This is not officially released yet; it needs some QA first.

Conflicts:
	src/or/microdesc.c

The 0.2.5.x warning is the one that might help us track this down; the
warnings in stable are just annoying users over and over and over.

on #9686, gmorehose reports that the 500 MB lower limit is too high
for raspberry pi users.

This is a backport of 64724872 to 0.2.4.

Note that in 0.2.4, the option is called MaxMemInCellQueues.

When clearing a list of tokens, it's important to do token_clear()
on them first, or else any keys they contain will leak.  This didn't
leak memory on any of the successful microdescriptor parsing paths,
but it does leak on some failing paths when the failure happens
during tokenization.

Fixes bug 11618; bugfix on 0.2.2.6-alpha.

Fixes bug 10849; bugfix on 0.2.1.1-alpha (I believe)

When I merged the fix for #7351, and implemented proposal 214 (4-byte
circuit IDs), I forgot to add a changes file.  Later, we never noticed
that it didn't have one.

Resolves ticket #11555.  Thanks to cypherpunks for noticing this was
missing.

Fixes the surface behavior of #11553

The server cipher list is (thanks to #11513) chosen systematically to
put the best choices for Tor first.  The client cipher list is chosen
to resemble a browser.  So let's set SSL_OP_CIPHER_SERVER_PREFERENCE
to have the servers pick according to their own preference order.

Now it only has dannenberg

Conflicts:
	src/or/circuituse.c

Fixes bug 11519, apparently bugfix on 0.2.3.11-alpha.