| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
| |
Follow-up to bbf8cae44dedc495e6
We removed support for the watcom builds files back in September
2020. This removes all remaining watcom references and ifdefs.
|
|
|
|
|
|
|
|
|
|
|
|
| |
Unless muted (with -s) When doing globbing, curl would output mime-like
separators between the separate transfers. This is not documented
anywhere, surprises users and clobbers the output. Gone now.
Updated test 18 and 1235
Reported-by: jonny112 on github
Bug: https://github.com/curl/curl/discussions/8257
Closes #8278
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Increase the buffer length passed to mbedtls_x509_crt_parse to account
for the null byte appended to the temporary blob.
Follow-up to 867ad1c which uses a null terminated copy of the
certificate blob, because mbedtls_x509_crt_parse requires PEM data
to be null terminated.
Ref: https://github.com/curl/curl/commit/867ad1c#r63439893
Ref: https://github.com/curl/curl/pull/8146
Closes https://github.com/curl/curl/pull/8260
|
|
|
|
|
|
|
|
| |
Similarly to c148f0f551f9bea0e3d0, make quiche correctly acknowledge
`CURLOPT_SSL_VERIFYPEER` and `CURLOPT_SSL_VERIFYHOST`.
Fixes #8173
Closes #8275
|
|
|
|
|
|
| |
enfore -> enforce
Closes #8281
|
|
|
|
|
|
|
|
|
| |
It is more work to maintain that check than the (any?) benefit it
brings.
Fixes #8279
Reported-by: Satadru Pramanik
Closes #8280
|
|
|
|
|
|
|
|
| |
Oss-fuzz found an issue when the "sendleftovers" pointer could leak memory.
Fix this by always freeing it (if still assigned) in the done function.
Bug: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43515
Closes #8274
|
|
|
|
|
|
|
|
| |
Typically a problem for platforms with 32 bit long and 64 bit size_t
Reported-by: Fabian Yamaguchi
Bug: https://hackerone.com/reports/1444539
Closes #8272
|
|
|
|
| |
bump next release to become 7.82.0
|
|
|
|
|
|
| |
This makes the behavior consistent between GCC 10 and earlier versions.
Closes https://github.com/curl/curl/pull/8271
|
|
|
|
|
|
|
| |
Don't enable that warning when warnings are disabled.
Also add it to CMake.
Closes https://github.com/curl/curl/pull/8271
|
|
|
|
|
|
|
| |
The newer images don't have all required MSYS2 packages.
Fixes https://github.com/curl/curl/issues/8248
Closes https://github.com/curl/curl/pull/8265
|
|
|
|
| |
Closes https://github.com/curl/curl/pull/8265
|
|
|
|
|
|
| |
... when a certificate fails to be loaded from a blob
Closes #8266
|
|
|
|
|
|
|
|
|
|
|
| |
1. The callback is better described in the option for setting it. Having
it in a single place reduces the risk that one of them is wrong.
2. The "typical usage" is wrong since the functions described in this
man page are both deprecated so they cannot be used in any "typical" way
anymore.
Closes #8262
|
|
|
|
|
|
|
|
|
|
| |
Mostly reverts ba0657c343f, but now instead just run the plain macro on
darwin. The approach as used on other platforms is simply not necessary
on macOS.
Fixes #8229
Reported-by: Ryan Schmidt
Closes #8247
|
|
|
|
|
|
|
|
|
|
|
| |
As credentials can be quite different depending on the mechanism used,
there are no default mechanisms for LDAP and simple bind with a DN is
then used.
The caller has to provide mechanism(s) using CURLOPT_LOGIN_OPTIONS to
enable SASL authentication and disable simple bind.
Closes #8152
|
|
|
|
|
|
|
|
| |
83cc966 changed documentation from using http to https. However,
CURLOPT_RESOLVE being set to port 80 in the documentation means that it
isn't valid for the new URL. Update to 443.
Closes https://github.com/curl/curl/pull/8258
|
|
|
|
| |
Closes #8239
|
|
|
|
|
|
| |
Added to FILEFORMAT
Closes #8239
|
|
|
|
|
|
|
|
|
|
| |
As the ps command may reveal sensitive command line info, obfuscate
options --tlsuser, --tlspasswd, --proxy-tlsuser, --proxy-tlspassword and
--oauth2-bearer arguments.
Reported-by: Stephen Boost <s.booth@epcc.ed.ac.uk>
Closes #7964
|
|
|
|
|
|
|
|
|
| |
Mesalink has ceased development. We can no longer encourage use of it.
It seems to be continued under the name TabbySSL, but no attempts have
(yet) been to make curl support it.
Fixes #8188
Closes #8191
|
|
|
|
|
|
|
|
| |
For consistency, use the same return code for URL malformats,
independently of what scheme that is used. Previously this would return
CURLE_LDAP_INVALID_URL, but starting now that error cannot be returned.
Closes #8170
|
|
|
|
|
|
| |
Update four http version man page sections.
Closes #8254
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Add support for `CURLOPT_CAINFO_BLOB` `CURLOPT_PROXY_CAINFO_BLOB` to the
rustls TLS backend. Multiple certificates in a single PEM string are
supported just like OpenSSL does with this option.
This is compatible at least with rustls-ffi 0.8+ which is our new
minimum version anyway.
I was able to build and run this on Windows, pulling trusted certs from
the system and then add them to rustls by setting
`CURLOPT_CAINFO_BLOB`. Handy!
Closes #8255
|
| |
|
| |
|
|
|
|
|
|
| |
It was previously disabled only in the CI jobs yaml
Closes #8252
|
|
|
|
| |
Closes #8252
|
|
|
|
| |
Closes #8252
|
|
|
|
| |
Closes #8251
|
|
|
|
|
|
|
| |
Disables tests that don't yet work with the rustls backend.
Fixes #8004
Closes #8250
|
| |
|
|
|
|
|
|
|
|
| |
- it strips off the path from the server provided name
- it saves in current directory or --output-dir
Ref: https://curl.se/mail/archive-2022-01/0032.html
Closes #8249
|
|
|
|
|
|
|
|
| |
Add test 380 and 381 to verify, edited test 133
Reported-by: Manfred Schwarb
Fixes #8241
Closes #8243
|
|
|
|
|
|
|
|
|
|
| |
Since mbedTLS 3.1.0, mbedtls_ssl_setup() fails if the provided
config struct is not valid.
mbedtls_ssl_config_defaults() needs to be called before the config
struct is passed to mbedtls_ssl_setup().
Closes #8238
|
|
|
|
| |
Closes #8244
|
|
|
|
|
|
| |
Follow-up to 8fbd6feddfa587cfd3
Closes #8245
|
|
|
|
|
|
|
|
|
| |
... by instead using the struct version of the typedef'ed pointer. To
fix build errors when both Schannel and OpenSSL are enabled.
Fixes #8240
Reported-by: Jan Ehrhardt
Closes #8246
|
| |
|
|
|
|
|
|
| |
Follow-up to 764e4f066d5
Closes #8242
|
|
|
|
|
|
|
|
|
|
|
| |
... after the initial checks for .curlrc and if XDG_CONFIG_HOME is not
set, use $HOME and $CURL_HOME to check if ~/.config/curlrc is present.
Add test 436 to verify
Reported-by: Sandro Jaeckel
Fixes #8208
Closes #8213
|
|
|
|
| |
... and make sure to mkdir them all
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|