summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* vtls: set conn->data when closing TLSbagder/vtls-conn-data-TLS-killDaniel Stenberg2018-07-202-1/+4
| | | | | | | | Follow-up to 1b76c38904f0. The VTLS backends that close down the TLS layer for a connection still needs a Curl_easy handle for the session_id cache etc. Fixes #2764
* http2: several cleanupsDaniel Stenberg2018-07-207-70/+43
| | | | | | | | - separate easy handle from connections better - added asserts on a number of places - added sanity check of pipelines for debug builds Closes #2751
* smb_getsock: always wait for write socket tooDaniel Stenberg2018-07-201-7/+1
| | | | | | | | | | | ... the protocol is doing read/write a lot, so it needs to write often even when downloading. A more proper fix could check for eactly when it wants to write and only ask for it then. Without this fix, an SMB download could easily get stuck when the event-driven API was used. Closes #2768
* test1143: disable MSYS2's POSIX path conversionMarcel Raad2018-07-201-0/+5
| | | | | | | | | By default, the MSYS2 bash interprets http:/%HOSTIP:%HTTPPORT/want/1143 as a POSIX file list and converts it to a Windows file list. Disable this with MSYS2_ARG_CONV_EXCL for the test to pass. Ref https://github.com/msys2/msys2/wiki/Porting#filesystem-namespaces Closes https://github.com/curl/curl/pull/2765
* RELEASE-NOTES: syncDaniel Stenberg2018-07-182-204/+33
| | | | ... and work toward 7.61.1
* CMake: Update scripts to use consistent styleRuslan Baratov2018-07-1714-448/+405
| | | | | Closes #2727 Reviewed-by: Sergei Nikulov
* header output: switch off all styles, not just unboldDaniel Stenberg2018-07-171-1/+4
| | | | | | | | ... the "unbold" sequence doesn't work on the mac Terminal. Reported-by: Zero King Fixes #2736 Closes #2738
* darwinssl: add support for ALPN negotiationRodger Combs2018-07-142-8/+71
|
* test1422: add required file featureMarcel Raad2018-07-141-0/+1
| | | | | | | | | | | curl configured with --enable-debug --disable-file currently complains on test1422: Info: Protocol "file" not supported or disabled in libcurl Make test1422 dependend on enabled FILE protocol to fix this. Fixes https://github.com/curl/curl/issues/2741 Closes https://github.com/curl/curl/pull/2742
* content_encoding: accept up to 4 unknown trailer bytes after raw deflate dataPatrick Monnerat2018-07-121-11/+15
| | | | | | | | | Some servers issue raw deflate data that may be followed by an undocumented trailer. This commit makes curl tolerate such a trailer of up to 4 bytes before considering the data is in error. Reported-by: clbr on github Fixes #2719
* smb: fix memory-leak in URL parse error pathDaniel Stenberg2018-07-121-8/+3
| | | | | | Detected by OSS-Fuzz Bug: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9369 Closes #2740
* schannel: enable CALG_TLS1PRF for w32api >= 5.1Marcel Raad2018-07-121-2/+6
| | | | | The definition of CALG_TLS1PRF has been fixed in the 5.1 branch: https://osdn.net/projects/mingw/scm/git/mingw-org-wsl/commits/73aedcc0f2e6ba370de0d86ab878ad76a0dda7b5
* docs/SECURITY-PROCESS: mention bounty, drop pre-notifyDaniel Stenberg2018-07-121-12/+13
| | | | | | + The hackerone bounty and its process - We don't and can't handle pre-notification
* multi: always do the COMPLETED procedure/stateDaniel Stenberg2018-07-112-28/+40
| | | | | | | | | | | It was previously erroneously skipped in some situations. libtest/libntlmconnect.c wrongly depended on wrong behavior (that it would get a zero timeout) when no handles are "running" in a multi handle. That behavior is no longer present with this fix. Now libcurl will always return a -1 timeout when all handles are completed. Closes #2733
* Curl_getoff_all_pipelines: improved for multiplexedDaniel Stenberg2018-07-111-9/+19
| | | | | On multiplexed connections, transfers can be removed from anywhere not just at the head as for pipelines.
* ares: check for NULL in completed-callbackDaniel Stenberg2018-07-111-8/+10
|
* conn: remove the boolean 'inuse' fieldDaniel Stenberg2018-07-117-84/+74
| | | | ... as the usage needs to be counted.
* openssl: assume engine support in 1.0.0 or laterPaul Howarth2018-07-111-1/+1
| | | | | | | | | | | | | | | | | Commit 38203f1585da changed engine detection to be version-based, with a baseline of openssl 1.0.1. This does in fact break builds with openssl 1.0.0, which has engine support - the configure script detects that ENGINE_cleanup() is available - but <openssl/engine.h> doesn't get included to declare it. According to upstream documentation, engine support was added to mainstream openssl builds as of version 0.9.7: https://github.com/openssl/openssl/blob/master/README.ENGINE This commit drops the version test down to 1.0.0 as version 1.0.0d is the oldest version I have to test with. Closes #2732
* schannel: fix MinGW compile breakMarcel Raad2018-07-111-0/+4
| | | | | | | | | | | | Original MinGW's w32api has a sytax error in its definition of CALG_TLS1PRF [0]. Don't use original MinGW w32api's CALG_TLS1PRF until this bug [1] is fixed. [0] https://osdn.net/projects/mingw/scm/git/mingw-org-wsl/blobs/d1d4a17e51a2b78e252ef0147d483267d56c90cc/w32api/include/wincrypt.h [1] https://osdn.net/projects/mingw/ticket/38391 Fixes https://github.com/curl/curl/pull/2721#issuecomment-403636043 Closes https://github.com/curl/curl/pull/2728
* examples/crawler.c: move #ifdef to column 0Daniel Stenberg2018-07-111-3/+3
| | | | | | | Apparently the C => HTML converter on the web site doesn't quite like it otherwise. Reported-by: Jeroen Ooms
* release: 7.61.0curl-7_61_0Daniel Stenberg2018-07-112-10/+56
|
* TODO: Configurable loading of OpenSSL configuration fileDaniel Stenberg2018-07-101-0/+12
| | | | Closes #2724
* post303.d: clarify that this is an RFC violationDaniel Stenberg2018-07-101-5/+4
| | | | | | | | ... and not the other way around, which this previously said. Reported-by: Vasiliy Faronov Fixes #2723 Closes #2726
* CMake: remove redundant and old end-of-block syntaxRuslan Baratov2018-07-094-102/+96
| | | | | Reviewed-by: Jakub Zakrzewski Closes #2715
* lib/curl_setup.h: remove unicode characterJay Satiro2018-07-091-1/+1
| | | | | | Follow-up to 82ce416. Ref: https://github.com/curl/curl/commit/8272ec5#commitcomment-29646818
* lib/curl_setup.h: remove unicode bom from 8272ec50f02Daniel Stenberg2018-07-091-1/+1
|
* schannel: fix -Wsign-compare warningMarcel Raad2018-07-091-1/+1
| | | | | | | | | | MinGW warns: /lib/vtls/schannel.c:219:64: warning: signed and unsigned type in conditional expression [-Wsign-compare] Fix this by casting the ptrdiff_t to size_t as we know it's positive. Closes https://github.com/curl/curl/pull/2721
* schannel: workaround for wrong function signature in w32apiMarcel Raad2018-07-091-1/+2
| | | | | | | Original MinGW's w32api has CryptHashData's second parameter as BYTE * instead of const BYTE *. Closes https://github.com/curl/curl/pull/2721
* schannel: make more cipher options conditionalMarcel Raad2018-07-091-0/+28
| | | | | | They are not defined in the original MinGW's <wincrypt.h>. Closes https://github.com/curl/curl/pull/2721
* curl_setup: include <winerror.h> before <windows.h>Marcel Raad2018-07-091-1/+2
| | | | | | | | Otherwise, only part of it gets pulled in through <windows.h> on original MinGW. Fixes https://github.com/curl/curl/issues/2361 Closes https://github.com/curl/curl/pull/2721
* examples: fix -Wformat warningsMarcel Raad2018-07-096-13/+13
| | | | | | | | | When size_t is not a typedef for unsigned long (as usually the case on Windows), GCC emits -Wformat warnings when using lu and lx format specifiers with size_t. Silence them with explicit casts to unsigned long. Closes https://github.com/curl/curl/pull/2721
* smtp: use the upload buffer size for scratch buffer mallocDaniel Stenberg2018-07-091-1/+2
| | | | | | | | ... not the read buffer size, as that can be set smaller and thus cause a buffer overflow! CVE-2018-0500 Reported-by: Peter Wu Bug: https://curl.haxx.se/docs/adv_2018-70a2.html
* scripts: include _curl as part of CLEANFILESDave Reisner2018-07-081-0/+2
| | | | Closes #2718
* darwinssl: allow High Sierra users to build the code using GCCNick Zitzmann2018-07-061-8/+9
| | | | | | | | ...but GCC users lose out on TLS 1.3 support, since we can't weak-link enumeration constants. Fixes #2656 Closes #2703
* CMake: Remove unused 'output_var' from 'collect_true'Ruslan Baratov2018-07-062-8/+7
| | | | | Variable 'output_var' is not used and can be removed. Function 'collect_true' renamed to 'count_true'.
* CMake: Remove unused functionsRuslan Baratov2018-07-061-30/+0
| | | | Closes #2711
* KNOWN_BUGS: Stick to same family over SOCKS proxyDaniel Stenberg2018-07-061-0/+10
|
* libssh: goto DISCONNECT state on error, not SSH_SESSION_FREEDaniel Stenberg2018-07-061-1/+1
| | | | | | | ... because otherwise not everything get closed down correctly. Fixes #2708 Closes #2712
* libssh: include line number in state change debug messagesDaniel Stenberg2018-07-061-3/+14
| | | | Closes #2713
* KNOWN_BUGS: Borland support is dropped, AIX problem is too oldDaniel Stenberg2018-07-051-14/+0
|
* example/crawler.c: simple crawler based on libxml2Jeroen Ooms2018-07-052-1/+211
| | | | Closes #2706
* RELEASE-NOTES: syncedDaniel Stenberg2018-07-051-9/+18
|
* DEPRECATE: include year when specifying dateDaniel Stenberg2018-07-021-4/+5
|
* DEPRECATE: linkifiedDaniel Stenberg2018-07-021-12/+6
|
* DEPRECATE: mention the PR that disabled axTLSDaniel Stenberg2018-07-021-2/+3
|
* docs/DEPRECATE.md: spelling and minor formattingDaniel Stenberg2018-07-021-15/+15
|
* DEPRECATE: new doc describing planned item removalsDaniel Stenberg2018-07-022-0/+78
| | | | Closes #2704
* telnet: fix clang warningsGisle Vanem2018-07-011-2/+3
| | | | | | | | telnet.c(1401,28): warning: cast from function call of type 'int' to non-matching type 'HANDLE' (aka 'void *') [-Wbad-function-cast] Fixes #2696 Closes #2700
* docs: fix missed option name markupsDaniel Stenberg2018-06-304-31/+32
|
* openssl: Remove some dead codeGaurav Malhotra2018-06-291-10/+0
| | | | Closes #2698
View Lorry Controller Status