| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Using the new verify/socks details
|
|
|
|
|
|
|
| |
If used, this data is compared with the data in log/socksd-request.log
which the socksd server logs.
Added to FILEFORMAT.md
|
|
|
|
| |
To allow the test suite to verify that the right data arrived
|
|
|
|
|
|
|
|
|
| |
When not resolving the address locallly (known as socks5h).
Add test 719 and 720 to verify.
Reported-by: Peter Piekarski
Fixes #8216
|
|
|
|
|
|
| |
In lib530, lib540 and lib582
Closes #8218
|
|
|
|
|
|
|
|
|
| |
Follow-up to 21248e052d
Disabling "assignment within conditional expression" for MSVC needs to
be done before the function starts, for it to take effect.
Closes #8218
|
|
|
|
|
|
|
|
| |
More output instructions than URLs is likely a user error.
Add test case 371 to verify
Closes #8210
|
|
|
|
| |
Closes #8215
|
|
|
|
|
|
| |
Now running as github workflows
Closes #8215
|
|
|
|
| |
Closes #8215
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
"As a last resort, you can access the field foo of a structure bar by
writing bar.MBEDTLS_PRIVATE(foo). Note that you do so at your own risk,
since such code is likely to break in a future minor version of Mbed
TLS." -
https://github.com/ARMmbed/mbedtls/blob/f2d1199edc5834df4297f247f213e614f7782d1d/docs/3.0-migration-guide.md
That future minor version is v3.1.0. I set the >= to == for the version
checks because v3.1.0 is a release, and I am not sure when the private
designation was reverted after v3.0.0.
Closes #8214
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
-- curl version=[7.81.0-DEV]
CMake Warning (dev) at /usr/share/cmake-3.22.1/Modules/FindPackageHandleStandardArgs.cmake:438 (message):
The package name passed to `find_package_handle_standard_args` (MBEDTLS)
does not match the name of the calling package (MbedTLS). This can lead to
problems in calling code that expects `find_package` result variables
(e.g., `_FOUND`) to follow a certain pattern.
Call Stack (most recent call first):
deps/curl/CMake/FindMbedTLS.cmake:31 (find_package_handle_standard_args)
deps/curl/CMakeLists.txt:473 (find_package)
This warning is for project developers. Use -Wno-dev to suppress it.
Closes #8207
|
|
|
|
|
|
| |
Extended test 1560 to verify
Closes #8206
|
|
|
|
| |
Closes #8212
|
|
|
|
|
| |
Reported-by: gclinch on github
Closes #8112
|
| |
|
|
|
|
| |
Follow-up to 1914465cf180d32b3d
|
|
|
|
|
|
|
|
| |
As it isn't used.
Reported-by: Melroy van den Berg
Fixes #8200
Closes #8201
|
|
|
|
| |
Follow-up to 8fbd6feddfa5 to make it build more universally
|
|
|
|
|
|
|
|
| |
To hush compiler warnings we don't care for: error: address of function
'X' will always evaluate to 'true'
Fixes #8197
Closes #8198
|
|
|
|
|
|
|
|
|
|
| |
... and double-check in the OpenSSL shutdown that the socket is actually
still there before it is used.
Fixes #8193
Closes #8195
Reported-by: Leszek Kubik
|
|
|
|
| |
Closes #8178
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Make ngtcp2+quictls correctly acknowledge `CURLOPT_SSL_VERIFYPEER` and
`CURLOPT_SSL_VERIFYHOST`.
The name check now uses a function from lib/vtls/openssl.c which will
need attention for when TLS is not done by OpenSSL or is disabled while
QUIC is enabled.
Possibly the servercert() function in openssl.c should be adjusted to be
able to use for both regular TLS and QUIC.
Ref: #8173
Closes #8178
|
| |
|
|
|
|
| |
Closes #8196
|
|
|
|
|
| |
Fixes #8184
Closes #8189
|
|
|
|
|
| |
Co-authored-by: Jay Satiro
Closes #8180
|
| |
|
|
|
|
| |
Closes #8183
|
|
|
|
| |
Closes #8182
|
|
|
|
| |
Closes #8181
|
|
|
|
| |
Closes #8185
|
|
|
|
|
|
| |
Assisted-by: Matt Holt
Closes #8177
|
|
|
|
| |
Since 4a4b63daaa0
|
| |
|
|
|
|
|
|
|
| |
The httpcode < 100 check was also triggered when none of the fields were
parsed, thus making the if(!nc) block unreachable.
Closes #8171
|
| |
|
|
|
|
|
|
| |
Missed three occurrences.
Follow-up to 7a92f86
|
|
|
|
|
|
|
|
|
| |
The string is set by the user and needs to remain intact for proper
connection reuse etc.
Reported-by: Eric Musser
Fixes #8160
Closes #8161
|
|
|
|
|
|
| |
Consistency is king. Following the lead in everything curl.
Closes #8159
|
|
|
|
| |
Closes #8162
|
|
|
|
| |
Closes #8158
|
| |
|
|
|
|
|
|
| |
It feels a bit unfortunate to litter an ugly tag for this functionality,
but if we get link scans of all markdown files, this might be worth the
price.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Prior to this change OpenSSL_version was only detected in configure
builds. For other builds the old version parsing code was used which
would result in incorrect versioning for OpenSSL 3:
Before:
curl 7.80.0 (i386-pc-win32) libcurl/7.80.0 OpenSSL/3.0.0a zlib/1.2.11
WinIDN libssh2/1.9.0
After:
curl 7.80.0 (i386-pc-win32) libcurl/7.80.0 OpenSSL/3.0.1 zlib/1.2.11
WinIDN libssh2/1.9.0
Reported-by: lllaffer@users.noreply.github.com
Fixes https://github.com/curl/curl/issues/8154
Closes https://github.com/curl/curl/pull/8155
|
|
|
|
| |
Closes #8156
|
| |
|
|
|
|
|
|
|
| |
The new CURLOPT_PREREQFUNCTION callback is another way to sanitize
addresses.
Using the curl_url API is a way to mitigate against attacks relying on
URL parsing differences.
|
| |
|