fix ca generation

don't delete valid.ext

add `require client ca' rule to require certs signed by a CA

improve logs management

add the ``entrypoint'' option

use starts_with in puny.c

initial punycode support

added support for location blocks

test CGI with big files

bump the key size a little on fedora with libretls (running on top of openssl) it won't open the key otherwise.

accumulate the whole response line for CGI scripts

use a c program to fill the file it's several order of magnitude faster than the equivalent shell script

brand new regress suite