summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* test1198/9: add two mqtt publish tests without payload lengthsbagder/mqtt-testsDaniel Stenberg2020-12-173-1/+110
|
* TODO: Prevent terminal injection when writing to terminalDaniel Stenberg2020-12-161-0/+10
| | | | Closes #6150
* Revert "CI/github: work-around for brew breakage on macOS"Daniel Stenberg2020-12-161-12/+6
| | | | | | | | This reverts commit 4cbb17a2cbbbe6337142d39479e21c3990b9c22f. ... as the work-around now causes failures. Closes #6332
* examples: remove superfluous asterisk usesDaniel Stenberg2020-12-163-6/+6
| | | | ... for function pointers. Breaks in ancient compilers.
* RELEASE-NOTES: syncedDaniel Stenberg2020-12-162-10/+41
|
* test1272: fix line endingDaniel Stenberg2020-12-151-1/+1
| | | | Follow-up to f24784f9143
* URL-SYNTAX: add gophers detailsDaniel Stenberg2020-12-151-7/+8
|
* test1272: test gophersDaniel Stenberg2020-12-152-1/+41
|
* runtests: add support for gophers, gopher over TLSDaniel Stenberg2020-12-153-11/+53
|
* gopher: Implement secure gopher protocol.parazyd2020-12-155-0/+62
| | | | | | | | | | | | | | | | | | This commit introduces a "gophers" handler inside the gopher protocol if USE_SSL is defined. This protocol is no different than the usual gopher prococol, with the added TLS encapsulation upon connecting. The protocol has been adopted in the gopher community, and many people have enabled TLS in their gopher daemons like geomyidae(8), and clients, like clic(1) and hurl(1). I have not implemented test units for this protocol because my knowledge of Perl is sub-par. However, for someone more knowledgeable it might be fairly trivial, because the same test that tests the plain gopher protocol can be used for "gophers" just by adding a TLS listener. Signed-off-by: parazyd <parazyd@dyne.org> Closes #6208
* TODO: Package curl for Windows in a signed installerDaniel Stenberg2020-12-151-0/+5
| | | | Closes #5424
* mqtt: deal with 0 byte reads correctlyDaniel Stenberg2020-12-151-2/+2
| | | | | | | OSS-Fuzz found it Bug: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28676 Closes #6327
* BUG-BOUNTY: minor language updateDaniel Stenberg2020-12-151-7/+3
| | | | | | | ... and remove the wording about entries from before 2019 as the "within 12 months" is still there and covers that. Closes #6318
* tooĺ_writeout: fix the -w time output unitsDaniel Stenberg2020-12-151-7/+15
| | | | | | | | | Fix regression from commit fc813f80e1bcac (#6248) that changed the unit to microseconds instead of seconds with fractions Reported-by: 不确定 Fixes #6321 Closes #6322
* quiche: remove fprintf() leftoverDaniel Stenberg2020-12-141-1/+0
|
* KNOWN_BUGS: SHA-256 digest not supported in Windows SSPI buildsJay Satiro2020-12-141-0/+12
| | | | Closes https://github.com/curl/curl/issues/6302
* digest_sspi: Show InitializeSecurityContext errors in verbose modeJay Satiro2020-12-141-0/+11
| | | | | | | | | | | | | | | | | | | | | The error is shown with infof rather than failf so that the user will see the extended error message information only in verbose mode, and will still see the standard CURLE_AUTH_ERROR message. For example: --- * schannel: InitializeSecurityContext failed: SEC_E_QOP_NOT_SUPPORTED (0x8009030A) - The per-message Quality of Protection is not supported by the security package * multi_done * Connection #1 to host 127.0.0.1 left intact curl: (94) An authentication function returned an error --- Ref: https://github.com/curl/curl/issues/6302 Closes https://github.com/curl/curl/pull/6315
* URL-SYNTAX: add default port numbers and IDNA detailsDaniel Stenberg2020-12-131-0/+15
| | | | Closes #6316
* URL-SYNTAX: mention how FILE:// access can access network on windowsDaniel Stenberg2020-12-131-3/+10
| | | | Closes #6314
* URL-SYNTAX: Document default SMTP port 25Jay Satiro2020-12-121-0/+2
| | | | | | | Note that ports 25 and 587 are common ports for smtp, the former being the default. Closes https://github.com/curl/curl/pull/6310
* CURLOPT_URL.3: remove scheme specific detailsDaniel Stenberg2020-12-121-230/+0
| | | | | | ... that are now found in URL-SYNTAX.md Closes #6307
* docs: Fix some typosDan Fandrich2020-12-127-17/+18
| | | | [skip ci]
* URL-SYNTAX: mention all supported schemesDaniel Stenberg2020-12-121-0/+12
| | | | Closes #6311
* URL-SYNTAX.md: minor language improvementsDouglas R. Reno2020-12-121-7/+7
| | | | Closes #6308
* docs/URL-SYNTAX: the URL syntax curl accepts and works withDaniel Stenberg2020-12-112-0/+317
| | | | Closes #6285
* docs: enable syntax highlighting in several docs files0xflotus2020-12-117-166/+262
| | | | | | ... for better readability Closes #6286
* test1564/1565: require the 'wakeup' feature to runDaniel Stenberg2020-12-112-0/+6
| | | | | | Fixes #6299 Fixes #6300 Closes #6301
* runtests: add 'wakeup' as a featureDaniel Stenberg2020-12-112-0/+2
|
* tests/server/disabled: add "wakeup"Daniel Stenberg2020-12-113-0/+12
| | | | | To allow the test suite to know if wakeup support is disabled in the build.
* lib1564/5: verify that curl_multi_wakeup returns OKDaniel Stenberg2020-12-112-3/+3
|
* tests: make --libcurl tests only test FTP options if ftp enabledDaniel Stenberg2020-12-116-0/+10
| | | | | | | | Adjust six --libcurl tests to only check the FTP option if FTP is actually present in the build. Fixes #6303 Closes #6305
* runtests.pl: fix "uninitialized value" warningDaniel Stenberg2020-12-111-1/+1
| | | | follow-up to e12825c642a88774
* runtests: add support for %if [feature] conditionsDaniel Stenberg2020-12-112-9/+101
| | | | | | | | | ... to make tests run differently or expect different results depending on what features that are present or not in curl. Bonus: initial minor 'Hyper' awareness but nothing is using that yet Closes #6304
* OS400: update ccsidcurl.cJon Rumsey2020-12-101-2/+2
| | | | | | | | Add 'struct' to cast and declaration of cfcdata to fix compilation error. Fixes #6292 Closes #6297
* ngtcp2: make it build it current master againDaniel Stenberg2020-12-102-4/+4
| | | | Closes #6296
* connect: defer port selection until connect() timeCristian Rodríguez2020-12-101-1/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | If supported, defer port selection until connect() time if --interface is given and source port is 0. Reproducer: * start fast webserver on port 80 * starve system of ephemeral ports $ sysctl net.ipv4.ip_local_port_range="60990 60999" * start a curl/libcurl "crawler" $curl --keepalive --parallel --parallel-immediate --head --interface 127.0.0.2 "http://127.0.0.[1-254]/file[001-002].txt" current result: (possible some successful data) curl: (45) bind failed with errno 98: Address already in use result after patch: (complete success or few connections failing, higlhy depending on load) Fail only when all the possible 4-tuple combinations are exhausted, which is impossible to do when port is selected at bind() time becuse the kernel does not know if socket will be listen()'ed on or connect'ed yet. Closes #6295
* connect: zero variable on stack to silence valgrind complaintHans-Christian Noren Egtvedt2020-12-091-0/+1
| | | | | | | | | | | | Valgrind will complain that ssrem buffer usage if not explicit initialized, hence initialize it to zero. This completes the change intially started in commit 2c0d7212151 ('ftp: retry getpeername for FTP with TCP_FASTOPEN') where the ssloc buffer has a similar memset to zero. Signed-off-by: Hans-Christian Noren Egtvedt <hegtvedt@cisco.com> Closes #6289
* RELEASE-NOTES: syncedDaniel Stenberg2020-12-092-227/+9
| | | | start over on the next release cycle
* RELEASE-NOTES: syncedcurl-7_74_0Daniel Stenberg2020-12-092-9/+49
| | | | for 7.74.0
* urldata: restore comment on ssl_connect_data.useJacob Hoffman-Andrews2020-12-071-3/+3
| | | | | | | This comment was originally on the `use` field, but was separated from its field in 62a2534. Closes https://github.com/curl/curl/pull/6287
* VERSIONS: refreshedDaniel Stenberg2020-12-071-7/+6
| | | | | We always use the patch number these days: all releases are "major.minor.patch"
* cmake: don't use reserved target name 'test'Jakub Zakrzewski2020-12-071-1/+0
| | | | | | | CMake up to 3.10 always reserves this name Fixes #6257 Closes #6258
* openssl: make the OCSP verification verify the certificate idDaniel Stenberg2020-12-071-29/+54
| | | | | | | | CVE-2020-8286 Reported by anonymous Bug: https://curl.se/docs/CVE-2020-8286.html
* ftp: make wc_statemach loop instead of recurseDaniel Stenberg2020-12-071-100/+102
| | | | | | | | CVE-2020-8285 Fixes #6255 Bug: https://curl.se/docs/CVE-2020-8285.html Reported-by: xnynx on github
* ftp: CURLOPT_FTP_SKIP_PASV_IP by defaultDaniel Stenberg2020-12-0714-3/+18
| | | | | | | | | | | | The command line tool also independently sets --ftp-skip-pasv-ip by default. Ten test cases updated to adapt the modified --libcurl output. Bug: https://curl.se/docs/CVE-2020-8284.html CVE-2020-8284 Reported-by: Varnavas Papaioannou
* urlapi: don't accept blank port number field without schemeDaniel Stenberg2020-12-074-18/+39
| | | | | | | | | | ... as it makes the URL parser accept "very-long-hostname://" as a valid host name and we don't want that. The parser now only accepts a blank (no digits) after the colon if the URL starts with a scheme. Reported-by: d4d on hackerone Closes #6283
* Revert "multi: implement wait using winsock events"Daniel Stenberg2020-12-062-153/+3
| | | | | | | | | | | This reverts commit d2a7d7c185f98df8f3e585e5620cbc0482e45fac. This commit also reverts the subsequent follow-ups to that commit, which were all done within windows #ifdefs that are removed in this change. Marc helped me verify this. Fixes #6146 Closes #6281
* ftp: retry getpeername for FTP with TCP_FASTOPENKlaus Crusius2020-12-063-45/+70
| | | | | | | | | | | | In the case of TFO, the remote host name is not resolved at the connetion time. For FTP that has lead to missing hostname for the secondary connection. Therefore the name resolution is done at the time, when FTP requires it. Fixes #6252 Closes #6265 Closes #6282
* scripts/completion.pl: parse all optsThomas Danielsson2020-12-051-1/+1
| | | | | | | For tab-completion it may be preferable to include all the available options. Closes #6280
* RELEASE-NOTES: syncedDaniel Stenberg2020-12-041-6/+25
|
View Lorry Controller Status