Pools, CLI, versioning, Debian packaging, HTTPS fix

- Replaced flat `backends: [...]` list on frontends with an ordered `pools:`
  list; each pool has a name and a map of backends with per-pool weights (0–100,
  default 100). Pools express priority: first pool with a healthy backend wins.
- Removed global backend weight (was on the backend, now lives in the pool).
- Config validation enforces non-empty pools, non-empty pool names, weight
  range, and consistent address families across all pools of a frontend.

- Added `PoolBackendInfo { name, weight }` and changed `PoolInfo.backends` from
  `repeated string` to `repeated PoolBackendInfo` so weights are visible over
  the API.

- Full interactive shell with readline, tab completion, and `?` inline help.
- Command tree parser (Walk) handles fixed keywords and dynamic slot nodes;
  prefix matching with exact-match priority.
- Commands: `show version/frontends/frontend/backends/backend/healthchecks/
  healthcheck`, `set backend <name> pause|resume`, `quit`/`exit`.
- `show frontend` output is hierarchical (pools → backends) with per-backend
  weights and `[disabled]` notation; pool section uses fixed-width formatting
  so ANSI color codes don't corrupt tabwriter alignment.
- `-color` flag (default true) wraps static field labels in dark-blue ANSI;
  works correctly with tabwriter because all labels carry identical-length
  escape sequences.

- `cmd/version.go` package holds `version`, `commit`, `date` vars set at build
  time via `-ldflags -X`.
- `make build` / `make build-amd64` / `make build-arm64` all inject
  `VERSION=0.1.1`, `COMMIT_HASH` (from `git rev-parse --short HEAD`), and
  `DATE` (UTC ISO-8601).
- `maglevc` prints version on interactive startup and exposes `show version`.
- `maglevd` logs version/commit/date at startup; `-version` flag prints and exits.

- `doHTTPProbe` was building a `https://` target URL even though TLS was already
  applied to the connection inside `inNetns`. `http.Transport` then wrapped the
  connection in a second TLS layer, producing "http: server gave HTTP response
  to HTTPS client". Fixed by always using `http://` in the target URL.
- Added `TestHTTPSProbe` using `httptest.NewTLSServer` to cover the full path.

- New `docs/user-guide.md`: maglevd flags/signals, maglevc commands, shell
  completion, and command-tree parser walkthrough.
- New `docs/healthchecks.md`: state machine, rise/fall model, probe intervals,
  all transition events with log examples.
- Updated `docs/config-guide.md`: pools design, removed global weight from
  backends, updated all examples.
- Updated `README.md`: packaging table, build paths, corrected binary locations
  (`/usr/sbin/maglevd`), config filename (`.yaml`).

- `debian/` directory contains `control.in`, `maglevd.service`, `default.maglev`,
  `maglev.yaml` (example config), `conffiles`, `postinst`, `prerm`.
- `debian/build-deb.sh` stages a package tree and calls `dpkg-deb`; emits
  `build/vpp-maglev_<version>~<commit>_<arch>.deb`.
- Cross-compiles for amd64 and arm64 in one `make pkg-deb` invocation.
- `maglevd` installed to `/usr/sbin/`, `maglevc` to `/usr/bin/`.
- Service reads `MAGLEV_CONFIG` from `/etc/default/maglev`
  (default: `/etc/maglev/maglev.yaml`).
- Man pages `maglevd(8)` and `maglevc(1)` live in `docs/` and are gzip'd into
  the package.
- All build output goes to `build/<arch>/`; `build/` is gitignored.

docs/config-guide.md

@@ -77,12 +77,13 @@ Common fields (all types):
 *   ***probe-ipv6-src***: An optional IPv6 source address used when probing IPv6 backends.
     Must be an IPv6 address. When omitted, the OS chooses the source address.
 *   ***interval***: Required. A positive Go duration string (e.g. `2s`, `500ms`) controlling
-    how often a probe is sent when the backend is fully healthy or in the initial unknown state.
+    how often a probe is sent when the backend is fully healthy (counter at maximum).
 *   ***fast-interval***: Optional. A positive duration used instead of `interval` while the
-    backend's health counter is degraded (between down and up). When omitted, `interval` is used.
+    backend's health counter is degraded (between down and up) or in `unknown` state. When
+    omitted, `interval` is used.
 *   ***down-interval***: Optional. A positive duration used instead of `interval` while the
-    backend is fully down. When omitted, `interval` is used. Setting this to a longer value
-    reduces probe traffic to backends that are known to be offline.
+    backend is fully down (counter at zero). When omitted, `interval` is used. Setting this to
+    a longer value reduces probe traffic to backends that are known to be offline.
 *   ***timeout***: Required. A positive duration after which an in-flight probe is abandoned
     and counted as a failure.
 *   ***rise***: The number of consecutive successes required to transition from down to up.
@@ -193,9 +194,6 @@ multiple frontends.
 *   ***enabled***: A boolean controlling whether this backend participates in any frontend.
     When `false`, the backend is excluded entirely and no probe goroutine is started.
     Defaults to `true`.
-*   ***weight***: An integer between 0 and 100 (inclusive) expressing the relative weight of
-    this backend in a frontend's pool. `0` keeps the backend in the pool but assigns it no
-    traffic. Defaults to `100`.
 
 Examples:
 ```yaml
@@ -206,7 +204,6 @@ backends:
   nginx0-lon:
     address: 198.51.100.11
     healthcheck: nginx-http
-    weight: 50
   nginx0-draining:
     address: 198.51.100.12
     healthcheck: nginx-http
@@ -220,8 +217,8 @@ backends:
 
 ## frontends
 
-A named map of virtual IPs (VIPs). Each frontend ties together a listener address with a set
-of backends. The gRPC API exposes frontends by name.
+A named map of virtual IPs (VIPs). Each frontend ties together a listener address with an
+ordered list of backend pools. The gRPC API exposes frontends by name.
 
 *   ***description***: An optional free-text string for documentation purposes.
 *   ***address***: Required. The IPv4 or IPv6 address of the VIP.
@@ -232,38 +229,50 @@ of backends. The gRPC API exposes frontends by name.
     `protocol` to be set. When omitted, the frontend matches all ports. Note that the
     frontend port is independent of the healthcheck port: a frontend on port 443 may use
     a healthcheck that probes port 80.
-*   ***backends***: Required. A non-empty list of backend names. All backends in a frontend
-    must have addresses of the same address family (all IPv4 or all IPv6). Every name must
-    refer to an existing entry in the `backends` section.
+*   ***pools***: Required. A non-empty ordered list of pool objects. Pools express priority:
+    the first pool is preferred; subsequent pools act as fallbacks. All backends across all
+    pools in a frontend must have addresses of the same address family (all IPv4 or all IPv6).
+
+Each pool has:
+
+*   ***name***: Required. A non-empty string identifying the pool (e.g. `primary`, `fallback`).
+*   ***backends***: A map of backend names to per-pool backend options. Every name must refer
+    to an existing entry in the `backends` section.
+
+Per-pool backend options:
+
+*   ***weight***: An integer between 0 and 100 (inclusive) expressing the relative weight of
+    this backend within the pool. `0` keeps the backend in the pool but assigns it no traffic.
+    Defaults to `100`. Weight is per-pool, not global — the same backend can appear with
+    different weights in different frontends.
 
 Examples:
 ```yaml
 frontends:
   nginx-v4-http:
-    description: "IPv4 HTTP VIP"
+    description: "IPv4 HTTP VIP with fallback"
     address: 198.51.100.1
     protocol: tcp
     port: 80
-    backends: [nginx0-ams, nginx0-lon]
-
-  nginx-v4-https:
-    description: "IPv4 HTTPS VIP — reuses the same backends as HTTP"
-    address: 198.51.100.1
-    protocol: tcp
-    port: 443
-    backends: [nginx0-ams, nginx0-lon]
+    pools:
+      - name: primary
+        backends:
+          nginx0-ams: { weight: 10 }
+          nginx0-lon: {}
+      - name: fallback
+        backends:
+          nginx0-fra: {}
 
   maildrop-imaps:
     description: "IMAPS VIP"
     address: 2001:db8::1
     protocol: tcp
     port: 993
-    backends: [maildrop0-ams, maildrop0-lon]
-
-  catchall:
-    description: "Match all traffic to this VIP regardless of protocol or port"
-    address: 198.51.100.2
-    backends: [static-backend]
+    pools:
+      - name: primary
+        backends:
+          maildrop0-ams: {}
+          maildrop0-lon: {}
 ```
 
 ---
@@ -322,7 +331,6 @@ maglev:
     nginx0-fra:
       address: 198.51.100.12
       healthcheck: nginx
-      weight: 50
     maildrop0-ams:
       address: 2001:db8:1::10
       healthcheck: dovecot
@@ -332,23 +340,46 @@ maglev:
 
   frontends:
     nginx-http:
-      description: "HTTP VIP"
+      description: "HTTP VIP with fallback"
       address: 198.51.100.1
       protocol: tcp
       port: 80
-      backends: [nginx0-ams, nginx0-lon, nginx0-fra]
+      pools:
+        - name: primary
+          backends:
+            nginx0-ams: { weight: 10 }
+            nginx0-lon: {}
+        - name: fallback
+          backends:
+            nginx0-fra: {}
 
     nginx-https:
       description: "HTTPS VIP — same backends, different port"
       address: 198.51.100.1
       protocol: tcp
       port: 443
-      backends: [nginx0-ams, nginx0-lon, nginx0-fra]
+      pools:
+        - name: primary
+          backends:
+            nginx0-ams: { weight: 10 }
+            nginx0-lon: {}
+        - name: fallback
+          backends:
+            nginx0-fra: {}
 
     maildrop-imaps:
       description: "IMAPS VIP"
       address: 2001:db8::1
       protocol: tcp
       port: 993
-      backends: [maildrop0-ams, maildrop0-lon]
+      pools:
+        - name: primary
+          backends:
+            maildrop0-ams: {}
+            maildrop0-lon: {}
 ```
+
+---
+
+For a detailed description of the health state machine, probe intervals, and all
+transition events, see [healthchecks.md](healthchecks.md).