_module furl
@@ -385,7 +383,7 @@ extra-context =
    key empty_template software-release-path:template-empty
    key template_expose_csr_nginx_conf software-release-path:template-expose-csr-nginx-conf
    key software_type :software_type
-    key quic :quic
+    key http3_enable :http3-enable
    key frontend_lazy_graceful_reload frontend-haproxy-lazy-graceful:output
    key monitor_base_url monitor-instance-parameter:monitor-base-url
    key node_id frontend-node-id:value
@@ -486,8 +484,8 @@ slave-introspection-graceful-command = ${slave-introspection-validate:output} &&
 local_ipv4 = {{ dumps(instance_parameter_dict['ipv4-random']) }}
 version-hash = ${version-hash:value}
 node-id = ${frontend-node-id:value}
-quic = {{ FRONTEND_HAPROXY_QUIC }}
-quic-port = {{ QUIC_PORT }}
+http3-enable = {{ FRONTEND_HTTP3 }}
+http3-port = {{ HTTP3_PORT }}

 # BBB: SlapOS Master non-zero knowledge BEGIN
 [get-self-signed-fallback-access]
@@ -999,15 +997,6 @@ promise = check_url_available
 name = re6st-connectivity.py
 config-url = ${configuration:re6st-verification-url}

-[port-redirection]
-<= jinja2-template-base
-inline =
-  [{"srcPort": 80, "destPort": {{ '{{' }} http_port {{ '}}' }}}, {"srcPort": 443, "destPort": {{ '{{' }} https_port {{ '}}' }}}]
-output = ${buildout:directory}/.slapos-port-redirect
-extra-context =
-    key http_port configuration:plain_http_port
-    key https_port configuration:port
-
 [slave-introspection-frontend]
 <= slap-connection
 recipe = slapos.cookbook:requestoptional

--- a/software/rapid-cdn/instance-input-schema.json
+++ b/software/rapid-cdn/instance-input-schema.json
@@ -34,6 +34,22 @@
      "title": "Enable HTTP2 by Default",
      "type": "string"
    },
+    "enable-http3": {
+      "default": "false",
+      "title": "Enable HTTP3",
+      "description": "Globally enable HTTP3 protocol. Can be precisely set on each node by -frontend-i-config-enable-http3",
+      "enum": [
+        "true",
+        "false"
+      ],
+      "type": "string"
+    },
+    "http3-port": {
+      "default": 443,
+      "title": "Real advertised HTTP3 port",
+      "description": "As most common deloyment is using iptables for port redirection and in case of udp it is advertising to the process it's bind port instead of the really connected to, it's required to manually set this port for the whole cluster. Can be precisely set on each node by -frontend-i-config-http3-port",
+      "type": "integer"
+    },
    "re6st-verification-url": {
      "description": "Url to verify if the internet and/or re6stnet is working.",
      "title": "Test Verification URL",

--- a/software/rapid-cdn/instance-master.cfg.in
+++ b/software/rapid-cdn/instance-master.cfg.in
@@ -55,6 +55,7 @@
      'disable-via-header',
      'disabled-cookie-list',
      'enable-http2',
+      'enable-http3',
      'enable_cache',
      'health-check',
      'health-check-authenticate-to-failover-backend',
@@ -139,6 +140,10 @@ context =

 # Here we request individually each frontend.
 # The presence of sla parameters is checked and added if found
+{% set NODE_DEFAULT_KEY_VALUE = {
+  'enable-http3': 'false',
+  'http3-port': '443'
+} %}
 {% for i in range(1, frontend_quantity + 1) %}
 {%   set frontend_name = "%s-%s" % (NAME_BASE, i) %}
 {%   set request_section_title = 'request-%s' % frontend_name %}
@@ -153,9 +158,20 @@ context =
 {%       do sla_dict.__setitem__(key[sla_key_length:], slapparameter_dict.pop(key)) %}
 # We check for specific configuration regarding the frontend
 {%     elif key.startswith(config_key) %}
-{%       do config_dict.__setitem__(key[config_key_length:], slapparameter_dict.pop(key)) %}
+{%       set node_config_key = key[config_key_length:] %}
+{%       if node_config_key in ('enable-http3', 'http3-port') %}
+{%         do config_dict.__setitem__(node_config_key, slapparameter_dict.pop(key) or slapparameter_dict.get(node_config_key) or NODE_DEFAULT_KEY_VALUE[node_config_key]) %}
+{%       else %}
+{%         do config_dict.__setitem__(node_config_key, slapparameter_dict.pop(key)) %}
+{%       endif %}
 {%     endif %}
 {%   endfor %}
+{%   if 'http3-port' not in config_dict %}
+{%     do config_dict.__setitem__('http3-port', slapparameter_dict.get('http3-port') or NODE_DEFAULT_KEY_VALUE['http3-port']) %}
+{%   endif %}
+{%   if 'enable-http3' not in config_dict %}
+{%     do config_dict.__setitem__('enable-http3', slapparameter_dict.get('enable-http3') or NODE_DEFAULT_KEY_VALUE['enable-http3']) %}
+{%   endif %}
 {%   do config_dict.__setitem__('monitor-httpd-port', frontend_monitor_httpd_base_port + i) %}
 {%   do config_dict.__setitem__('backend-client-caucase-url', caucase_url) %}
 {%   set state_key = "-frontend-%s-state" % i %}
@@ -165,12 +181,6 @@ context =
 {%     do frontend_section_list.append(request_section_title) %}
 {%   endif %}
 {%   do part_list.append(request_section_title) %}
-{%   set frontend_haproxy_flavour_key = "-frontend-%s-experimental-haproxy-flavour" % i %}
-{%   do config_dict.__setitem__('frontend-haproxy-flavour', slapparameter_dict.get(frontend_haproxy_flavour_key) or 'basic') %}
-{%   set frontend_haproxy_quic_key = "-frontend-%s-experimental-haproxy-quic" % i %}
-{%   do config_dict.__setitem__('frontend-haproxy-quic', slapparameter_dict.get(frontend_haproxy_quic_key) or 'False') %}
-{%   set frontend_quic_port_key = "-frontend-%s-experimental-quic-port" % i %}
-{%   do config_dict.__setitem__('frontend-quic-port', slapparameter_dict.get(frontend_quic_port_key) or '443') %}
 # Filling request dict for slave
 {%   set request_content_dict = {
                                  'config': config_dict,

--- a/software/rapid-cdn/instance-slave-input-schema.json
+++ b/software/rapid-cdn/instance-slave-input-schema.json
@@ -94,6 +94,16 @@
      "title": "Enable HTTP2 Protocol",
      "type": "string"
    },
+    "enable-http3": {
+      "default": "true",
+      "description": "Use HTTP3 Protocol for the site. It requires enable-http2 to be set. The end results depends on the cluster configuration.",
+      "enum": [
+        "true",
+        "false"
+      ],
+      "title": "Enable HTTP3 Protocol",
+      "type": "string"
+    },
    "https-url": {
      "description": "HTTPS URL of the backend if it is different from url parameter",
      "pattern": "^(http|https|ftp)://",

--- a/software/rapid-cdn/instance-slave-list.cfg.in
+++ b/software/rapid-cdn/instance-slave-list.cfg.in
@@ -9,12 +9,6 @@
 {%- set backend_haproxy_http_url = 'http://%s:%s' % (instance_parameter_dict['ipv4-random'], backend_haproxy_configuration['http-port']) %}
 {%- set backend_haproxy_https_url = 'http://%s:%s' % (instance_parameter_dict['ipv4-random'], backend_haproxy_configuration['https-port']) %}
 {%- set TRUE_VALUES = ['y', 'yes', '1', 'true'] %}
-{%- set ALPN_HTTP11 = "alpn http/1.1,http/1.0" %}
-{%- if quic.lower() in TRUE_VALUES %}
-{%-   set ALPN_HTTP2PLUS = "alpn h3,h2,http/1.1,http/1.0" %}
-{%- else %}
-{%-   set ALPN_HTTP2PLUS = "alpn h2,http/1.1,http/1.0" %}
-{%- endif %}
 {%- set generic_instance_parameter_dict = { 'cache_access': cache_access, 'local_ipv4': instance_parameter_dict['ipv4-random'], 'http_port': configuration['plain_http_port'], 'https_port': configuration['port']} %}
 {%- set slave_log_dict = {} %}
 {%- set slave_instance_information_list = [] %}
@@ -88,7 +82,6 @@ context =
 {%-     do slave_instance.__setitem__(prefix, info_dict) %}
 {%-   endfor %}
 {%-   do slave_instance.__setitem__('health-check-failover-ssl-proxy-verify', ('' ~ slave_instance.get('health-check-failover-ssl-proxy-verify', '')).lower() in TRUE_VALUES) %}
-{%-   do slave_instance.__setitem__('enable-http2', ('' ~ slave_instance.get('enable-http2', configuration['enable-http2-by-default'])).lower() in TRUE_VALUES) %}
 {%-   for key in ['https-only', 'websocket-transparent'] %}
 {%-     do slave_instance.__setitem__(key, ('' ~ slave_instance.get(key, 'true')).lower() in TRUE_VALUES) %}
 {%-   endfor %}
@@ -239,6 +232,18 @@ context =
 {%-   endif %}
 {%-   do slave_instance.__setitem__('host_list', host_list) %}
 {%-   do slave_instance.__setitem__('type', slave_instance.get('type', '')) %}
+{%-   if slave_instance['type'] in ['notebook', 'websocket'] %}
+{#-     For websocket like sites forcibly disable HTTP2 and HTTP3 #}
+{%-     do slave_instance.__setitem__('enable-http2', False) %}
+{%-     do slave_instance.__setitem__('enable-http3', False) %}
+{%-   else %}
+{%-     do slave_instance.__setitem__('enable-http2', ('' ~ slave_instance.get('enable-http2', configuration['enable-http2-by-default'])).lower() in TRUE_VALUES) %}
+{%-     if slave_instance['enable-http2'] %}
+{%-       do slave_instance.__setitem__('enable-http3', ('' ~ slave_instance.get('enable-http3', configuration['enable-http3'])).lower() in TRUE_VALUES) %}
+{%-     else %}
+{%-       do slave_instance.__setitem__('enable-http3', False) %}
+{%-     endif %}
+{%-   endif %}
 {%-   set websocket_path_list = [] %}
 {%-   for websocket_path in slave_instance.get('websocket-path-list', '').split() %}
 {%-     set websocket_path = websocket_path.strip('/') %}
@@ -250,11 +255,14 @@ context =
 {%-   endfor %}
 {%-   do slave_instance.__setitem__('websocket-path-list', websocket_path_list) %}
 {#- Handle alpn negotiation -#}
-{%-   if slave_instance['type'] in ['notebook', 'websocket'] or not slave_instance['enable-http2'] %}
-{#    websocket style needs http 1.1 max, just like non-http2 frontends #}
-{%-     do slave_instance.__setitem__('alpn', ALPN_HTTP11) %}
+{%-   if not slave_instance['enable-http2'] %}
+{%-     do slave_instance.__setitem__('alpn', "alpn http/1.1,http/1.0") %}
 {%-   else %}
-{%-     do slave_instance.__setitem__('alpn', ALPN_HTTP2PLUS) %}
+{%-     if http3_enable.lower() in TRUE_VALUES and slave_instance['enable-http3'] %}
+{%-       do slave_instance.__setitem__('alpn', "alpn h3,h2,http/1.1,http/1.0") %}
+{%-     else %}
+{%-       do slave_instance.__setitem__('alpn', "alpn h2,http/1.1,http/1.0") %}
+{%-     endif %}
 {%-   endif %}

 [slave-log-directory-dict]

--- a/software/rapid-cdn/instance.cfg.in
+++ b/software/rapid-cdn/instance.cfg.in
@@ -95,6 +95,8 @@ configuration.disk-cache-size = 8G
 configuration.ram-cache-size = 1G
 configuration.re6st-verification-url = http://[2001:67c:1254:4::1]/index.html
 configuration.enable-http2-by-default = true
+configuration.enable-http3 = false
+configuration.http3-port = 443
 configuration.ciphers = ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305 ECDHE-RSA-CHACHA20-POLY1305 ECDHE-RSA-AES256-SHA ECDHE-RSA-AES128-SHA ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-AES128-SHA AES256-SHA AES128-SHA ECDHE-RSA-DES-CBC3-SHA DES-CBC3-SHA
 configuration.request-timeout = 600
 configuration.frontend-name =

--- a/software/rapid-cdn/software.cfg
+++ b/software/rapid-cdn/software.cfg
@@ -107,8 +107,7 @@ nginx_mime = ${nginx-output:mime}
 haproxy_executable = ${haproxy:location}/sbin/haproxy
 haproxy_quic_executable = ${haproxy-quic:location}/sbin/haproxy
 rsyslogd_executable = ${rsyslogd:location}/sbin/rsyslogd
-curl = ${curl:location}
-curl_http3 = ${curl-http3:location}
+curl = ${curl-http3:location}
 dash = ${dash:location}
 gzip = ${gzip:location}
 logrotate = ${logrotate:location}

--- a/software/rapid-cdn/templates/frontend-haproxy-rsyslogd.conf.in
+++ b/software/rapid-cdn/templates/frontend-haproxy-rsyslogd.conf.in
@@ -16,7 +16,7 @@ $Umask 0022
 $WorkDirectory {{ configuration['spool-directory'] }}

 # Setup logging per slave, by extracting the slave name from the log stream
-{%- set regex = "^\\\\s*(\\\\S.*)-https{0,1} (.*)" %}
+{%- set regex = "^\\\\s*\\\\{(\\\\S.*)-https{0,1}\\\\} (.*)" %}
 # Extract file name part from 1st match
 template(name="extract_slave_name" type="string" string="%msg:R,ERE,1,FIELD:{{ regex }}--end%")
 set $!slave_name = exec_template("extract_slave_name");

--- a/software/rapid-cdn/templates/frontend-haproxy.cfg.in
+++ b/software/rapid-cdn/templates/frontend-haproxy.cfg.in
-{%- if configuration['quic'] == 'True' %}
-{%-   set QUIC = True %}
+{%- if configuration['http3-enable'] == 'True' %}
+{%-   set HTTP3 = True %}
 {%- else %}
-{%-   set QUIC = False %}
+{%-   set HTTP3 = False %}
 {%- endif %}
 global
  pidfile {{ configuration['pid-file'] }}
@@ -58,7 +58,7 @@ defaults
  capture request header REMOTE_USER len 255
  capture request header Referer len 255
  capture request header User-Agent len 255
-  log-format "%{+E}o %b %ci - %[capture.req.hdr(0)] [%trl] \"%HM %HU %HV\" %ST %B \"%[capture.req.hdr(1)]\" \"%[capture.req.hdr(2)]\" %Ta"
+  log-format "%{+E}o {{ '{' }}%b{{ '}' }} %ci - %[capture.req.hdr(0)] [%trl] \"%HM %[capture.req.uri] %HV\" %ST %B \"%[capture.req.hdr(1)]\" \"%[capture.req.hdr(2)]\" %Ta"
  # setup Via
  http-request add-header Via "%HV rapid-cdn-frontend-{{ configuration['node-id'] }}-{{ configuration['version-hash'] }}"
  # setup X-Forwarded-For
@@ -79,12 +79,9 @@ frontend http-frontend
 frontend https-frontend
  bind {{ configuration['local-ipv4'] }}:{{ configuration['https-port'] }} ssl crt-list {{ crt_list }}
  bind {{ configuration['global-ipv6'] }}:{{ configuration['https-port'] }} ssl crt-list {{ crt_list }}
-{%- if QUIC %}
+{%- if HTTP3 %}
  bind quic4@{{ configuration['local-ipv4'] }}:{{ configuration['https-port'] }} ssl crt-list {{ crt_list }} alpn h3
  bind quic6@{{ configuration['global-ipv6'] }}:{{ configuration['https-port'] }} ssl crt-list {{ crt_list }} alpn h3
-  http-response set-header alt-svc "h3=\":{{ configuration['quic-port'] }}\"; ma=3600"
-  {#- Ask Chromium to use QUIC #}
-  http-response set-header alternate-protocol {{ configuration['quic-port'] }}:quic
 {%- endif %}
 {{ frontend_common() }}
 {%- for slave_instance in frontend_slave_list -%}
@@ -100,6 +97,11 @@ frontend https-frontend
 {%-   for (scheme, prefix) in SCHEME_PREFIX_MAPPING.items() %}
 {%-     set info_dict = slave_instance.get(prefix, slave_instance.get('backend-http-info')) %}
 backend {{ slave_instance['slave_reference'] }}-{{ scheme }}
+{%-     if HTTP3 and slave_instance['enable-http3'] %}
+  http-after-response set-header alt-svc "h3=\":{{ configuration['http3-port'] }}\"; ma=3600"
+  {#- Ask Chromium to use HTTP3 #}
+  http-after-response set-header alternate-protocol {{ configuration['http3-port'] }}:quic
+{%-     endif %}
 {%-     if scheme == 'http' and slave_instance['https-only'] %}
 {#-     Support https-only if connected via http #}
  redirect scheme https code 302
@@ -110,9 +112,9 @@ backend {{ slave_instance['slave_reference'] }}-{{ scheme }}
 {%-         else %}
  server {{ slave_instance['slave_reference'] }}-backend-{{ scheme }} {{ info_dict['hostname'] }}:{{ info_dict['port'] }}
 {%-           if slave_instance['disable-via-header'] %}
-  http-response del-header Via
+  http-after-response del-header Via
 {%-           else %}
-  http-response add-header Via "%HV rapid-cdn-frontend-{{ configuration['node-id'] }}-{{ configuration['version-hash'] }}"
+  http-after-response add-header Via "%HV rapid-cdn-frontend-{{ configuration['node-id'] }}-{{ configuration['version-hash'] }}"
 {%-           endif %}
 {%-           if scheme == 'https' %}
 {%-             if slave_instance['strict-transport-security'] > 0 %}
@@ -123,7 +125,7 @@ backend {{ slave_instance['slave_reference'] }}-{{ scheme }}
 {%-               if slave_instance['strict-transport-security-preload'] %}
 {%-                 do strict_transport_security.append('; preload') %}
 {%-               endif %}
-  http-response set-header Strict-Transport-Security "{{ ''.join(strict_transport_security) }}"
+  http-after-response set-header Strict-Transport-Security "{{ ''.join(strict_transport_security) }}"
 {%-             endif %}
 {%-           endif %}
 {%-           for disabled_cookie in slave_instance['disabled-cookie-list'] %}

--- a/software/rapid-cdn/test/test.py
+++ b/software/rapid-cdn/test/test.py
--- a/software/rapid-cdn/test/test_data/test.TestEnableHttp2ByDefaultDefaultSlave.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestEnableHttp2ByDefaultDefaultSlave.test00cluster_request_instance_parameter_dict.txt
@@ -103,11 +103,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"enable_cache\": true, \"slave_reference\": \"_dummy-cached\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_enable-http2-default\"}, {\"enable-http2\": \"false\", \"slave_reference\": \"_enable-http2-false\"}, {\"enable-http2\": \"true\", \"slave_reference\": \"_enable-http2-true\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestEnableHttp2ByDefaultFalseSlave.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestEnableHttp2ByDefaultFalseSlave.test00cluster_request_instance_parameter_dict.txt
--- a/software/rapid-cdn/test/test_data/test.TestEnableHttp2ByDefaultFalseSlave.test00file_list_log.txt
+++ b/software/rapid-cdn/test/test_data/test.TestEnableHttp2ByDefaultFalseSlave.test00file_list_log.txt
@@ -8,11 +8,118 @@ T-1/var/log/monitor-httpd-error.log
 T-2/var/log/backend-haproxy.log
 T-2/var/log/expose-csr.log
 T-2/var/log/frontend-haproxy.log
-T-2/var/log/httpd/_dummy-cached_access_log
-T-2/var/log/httpd/_dummy-cached_backend_log
+T-2/var/log/httpd/_Url_access_log
+T-2/var/log/httpd/_Url_backend_log
+T-2/var/log/httpd/_auth-to-backend-backend-ignore_access_log
+T-2/var/log/httpd/_auth-to-backend-backend-ignore_backend_log
+T-2/var/log/httpd/_auth-to-backend-not-configured_access_log
+T-2/var/log/httpd/_auth-to-backend-not-configured_backend_log
+T-2/var/log/httpd/_auth-to-backend_access_log
+T-2/var/log/httpd/_auth-to-backend_backend_log
+T-2/var/log/httpd/_bad-backend_access_log
+T-2/var/log/httpd/_bad-backend_backend_log
+T-2/var/log/httpd/_ciphers-translation-all_access_log
+T-2/var/log/httpd/_ciphers_access_log
+T-2/var/log/httpd/_custom_domain_access_log
+T-2/var/log/httpd/_custom_domain_backend_log
+T-2/var/log/httpd/_custom_domain_server_alias_access_log
+T-2/var/log/httpd/_custom_domain_server_alias_backend_log
+T-2/var/log/httpd/_custom_domain_ssl_crt_ssl_key_access_log
+T-2/var/log/httpd/_custom_domain_ssl_crt_ssl_key_backend_log
+T-2/var/log/httpd/_custom_domain_ssl_crt_ssl_key_ssl_ca_crt_access_log
+T-2/var/log/httpd/_custom_domain_ssl_crt_ssl_key_ssl_ca_crt_backend_log
+T-2/var/log/httpd/_disabled-cookie-list-simple_access_log
+T-2/var/log/httpd/_disabled-cookie-list-simple_backend_log
+T-2/var/log/httpd/_disabled-cookie-list_access_log
+T-2/var/log/httpd/_disabled-cookie-list_backend_log
+T-2/var/log/httpd/_empty_access_log
 T-2/var/log/httpd/_enable-http2-default_access_log
+T-2/var/log/httpd/_enable-http2-default_backend_log
 T-2/var/log/httpd/_enable-http2-false_access_log
+T-2/var/log/httpd/_enable-http2-false_backend_log
 T-2/var/log/httpd/_enable-http2-true_access_log
+T-2/var/log/httpd/_enable-http2-true_backend_log
+T-2/var/log/httpd/_enable-http3-default-enable-http2-false_access_log
+T-2/var/log/httpd/_enable-http3-default-enable-http2-false_backend_log
+T-2/var/log/httpd/_enable-http3-default_access_log
+T-2/var/log/httpd/_enable-http3-default_backend_log
+T-2/var/log/httpd/_enable-http3-false_access_log
+T-2/var/log/httpd/_enable-http3-false_backend_log
+T-2/var/log/httpd/_enable-http3-true-enable-http2-false_access_log
+T-2/var/log/httpd/_enable-http3-true-enable-http2-false_backend_log
+T-2/var/log/httpd/_enable-http3-true_access_log
+T-2/var/log/httpd/_enable-http3-true_backend_log
+T-2/var/log/httpd/_enable_cache-disable-no-cache-request_access_log
+T-2/var/log/httpd/_enable_cache-disable-no-cache-request_backend_log
+T-2/var/log/httpd/_enable_cache-disable-via-header_access_log
+T-2/var/log/httpd/_enable_cache-disable-via-header_backend_log
+T-2/var/log/httpd/_enable_cache-https-only-false_access_log
+T-2/var/log/httpd/_enable_cache-https-only-false_backend_log
+T-2/var/log/httpd/_enable_cache_access_log
+T-2/var/log/httpd/_enable_cache_backend_log
+T-2/var/log/httpd/_enable_cache_custom_domain_access_log
+T-2/var/log/httpd/_enable_cache_custom_domain_backend_log
+T-2/var/log/httpd/_enable_cache_server_alias_access_log
+T-2/var/log/httpd/_enable_cache_server_alias_backend_log
+T-2/var/log/httpd/_https-only_access_log
+T-2/var/log/httpd/_https-only_backend_log
+T-2/var/log/httpd/_https-url-netloc-list_access_log
+T-2/var/log/httpd/_https-url-netloc-list_backend_log
+T-2/var/log/httpd/_prefer-gzip-encoding-to-backend-https-only_access_log
+T-2/var/log/httpd/_prefer-gzip-encoding-to-backend-https-only_backend_log
+T-2/var/log/httpd/_prefer-gzip-encoding-to-backend_access_log
+T-2/var/log/httpd/_prefer-gzip-encoding-to-backend_backend_log
+T-2/var/log/httpd/_server-alias-duplicated_access_log
+T-2/var/log/httpd/_server-alias-duplicated_backend_log
+T-2/var/log/httpd/_server-alias-empty_access_log
+T-2/var/log/httpd/_server-alias-empty_backend_log
+T-2/var/log/httpd/_server-alias-wildcard_access_log
+T-2/var/log/httpd/_server-alias-wildcard_backend_log
+T-2/var/log/httpd/_server-alias_access_log
+T-2/var/log/httpd/_server-alias_backend_log
+T-2/var/log/httpd/_server-alias_custom_domain-duplicated_access_log
+T-2/var/log/httpd/_server-alias_custom_domain-duplicated_backend_log
+T-2/var/log/httpd/_ssl-proxy-verify-unverified_access_log
+T-2/var/log/httpd/_ssl-proxy-verify-unverified_backend_log
+T-2/var/log/httpd/_ssl-proxy-verify_ssl_proxy_ca_crt-unverified_access_log
+T-2/var/log/httpd/_ssl-proxy-verify_ssl_proxy_ca_crt-unverified_backend_log
+T-2/var/log/httpd/_ssl-proxy-verify_ssl_proxy_ca_crt_access_log
+T-2/var/log/httpd/_ssl-proxy-verify_ssl_proxy_ca_crt_backend_log
+T-2/var/log/httpd/_ssl_ca_crt_does_not_match_access_log
+T-2/var/log/httpd/_ssl_ca_crt_does_not_match_backend_log
+T-2/var/log/httpd/_ssl_ca_crt_garbage_access_log
+T-2/var/log/httpd/_ssl_ca_crt_garbage_backend_log
+T-2/var/log/httpd/_ssl_ca_crt_only_access_log
+T-2/var/log/httpd/_ssl_ca_crt_only_backend_log
+T-2/var/log/httpd/_type-notebook_access_log
+T-2/var/log/httpd/_type-notebook_backend_log
+T-2/var/log/httpd/_type-redirect-custom_domain_access_log
+T-2/var/log/httpd/_type-redirect_access_log
+T-2/var/log/httpd/_type-websocket-websocket-path-list-websocket-transparent-false_access_log
+T-2/var/log/httpd/_type-websocket-websocket-path-list-websocket-transparent-false_backend_log
+T-2/var/log/httpd/_type-websocket-websocket-path-list_access_log
+T-2/var/log/httpd/_type-websocket-websocket-path-list_backend_log
+T-2/var/log/httpd/_type-websocket-websocket-transparent-false_access_log
+T-2/var/log/httpd/_type-websocket-websocket-transparent-false_backend_log
+T-2/var/log/httpd/_type-websocket_access_log
+T-2/var/log/httpd/_type-websocket_backend_log
+T-2/var/log/httpd/_type-zope-default-path_access_log
+T-2/var/log/httpd/_type-zope-path_access_log
+T-2/var/log/httpd/_type-zope-path_backend_log
+T-2/var/log/httpd/_type-zope-prefer-gzip-encoding-to-backend-https-only_access_log
+T-2/var/log/httpd/_type-zope-prefer-gzip-encoding-to-backend-https-only_backend_log
+T-2/var/log/httpd/_type-zope-prefer-gzip-encoding-to-backend_access_log
+T-2/var/log/httpd/_type-zope-prefer-gzip-encoding-to-backend_backend_log
+T-2/var/log/httpd/_type-zope-virtualhostroot-http-port_access_log
+T-2/var/log/httpd/_type-zope-virtualhostroot-http-port_backend_log
+T-2/var/log/httpd/_type-zope-virtualhostroot-https-port_access_log
+T-2/var/log/httpd/_type-zope-virtualhostroot-https-port_backend_log
+T-2/var/log/httpd/_type-zope_access_log
+T-2/var/log/httpd/_type-zope_backend_log
+T-2/var/log/httpd/_url-netloc-list_access_log
+T-2/var/log/httpd/_url-netloc-list_backend_log
+T-2/var/log/httpd/_url_https-url_access_log
+T-2/var/log/httpd/_url_https-url_backend_log
 T-2/var/log/monitor-httpd-access.log
 T-2/var/log/monitor-httpd-error.log
 T-2/var/log/slave-introspection-access.log

--- a/software/rapid-cdn/test/test_data/test.TestEnableHttp2ByDefaultFalseSlave.test_master_partition_state.txt
+++ b/software/rapid-cdn/test/test_data/test.TestEnableHttp2ByDefaultFalseSlave.test_master_partition_state.txt
+SetEnvIf Origin "^http(s)?://(.+\.)?(monitor\.app\.officejs\.com)$" ORIGIN_DOMAIN=$0
+Header always set Access-Control-Allow-Origin "%{ORIGIN_DOMAIN}e" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Credentials "true" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Methods "PROPFIND, PROPPATCH, COPY, MOVE, DELETE, MKCOL, LOCK, UNLOCK, PUT, GETLIB, VERSION-CONTROL, CHECKIN, CHECKOUT, UNCHECKOUT, REPORT, UPDATE, CANCELUPLOAD, HEAD, OPTIONS, GET, POST" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Headers "Overwrite, Destination, Content-Type, Depth, User-Agent, X-File-Size, X-Requested-With, If-Modified-Since, X-File-Name, Cache-Control, Authorization" env=ORIGIN_DOMAIN
--- a/software/rapid-cdn/test/test_data/test.TestMasterAIKCDisabledAIBCCDisabledRequest.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestMasterAIKCDisabledAIBCCDisabledRequest.test00cluster_request_instance_parameter_dict.txt
@@ -61,11 +61,10 @@
    "_": {
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestMasterRequest.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestMasterRequest.test00cluster_request_instance_parameter_dict.txt
@@ -59,11 +59,10 @@
    "_": {
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestMasterRequestDomain.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestMasterRequestDomain.test00cluster_request_instance_parameter_dict.txt
@@ -61,11 +61,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestRe6stVerificationUrlDefaultSlave.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestRe6stVerificationUrlDefaultSlave.test00cluster_request_instance_parameter_dict.txt
@@ -75,11 +75,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"enable_cache\": true, \"slave_reference\": \"_default\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestRe6stVerificationUrlSlave.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestRe6stVerificationUrlSlave.test00cluster_request_instance_parameter_dict.txt
@@ -75,11 +75,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"enable_cache\": true, \"slave_reference\": \"_default\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestReplicateSlave.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestReplicateSlave.test00cluster_request_instance_parameter_dict.txt
@@ -79,11 +79,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"enable_cache\": true, \"slave_reference\": \"_replicate\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",
@@ -119,11 +118,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"enable_cache\": true, \"slave_reference\": \"_replicate\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-2",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestSlave.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlave.test00cluster_request_instance_parameter_dict.txt
--- a/software/rapid-cdn/test/test_data/test.TestSlave.test00file_list_log.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlave.test00file_list_log.txt
@@ -37,6 +37,18 @@ T-2/var/log/httpd/_enable-http2-default_access_log
 T-2/var/log/httpd/_enable-http2-default_backend_log
 T-2/var/log/httpd/_enable-http2-false_access_log
 T-2/var/log/httpd/_enable-http2-false_backend_log
+T-2/var/log/httpd/_enable-http2-true_access_log
+T-2/var/log/httpd/_enable-http2-true_backend_log
+T-2/var/log/httpd/_enable-http3-default-enable-http2-false_access_log
+T-2/var/log/httpd/_enable-http3-default-enable-http2-false_backend_log
+T-2/var/log/httpd/_enable-http3-default_access_log
+T-2/var/log/httpd/_enable-http3-default_backend_log
+T-2/var/log/httpd/_enable-http3-false_access_log
+T-2/var/log/httpd/_enable-http3-false_backend_log
+T-2/var/log/httpd/_enable-http3-true-enable-http2-false_access_log
+T-2/var/log/httpd/_enable-http3-true-enable-http2-false_backend_log
+T-2/var/log/httpd/_enable-http3-true_access_log
+T-2/var/log/httpd/_enable-http3-true_backend_log
 T-2/var/log/httpd/_enable_cache-disable-no-cache-request_access_log
 T-2/var/log/httpd/_enable_cache-disable-no-cache-request_backend_log
 T-2/var/log/httpd/_enable_cache-disable-via-header_access_log

--- a/software/rapid-cdn/test/test_data/test.TestSlaveCiphers.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveCiphers.test00cluster_request_instance_parameter_dict.txt
@@ -91,11 +91,10 @@
      "ciphers": "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-GCM-SHA384",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"enable_cache\": true, \"slave_reference\": \"_default_ciphers\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"ciphers\": \"ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-GCM-SHA256\", \"enable_cache\": true, \"slave_reference\": \"_own_ciphers\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestSlaveHealthCheck.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveHealthCheck.test00cluster_request_instance_parameter_dict.txt
@@ -280,11 +280,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"health-check\": true, \"health-check-http-method\": \"CONNECT\", \"slave_reference\": \"_health-check-connect\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"health-check\": true, \"health-check-fall\": \"7\", \"health-check-http-method\": \"POST\", \"health-check-http-path\": \"/POST-path to be encoded\", \"health-check-http-version\": \"HTTP/1.0\", \"health-check-interval\": \"15\", \"health-check-rise\": \"3\", \"health-check-timeout\": \"7\", \"slave_reference\": \"_health-check-custom\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"health-check\": true, \"slave_reference\": \"_health-check-default\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_health-check-disabled\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"enable_cache\": true, \"health-check\": true, \"health-check-failover-https-url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/failover-https-url?a=b&c=\", \"health-check-failover-url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/failover-url?a=b&c=\", \"health-check-http-path\": \"/health-check-failover-url\", \"health-check-interval\": 1, \"health-check-timeout\": 1, \"https-only\": false, \"https-url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/https-url\", \"slave_reference\": \"_health-check-failover-url\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/url\"}, {\"health-check\": true, \"health-check-authenticate-to-failover-backend\": true, \"health-check-failover-https-url\": \"https://@@_ipv4_address@@:@@_server_https_auth_port@@/failover-https-url?a=b&c=\", \"health-check-failover-url\": \"https://@@_ipv4_address@@:@@_server_https_auth_port@@/failover-url?a=b&c=\", \"health-check-http-path\": \"/health-check-failover-url-auth-to-backend\", \"health-check-interval\": 1, \"health-check-timeout\": 1, \"https-only\": false, \"https-url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/https-url\", \"slave_reference\": \"_health-check-failover-url-auth-to-backend\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/url\"}, {\"health-check\": true, \"health-check-failover-https-url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/failover-https-url?a=b&c=\", \"health-check-failover-url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/failover-url?a=b&c=\", \"health-check-failover-url-netloc-list\": \"@@_ipv4_address@@:@@_server_netloc_a_http_port@@ @@_ipv4_address@@:@@_server_netloc_b_http_port@@\", \"health-check-http-path\": \"/health-check-failover-url\", \"health-check-interval\": 1, \"health-check-timeout\": 1, \"https-only\": false, \"https-url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/https-url\", \"slave_reference\": \"_health-check-failover-url-netloc-list\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/url\"}, {\"health-check\": true, \"health-check-failover-ssl-proxy-ca-crt\": \"@@test_server_ca.certificate_pem_double@@\", \"health-check-failover-ssl-proxy-verify\": true, \"health-check-failover-url\": \"https://@@_ipv4_address@@:@@_server_https_port@@/\", \"health-check-http-path\": \"/health-check-failover-url-ssl-proxy-verified\", \"health-check-interval\": 1, \"health-check-timeout\": 1, \"slave_reference\": \"_health-check-failover-url-ssl-proxy-verified\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"health-check\": true, \"health-check-failover-ssl-proxy-verify\": true, \"health-check-failover-url\": \"https://@@_ipv4_address@@:@@_server_https_port@@/\", \"health-check-http-path\": \"/health-check-failover-url-ssl-proxy-verify-missing\", \"health-check-interval\": 1, \"health-check-timeout\": 1, \"slave_reference\": \"_health-check-failover-url-ssl-proxy-verify-missing\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"health-check\": true, \"health-check-failover-ssl-proxy-ca-crt\": \"@@another_server_ca.certificate_pem_double@@\", \"health-check-failover-ssl-proxy-verify\": true, \"health-check-failover-url\": \"https://@@_ipv4_address@@:@@_server_https_port@@/\", \"health-check-http-path\": \"/health-check-failover-url-ssl-proxy-verify-unverified\", \"health-check-interval\": 1, \"health-check-timeout\": 1, \"slave_reference\": \"_health-check-failover-url-ssl-proxy-verify-unverified\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestSlaveHostHaproxyClash.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveHostHaproxyClash.test00cluster_request_instance_parameter_dict.txt
@@ -88,11 +88,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"custom_domain\": \"*.alias1.example.com\", \"slave_reference\": \"_wildcard\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/wildcard\"}, {\"custom_domain\": \"zspecific.alias1.example.com\", \"slave_reference\": \"_zspecific\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/zspecific\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestSlaveHttp3.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveHttp3.test00cluster_request_instance_parameter_dict.txt
--- a/software/rapid-cdn/test/test_data/test.TestSlaveHttp3.test00file_list_log.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveHttp3.test00file_list_log.txt
+T-0/var/log/monitor-httpd-access.log
+T-0/var/log/monitor-httpd-error.log
+T-0/var/log/slapgrid-T-0-error.log
+T-1/var/log/expose-csr.log
+T-1/var/log/kedifa.log
+T-1/var/log/monitor-httpd-access.log
+T-1/var/log/monitor-httpd-error.log
+T-2/var/log/backend-haproxy.log
+T-2/var/log/expose-csr.log
+T-2/var/log/frontend-haproxy.log
+T-2/var/log/httpd/_Url_access_log
+T-2/var/log/httpd/_Url_backend_log
+T-2/var/log/httpd/_auth-to-backend-backend-ignore_access_log
+T-2/var/log/httpd/_auth-to-backend-backend-ignore_backend_log
+T-2/var/log/httpd/_auth-to-backend-not-configured_access_log
+T-2/var/log/httpd/_auth-to-backend-not-configured_backend_log
+T-2/var/log/httpd/_auth-to-backend_access_log
+T-2/var/log/httpd/_auth-to-backend_backend_log
+T-2/var/log/httpd/_bad-backend_access_log
+T-2/var/log/httpd/_bad-backend_backend_log
+T-2/var/log/httpd/_ciphers-translation-all_access_log
+T-2/var/log/httpd/_ciphers_access_log
+T-2/var/log/httpd/_custom_domain_access_log
+T-2/var/log/httpd/_custom_domain_backend_log
+T-2/var/log/httpd/_custom_domain_server_alias_access_log
+T-2/var/log/httpd/_custom_domain_server_alias_backend_log
+T-2/var/log/httpd/_custom_domain_ssl_crt_ssl_key_access_log
+T-2/var/log/httpd/_custom_domain_ssl_crt_ssl_key_backend_log
+T-2/var/log/httpd/_custom_domain_ssl_crt_ssl_key_ssl_ca_crt_access_log
+T-2/var/log/httpd/_custom_domain_ssl_crt_ssl_key_ssl_ca_crt_backend_log
+T-2/var/log/httpd/_disabled-cookie-list-simple_access_log
+T-2/var/log/httpd/_disabled-cookie-list-simple_backend_log
+T-2/var/log/httpd/_disabled-cookie-list_access_log
+T-2/var/log/httpd/_disabled-cookie-list_backend_log
+T-2/var/log/httpd/_empty_access_log
+T-2/var/log/httpd/_enable-http2-default_access_log
+T-2/var/log/httpd/_enable-http2-default_backend_log
+T-2/var/log/httpd/_enable-http2-false_access_log
+T-2/var/log/httpd/_enable-http2-false_backend_log
+T-2/var/log/httpd/_enable-http2-true_access_log
+T-2/var/log/httpd/_enable-http2-true_backend_log
+T-2/var/log/httpd/_enable-http3-default-enable-http2-false_access_log
+T-2/var/log/httpd/_enable-http3-default-enable-http2-false_backend_log
+T-2/var/log/httpd/_enable-http3-default_access_log
+T-2/var/log/httpd/_enable-http3-default_backend_log
+T-2/var/log/httpd/_enable-http3-false_access_log
+T-2/var/log/httpd/_enable-http3-false_backend_log
+T-2/var/log/httpd/_enable-http3-true-enable-http2-false_access_log
+T-2/var/log/httpd/_enable-http3-true-enable-http2-false_backend_log
+T-2/var/log/httpd/_enable-http3-true_access_log
+T-2/var/log/httpd/_enable-http3-true_backend_log
+T-2/var/log/httpd/_enable_cache-disable-no-cache-request_access_log
+T-2/var/log/httpd/_enable_cache-disable-no-cache-request_backend_log
+T-2/var/log/httpd/_enable_cache-disable-via-header_access_log
+T-2/var/log/httpd/_enable_cache-disable-via-header_backend_log
+T-2/var/log/httpd/_enable_cache-https-only-false_access_log
+T-2/var/log/httpd/_enable_cache-https-only-false_backend_log
+T-2/var/log/httpd/_enable_cache_access_log
+T-2/var/log/httpd/_enable_cache_backend_log
+T-2/var/log/httpd/_enable_cache_custom_domain_access_log
+T-2/var/log/httpd/_enable_cache_custom_domain_backend_log
+T-2/var/log/httpd/_enable_cache_server_alias_access_log
+T-2/var/log/httpd/_enable_cache_server_alias_backend_log
+T-2/var/log/httpd/_https-only_access_log
+T-2/var/log/httpd/_https-only_backend_log
+T-2/var/log/httpd/_https-url-netloc-list_access_log
+T-2/var/log/httpd/_https-url-netloc-list_backend_log
+T-2/var/log/httpd/_prefer-gzip-encoding-to-backend-https-only_access_log
+T-2/var/log/httpd/_prefer-gzip-encoding-to-backend-https-only_backend_log
+T-2/var/log/httpd/_prefer-gzip-encoding-to-backend_access_log
+T-2/var/log/httpd/_prefer-gzip-encoding-to-backend_backend_log
+T-2/var/log/httpd/_server-alias-duplicated_access_log
+T-2/var/log/httpd/_server-alias-duplicated_backend_log
+T-2/var/log/httpd/_server-alias-empty_access_log
+T-2/var/log/httpd/_server-alias-empty_backend_log
+T-2/var/log/httpd/_server-alias-wildcard_access_log
+T-2/var/log/httpd/_server-alias-wildcard_backend_log
+T-2/var/log/httpd/_server-alias_access_log
+T-2/var/log/httpd/_server-alias_backend_log
+T-2/var/log/httpd/_server-alias_custom_domain-duplicated_access_log
+T-2/var/log/httpd/_server-alias_custom_domain-duplicated_backend_log
+T-2/var/log/httpd/_ssl-proxy-verify-unverified_access_log
+T-2/var/log/httpd/_ssl-proxy-verify-unverified_backend_log
+T-2/var/log/httpd/_ssl-proxy-verify_ssl_proxy_ca_crt-unverified_access_log
+T-2/var/log/httpd/_ssl-proxy-verify_ssl_proxy_ca_crt-unverified_backend_log
+T-2/var/log/httpd/_ssl-proxy-verify_ssl_proxy_ca_crt_access_log
+T-2/var/log/httpd/_ssl-proxy-verify_ssl_proxy_ca_crt_backend_log
+T-2/var/log/httpd/_ssl_ca_crt_does_not_match_access_log
+T-2/var/log/httpd/_ssl_ca_crt_does_not_match_backend_log
+T-2/var/log/httpd/_ssl_ca_crt_garbage_access_log
+T-2/var/log/httpd/_ssl_ca_crt_garbage_backend_log
+T-2/var/log/httpd/_ssl_ca_crt_only_access_log
+T-2/var/log/httpd/_ssl_ca_crt_only_backend_log
+T-2/var/log/httpd/_type-notebook_access_log
+T-2/var/log/httpd/_type-notebook_backend_log
+T-2/var/log/httpd/_type-redirect-custom_domain_access_log
+T-2/var/log/httpd/_type-redirect_access_log
+T-2/var/log/httpd/_type-websocket-websocket-path-list-websocket-transparent-false_access_log
+T-2/var/log/httpd/_type-websocket-websocket-path-list-websocket-transparent-false_backend_log
+T-2/var/log/httpd/_type-websocket-websocket-path-list_access_log
+T-2/var/log/httpd/_type-websocket-websocket-path-list_backend_log
+T-2/var/log/httpd/_type-websocket-websocket-transparent-false_access_log
+T-2/var/log/httpd/_type-websocket-websocket-transparent-false_backend_log
+T-2/var/log/httpd/_type-websocket_access_log
+T-2/var/log/httpd/_type-websocket_backend_log
+T-2/var/log/httpd/_type-zope-default-path_access_log
+T-2/var/log/httpd/_type-zope-path_access_log
+T-2/var/log/httpd/_type-zope-path_backend_log
+T-2/var/log/httpd/_type-zope-prefer-gzip-encoding-to-backend-https-only_access_log
+T-2/var/log/httpd/_type-zope-prefer-gzip-encoding-to-backend-https-only_backend_log
+T-2/var/log/httpd/_type-zope-prefer-gzip-encoding-to-backend_access_log
+T-2/var/log/httpd/_type-zope-prefer-gzip-encoding-to-backend_backend_log
+T-2/var/log/httpd/_type-zope-virtualhostroot-http-port_access_log
+T-2/var/log/httpd/_type-zope-virtualhostroot-http-port_backend_log
+T-2/var/log/httpd/_type-zope-virtualhostroot-https-port_access_log
+T-2/var/log/httpd/_type-zope-virtualhostroot-https-port_backend_log
+T-2/var/log/httpd/_type-zope_access_log
+T-2/var/log/httpd/_type-zope_backend_log
+T-2/var/log/httpd/_url-netloc-list_access_log
+T-2/var/log/httpd/_url-netloc-list_backend_log
+T-2/var/log/httpd/_url_https-url_access_log
+T-2/var/log/httpd/_url_https-url_backend_log
+T-2/var/log/monitor-httpd-access.log
+T-2/var/log/monitor-httpd-error.log
+T-2/var/log/slave-introspection-access.log
+T-2/var/log/slave-introspection-error.log
+T-2/var/log/trafficserver/manager.log
--- a/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test00file_list_run.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test00file_list_run.txt
--- a/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test00supervisor_state.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test00supervisor_state.txt
--- a/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test_file_list_etc_cron_d.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test_file_list_etc_cron_d.txt
--- a/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test_file_list_plugin.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test_file_list_plugin.txt
--- a/software/rapid-cdn/test/test_data/test.TestSlaveHttp3.test_master_partition_state.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveHttp3.test_master_partition_state.txt
+SetEnvIf Origin "^http(s)?://(.+\.)?(monitor\.app\.officejs\.com)$" ORIGIN_DOMAIN=$0
+Header always set Access-Control-Allow-Origin "%{ORIGIN_DOMAIN}e" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Credentials "true" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Methods "PROPFIND, PROPPATCH, COPY, MOVE, DELETE, MKCOL, LOCK, UNLOCK, PUT, GETLIB, VERSION-CONTROL, CHECKIN, CHECKOUT, UNCHECKOUT, REPORT, UPDATE, CANCELUPLOAD, HEAD, OPTIONS, GET, POST" env=ORIGIN_DOMAIN
+Header always set Access-Control-Allow-Headers "Overwrite, Destination, Content-Type, Depth, User-Agent, X-File-Size, X-Requested-With, If-Modified-Since, X-File-Name, Cache-Control, Authorization" env=ORIGIN_DOMAIN
--- a/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test00cluster_request_instance_parameter_dict.txt
-[
-  {
-    "-frontend-1-experimental-haproxy-flavour": "quic",
-    "-frontend-1-experimental-haproxy-quic": "True",
-    "-frontend-1-experimental-quic-port": "11443",
-    "caucase_port": "15090",
-    "domain": "example.com",
-    "full_address_list": [],
-    "instance_title": "testing partition 0",
-    "ip_list": [
-      [
-        "T-0",
-        "@@_ipv4_address@@"
-      ],
-      [
-        "T-0",
-        "@@_ipv6_address@@"
-      ]
-    ],
-    "kedifa_port": "15080",
-    "plain_http_port": "11080",
-    "port": "11443",
-    "request-timeout": "12",
-    "root_instance_title": "testing partition 0",
-    "slap_computer_id": "local",
-    "slap_computer_partition_id": "T-0",
-    "slap_software_release_url": "@@00getSoftwareURL@@",
-    "slap_software_type": "RootSoftwareInstance",
-    "slave_instance_list": [
-      {
-        "slap_software_type": "RootSoftwareInstance",
-        "slave_reference": "_url",
-        "slave_title": "_url",
-        "url": "http://@@_ipv4_address@@:@@_server_http_port@@/"
-      },
-      {
-        "enable_cache": true,
-        "slap_software_type": "RootSoftwareInstance",
-        "slave_reference": "_enable_cache",
-        "slave_title": "_enable_cache",
-        "url": "http://@@_ipv4_address@@:@@_server_http_port@@/"
-      }
-    ],
-    "timestamp": "@@TIMESTAMP@@"
-  },
-  {
-    "_": {
-      "caucase_port": "15090",
-      "cluster-identification": "testing partition 0",
-      "kedifa_port": "15080",
-      "monitor-cors-domains": "monitor.app.officejs.com",
-      "monitor-httpd-port": "8402",
-      "monitor-password": "@@monitor-password@@",
-      "monitor-username": "admin",
-      "slave-list": [
-        {
-          "enable_cache": true,
-          "slave_reference": "_enable_cache",
-          "url": "http://@@_ipv4_address@@:@@_server_http_port@@/"
-        },
-        {
-          "slave_reference": "_url",
-          "url": "http://@@_ipv4_address@@:@@_server_http_port@@/"
-        }
-      ]
-    },
-    "full_address_list": [],
-    "instance_title": "kedifa",
-    "ip_list": [
-      [
-        "T-1",
-        "@@_ipv4_address@@"
-      ],
-      [
-        "T-1",
-        "@@_ipv6_address@@"
-      ]
-    ],
-    "root_instance_title": "testing partition 0",
-    "slap_computer_id": "local",
-    "slap_computer_partition_id": "T-1",
-    "slap_software_release_url": "@@00getSoftwareURL@@",
-    "slap_software_type": "kedifa",
-    "slave_instance_list": [],
-    "timestamp": "@@TIMESTAMP@@"
-  },
-  {
-    "_": {
-      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
-      "cluster-identification": "testing partition 0",
-      "domain": "example.com",
-      "extra_slave_instance_list": "[{\"enable_cache\": true, \"slave_reference\": \"_enable_cache\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_url\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}]",
-      "frontend-haproxy-flavour": "quic",
-      "frontend-haproxy-quic": "True",
-      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "11443",
-      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
-      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
-      "monitor-cors-domains": "monitor.app.officejs.com",
-      "monitor-httpd-port": 8411,
-      "monitor-password": "@@monitor-password@@",
-      "monitor-username": "admin",
-      "plain_http_port": "11080",
-      "port": "11443",
-      "request-timeout": "12",
-      "slave-kedifa-information": "{\"_enable_cache\": {\"kedifa-caucase-url\": \"http://[@@_ipv6_address@@]:15090\", \"key-download-url\": \"https://[@@_ipv6_address@@]:15080/@@enable_cache_key-generate-auth-url@@\", \"key-generate-auth-url\": \"https://[@@_ipv6_address@@]:15080/@@enable_cache_key-generate-auth-url@@/@@enable_cache_key-upload-url@@\", \"key-upload-url\": \"https://[@@_ipv6_address@@]:15080/@@enable_cache_key-generate-auth-url@@?auth=\"}, \"_url\": {\"kedifa-caucase-url\": \"http://[@@_ipv6_address@@]:15090\", \"key-download-url\": \"https://[@@_ipv6_address@@]:15080/@@url_key-generate-auth-url@@\", \"key-generate-auth-url\": \"https://[@@_ipv6_address@@]:15080/@@url_key-generate-auth-url@@/@@enable_cache_key-upload-url@@\", \"key-upload-url\": \"https://[@@_ipv6_address@@]:15080/@@url_key-generate-auth-url@@?auth=\"}}"
-    },
-    "full_address_list": [],
-    "instance_title": "caddy-frontend-1",
-    "ip_list": [
-      [
-        "T-2",
-        "@@_ipv4_address@@"
-      ],
-      [
-        "T-2",
-        "@@_ipv6_address@@"
-      ]
-    ],
-    "root_instance_title": "testing partition 0",
-    "slap_computer_id": "local",
-    "slap_computer_partition_id": "T-2",
-    "slap_software_release_url": "@@00getSoftwareURL@@",
-    "slap_software_type": "single-custom-personal",
-    "slave_instance_list": [],
-    "timestamp": "@@TIMESTAMP@@"
-  }
-]
--- a/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test00file_list_log.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveQuic.test00file_list_log.txt
-T-0/var/log/monitor-httpd-access.log
-T-0/var/log/monitor-httpd-error.log
-T-0/var/log/slapgrid-T-0-error.log
-T-1/var/log/expose-csr.log
-T-1/var/log/kedifa.log
-T-1/var/log/monitor-httpd-access.log
-T-1/var/log/monitor-httpd-error.log
-T-2/var/log/backend-haproxy.log
-T-2/var/log/expose-csr.log
-T-2/var/log/frontend-haproxy.log
-T-2/var/log/httpd/_enable_cache_access_log
-T-2/var/log/httpd/_enable_cache_backend_log
-T-2/var/log/httpd/_url_access_log
-T-2/var/log/httpd/_url_backend_log
-T-2/var/log/monitor-httpd-access.log
-T-2/var/log/monitor-httpd-error.log
-T-2/var/log/slave-introspection-access.log
-T-2/var/log/slave-introspection-error.log
-T-2/var/log/trafficserver/manager.log
--- a/software/rapid-cdn/test/test_data/test.TestSlaveSlapOSMasterCertificateCompatibility.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveSlapOSMasterCertificateCompatibility.test00cluster_request_instance_parameter_dict.txt
@@ -239,11 +239,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"custom_domain\": \"customdomainsslcrtsslkey.example.com\", \"slave_reference\": \"_custom_domain_ssl_crt_ssl_key\", \"ssl_crt\": \"@@customdomain_certificate_pem_double@@\", \"ssl_key\": \"@@customdomain_key_pem_double@@\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"custom_domain\": \"customdomainsslcrtsslkeysslcacrt.example.com\", \"slave_reference\": \"_custom_domain_ssl_crt_ssl_key_ssl_ca_crt\", \"ssl_ca_crt\": \"@@ca.certificate_pem_double@@\", \"ssl_crt\": \"@@customdomain_ca_certificate_pem_double@@\", \"ssl_key\": \"@@customdomain_ca_key_pem_double@@\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_ssl_ca_crt_does_not_match\", \"ssl_ca_crt\": \"@@ca.certificate_pem_double@@\", \"ssl_crt\": \"@@certificate_pem_double@@\", \"ssl_key\": \"@@key_pem_double@@\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_ssl_ca_crt_garbage\", \"ssl_ca_crt\": \"some garbage\", \"ssl_crt\": \"@@sslcacrtgarbage_ca_certificate_pem_double@@\", \"ssl_key\": \"@@sslcacrtgarbage_ca_key_pem_double@@\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"enable_cache\": true, \"slave_reference\": \"_ssl_from_master\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_ssl_from_master_kedifa_overrides\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_ssl_from_slave\", \"ssl_crt\": \"@@ssl_from_slave_certificate_pem_double@@\", \"ssl_key\": \"@@ssl_from_slave_key_pem_double@@\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_ssl_from_slave_kedifa_overrides\", \"ssl_crt\": \"@@ssl_from_slave_kedifa_overrides_certificate_pem_double@@\", \"ssl_key\": \"@@ssl_from_slave_kedifa_overrides_key_pem_double@@\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_type-notebook-ssl_from_master\", \"type\": \"notebook\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_type-notebook-ssl_from_master_kedifa_overrides\", \"type\": \"notebook\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_type-notebook-ssl_from_slave\", \"ssl_crt\": \"@@type_notebook_ssl_from_slave_certificate_pem_double@@\", \"ssl_key\": \"@@type_notebook_ssl_from_slave_key_pem_double@@\", \"type\": \"notebook\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}, {\"slave_reference\": \"_type-notebook-ssl_from_slave_kedifa_overrides\", \"ssl_crt\": \"@@type_notebook_ssl_from_slave_kedifa_overrides_certificate_pem_double@@\", \"ssl_key\": \"@@type_notebook_ssl_from_slave_kedifa_overrides_key_pem_double@@\", \"type\": \"notebook\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestSlaveSlapOSMasterCertificateCompatibilityOverrideMaster.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveSlapOSMasterCertificateCompatibilityOverrideMaster.test00cluster_request_instance_parameter_dict.txt
@@ -79,11 +79,10 @@
      "backend-client-caucase-url": "http://[@@_ipv6_address@@]:8990",
      "cluster-identification": "testing partition 0",
      "domain": "example.com",
+      "enable-http3": "false",
      "extra_slave_instance_list": "[{\"enable_cache\": true, \"slave_reference\": \"_ssl_from_master_kedifa_overrides_master_certificate\", \"url\": \"http://@@_ipv4_address@@:@@_server_http_port@@/\"}]",
-      "frontend-haproxy-flavour": "basic",
-      "frontend-haproxy-quic": "False",
      "frontend-name": "caddy-frontend-1",
-      "frontend-quic-port": "443",
+      "http3-port": "443",
      "kedifa-caucase-url": "http://[@@_ipv6_address@@]:15090",
      "master-key-download-url": "https://[@@_ipv6_address@@]:15080/@@master-key-download-url_endpoint@@",
      "monitor-cors-domains": "monitor.app.officejs.com",

--- a/software/rapid-cdn/test/test_data/test.TestSlaveSlapOSMasterCertificateCompatibilityUpdate.test00cluster_request_instance_parameter_dict.txt
+++ b/software/rapid-cdn/test/test_data/test.TestSlaveSlapOSMasterCertificateCompatibilityUpdate.test00cluster_request_instance_parameter_dict.txt
--- a/software/slapos-sr-testing/software.cfg
+++ b/software/slapos-sr-testing/software.cfg