fix: add DisableHTTP2Fallback option to respect HTTP/1.1-only transport configs

[usernametooshort]

Problem

When a caller explicitly configures HTTP/1.1-only transport (e.g. httpx -pr http11 which sets transport.TLSNextProto = map[string]func(...){} and GODEBUG=http2client=0), retryablehttp-go silently bypasses this restriction via the automatic HTTP/2 fallback in do.go:

if err != nil && stringsutil.ContainsAny(err.Error(), "net/http: HTTP/1.x transport connection broken: malformed HTTP version ...") {
    resp, err = c.HTTPClient2.Do(req.Request)  // ← ignores HTTP/1.1-only config
}

This means -pr http11 in httpx has no effect for servers that respond with HTTP/2.

See: projectdiscovery/httpx#2240

Fix

Add DisableHTTP2Fallback bool to Options. When set, the HTTPClient2.Do fallback is skipped, respecting the caller's explicit protocol choice.

if err != nil && !c.options.DisableHTTP2Fallback && stringsutil.ContainsAny(...) {
    resp, err = c.HTTPClient2.Do(req.Request)
}

Usage (httpx side)

In httpx when Protocol == "http11":

retryablehttpOptions.DisableHTTP2Fallback = true

This is a non-breaking change — existing callers that do not set the option retain the current fallback behavior.

[neo-by-projectdiscovery-dev]

Neo - PR Security Review

No security issues found

Highlights

• Adds DisableHTTP2Fallback option to allow callers to opt out of automatic HTTP/2 fallback
• Preserves existing behavior by default (non-breaking change)
• Enables httpx -pr http11 flag to properly enforce HTTP/1.1-only communication

_{Comment @neo help for available commands. · Open in Neo}

[Mzack9999]

The underlying issue (httpx#2240) has been resolved at the httpx level — the HTTP/1.1 protocol preference is now correctly enforced without requiring changes to retryablehttp-go. Closing as the original bounty issue is already complete. Thanks for the contribution.