summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* RELEASE-NOTES: syncedcurl-7_85_0Daniel Stenberg2022-08-311-21/+42
| | | | curl 7.85.0 release
* THANKS: add contributors from the 7.85.0 releaseDaniel Stenberg2022-08-311-0/+39
|
* getparam: correctly clean argsDaniel Stenberg2022-08-313-9/+9
| | | | | | | | | Follow-up to bf7e887b2442783ab52 The previous fix for #9128 was incomplete and caused #9397. Fixes #9397 Closes #9399
* zuul: remove the clang-tidy jobDaniel Stenberg2022-08-302-25/+0
| | | | | | | | Turns out we don't see the warnings, but the warnings right now are plain ridiculous and unhelpful so we can just as well just kill this job. Closes #9390
* cmake: set feature PSL if presentDaniel Stenberg2022-08-301-0/+1
| | | | | | ... make test 1014 pass when libpsl is used. Closes #9391
* lib530: simplify realloc failure exit pathDaniel Stenberg2022-08-301-7/+4
| | | | | | To make code analyzers happier Closes #9392
* tests: add tests for netrc login/password combinationsOrgad Shaneh2022-08-295-1/+211
| | | | | | | | | | Covers the following PRs: - #9066 - #9247 - #9248 Closes #9256
* url: really use the user provided in the url when netrc entry existsOrgad Shaneh2022-08-291-18/+14
| | | | | | | | | | | | | | | If the user is specified as part of the URL, and the same user exists in .netrc, Authorization header was not sent at all. The user and password fields were assigned in conn->user and password but the user was not assigned to data->state.aptr, which is the field that is used in output_auth_headers and friends. Fix by assigning the user also to aptr. Amends commit d1237ac906ae7e3cd7a22c3a2d3a135a97edfbf5. Fixes #9243
* netrc: Use the password from lines without loginOrgad Shaneh2022-08-291-2/+2
| | | | | | | | | | | | | | | If netrc entry has password with empty login, use it for any username. Example: .netrc: machine example.com password 123456 curl -vn http://user@example.com/ Fix it by initializing state_our_login to TRUE, and reset it only when finding an entry with the same host and different login. Closes #9248
* url: treat missing usernames in netrc as emptyJay Satiro2022-08-291-0/+6
| | | | | | | | | | | | | | | - If, after parsing netrc, there is a password with no username then set a blank username. This used to be the case prior to 7d600ad (precedes 7.82). Note parseurlandfillconn already does the same thing for URLs. Reported-by: Raivis <standsed@users.noreply.github.com> Testing-by: Domen Kožar Fixes https://github.com/curl/curl/issues/8653 Closes #9334 Closes #9066
* test8: verify that "ctrl-byte cookies" are ignoredDaniel Stenberg2022-08-291-1/+31
|
* cookie: reject cookies with "control bytes"Daniel Stenberg2022-08-291-0/+29
| | | | | | | | | | | | Rejects 0x01 - 0x1f (except 0x09) plus 0x7f Reported-by: Axel Chong Bug: https://curl.se/docs/CVE-2022-35252.html CVE-2022-35252 Closes #9381
* libssh: ignore deprecation warningsDaniel Stenberg2022-08-291-0/+7
| | | | | | | | | | | | libssh 0.10.0 marks all SCP functions as "deprecated" which causes compiler warnings and errors in our CI jobs and elsewhere. Ignore deprecation warnings if 0.10.0 or later is found in the build. If they actually remove the functions at a later point, then someone can deal with that pain and functionality break then. Fixes #9382 Closes #9383
* Revert "schannel: when importing PFX, disable key persistence"Daniel Stenberg2022-08-291-11/+1
| | | | | | | This reverts commit 70d010d285315e5f1cad6bdb4953e167b069b692. Due to further reports in #9300 that indicate this commit might introduce problems.
* multi: use larger dns hash table for multi interfaceDaniel Stenberg2022-08-297-11/+18
| | | | | | | | | | | | Have curl_multi_init() use a much larger DNS hash table than used for the easy interface to scale and perform better when used with _many_ host names. curl_share_init() sets an in-between size. Inspired-by: Ivan Tsybulin See #9340 Closes #9376
* CI/runtests.pl: add param for dedicated curl to talk to APIsMarc Hoersken2022-08-283-12/+24
| | | | | | | | This should make it possible to also report test failures if our freshly build curl binary is not fully functional. Reviewed-by: Daniel Stenberg Closes #9360
* openssl: add cert path in error messageJacob Tolar2022-08-271-2/+4
| | | | Closes #9349
* cert.d: clarify that escape character works for file pathsJacob Tolar2022-08-271-7/+11
| | | | Closes #9349
* gha: move over ngtcp2-gnutls CI job from zuulDaniel Stenberg2022-08-272-36/+88
| | | | Closes #9331
* cmake: add detection of threadsafe featureMarc Hoersken2022-08-263-0/+70
| | | | | | | | | | Avoids failing test 1014 by replicating configure checks for HAVE_ATOMIC and _WIN32_WINNT with custom CMake tests. Reviewed-by: Marcel Raad Follow up to #8680 Closes #9312
* RELEASE-NOTES: syncedDaniel Stenberg2022-08-261-13/+32
|
* CI/azure: align torture shallowness with GHAMarc Hoersken2022-08-261-1/+1
| | | | | | | | There 25 is used with FTP tests skipped, and 20 for FTP tests. This should make torture tests stay within the 60min timeout. Reviewed-by: Daniel Stenberg Closes #9371
* multi_wait: fix and improve Curl_poll error handling on WindowsMarc Hoersken2022-08-261-5/+6
| | | | | | | | | | | | | | First check for errors and return CURLM_UNRECOVERABLE_POLL before moving forward and waiting on socket readiness events. Reviewed-by: Jay Satiro Reviewed-by: Marcel Raad Reported-by: Daniel Stenberg Ref: #9361 Follow up to #8961 Closes #9372
* multi_wait: fix skipping to populate revents for extra_fdsMarc Hoersken2022-08-251-3/+6
| | | | | | | | | | | On Windows revents was not populated for extra_fds if multi_wait had to wait due to the Curl_poll pre-check not signalling any readiness. This commit fixes that. Reviewed-by: Marcel Raad Reviewed-by: Jay Satiro Closes #9361
* CI/appveyor: disable TLS in msys2-native autotools buildsMarc Hoersken2022-08-251-3/+3
| | | | | | | | | | Schannel cannot be used from msys2-native Linux-emulated builds. Reviewed-by: Marcel Raad Reviewed-by: Daniel Stenberg Follow up to #9367 Closes #9370
* tests: fix http2 tests to use CRLF headersJay Satiro2022-08-254-44/+44
| | | | | | | | | | | | Prior to this change some tests that rely on nghttpx proxy did not use CRLF headers everywhere. A recent change in nghttp2, which updated its version of llhttp (HTTP parser), requires curl's HTTP/1.1 test server to use CRLF headers. Ref: https://github.com/nghttp2/nghttp2/commit/9d389e8 Fixes https://github.com/curl/curl/issues/9364 Closes https://github.com/curl/curl/pull/9365
* multi: use a pipe instead of a socketpair on apple platformsrcombs2022-08-252-20/+23
| | | | | | | | | | Sockets may be shut down by the kernel when the app is moved to the background, but pipes are not. Removed from KNOWN_BUGS Fixes #6132 Closes #9368
* libssh2: provide symlink name in SFTP dir listingSomnath Kundu2022-08-251-1/+2
| | | | | | | When reading the symbolic link name for a file, we need to add the file name to base path name. Closes #9369
* configure: if asked to use TLS, fail if no TLS lib was detectedDaniel Stenberg2022-08-251-3/+8
| | | | | | | | Previously the configure script would just warn about this fact and continue with TLS disabled build which is not always helpful. TLS should be explicitly disabled if that is what the user wants. Closes #9367
* schannel: when importing PFX, disable key persistenceDustin Howett2022-08-251-1/+11
| | | | | | | | | | | | | | By default, the PFXImportCertStore API persists the key in the user's key store (as though the certificate was being imported for permanent, ongoing use.) The documentation specifies that keys that are not to be persisted should be imported with the flag `PKCS12_NO_PERSIST_KEY`. NOTE: this flag is only supported on versions of Windows newer than XP and Server 2003. Fixes #9300 Closes #9363
* unit1303: four tests should have TRUE for 'connecting'Daniel Stenberg2022-08-231-4/+4
| | | | | | | | | To match the comments. Reported-by: Wu Zheng See #9355 Closes #9356
* CURLOPT_BUFFERSIZE.3: add upload buffersize to see alsoDaniel Stenberg2022-08-231-0/+1
| | | | Closes #9354
* HTTP3.md: add missing autoreconf command for building with wolfsslFabian Fischer2022-08-231-0/+1
| | | | Closes #9353
* RELEASE-NOTES: syncedDaniel Stenberg2022-08-231-5/+22
|
* multi: have curl_multi_remove_handle close CONNECT_ONLY transferDaniel Stenberg2022-08-231-0/+18
| | | | | | | | | | | | Ẃhen it has been used in the multi interface, it is otherwise left in the connection cache, can't be reused and nothing will close them since the easy handle loses the association with the multi handle and thus the connection cache - until the multi handle is closed or it gets pruned because the cache is full. Reported-by: Dominik Thalhammer Fixes #9335 Closes #9342
* docs/cmdline-opts: remove \& escapes from all .d filesDaniel Stenberg2022-08-2318-22/+22
| | | | gen.pl escapes them itself now
* docs/cmdline-opts/gen.pl: encode leading single and double quotesDaniel Stenberg2022-08-231-1/+3
| | | | | | | | As "(aq" and "(dq" to prevent them from implying a meaning in the nroff output. This removes the need for using \& escapes in the .d files' description parts. Closes #9352
* tests/server/sockfilt.c: avoid race condition without a mutexMarc Hoersken2022-08-231-124/+69
| | | | | | | | | Avoid loosing any triggered handles by first aborting and joining the waiting threads before evaluating the individual signal state. This removes the race condition and therefore need for a mutex. Closes #9023
* url: output the maximum when rejecting a urlEmil Engler2022-08-221-2/+5
| | | | | | | | This commit changes the failf message to output the maximum length, when curl refuses to process a URL because it is too long. See: #9317 Closes: #9327
* configure: fix broken m4 syntax in TLS optionsChris Paulson-Ellis2022-08-221-20/+28
| | | | | | | | | | | | | | | Commit b589696f added lines to some shell within AC_ARG_WITH macros, but inadvertently failed to move the final closing ). Quote the script section using braces. So, if these problems have been around for a while, how did I find them? Only because I did a configure including these options: $ ./configure --with-openssl --without-rustls SSL: enabled (OpenSSL) Closes #9344
* tests/data/CMakeLists: remove making the 'show' makefile targetDaniel Stenberg2022-08-181-4/+0
| | | | | | It is not used by runtests since 3c0f462 Closes #9333
* tests/data/Makefile: remove 'filecheck' targetDaniel Stenberg2022-08-181-18/+0
| | | | | | No practical use anymore since 3c0f4622cdfd6 Closes #9332
* libssh2: make atime/mtime date overflow return errorDaniel Stenberg2022-08-181-28/+17
| | | | Closes #9328
* libssh: make atime/mtime date overflow return errorDaniel Stenberg2022-08-181-28/+15
| | | | Closes #9328
* examples/curlx.c: removeDaniel Stenberg2022-08-184-645/+0
| | | | | | | This example is a bit convoluted to use as an example, combined with the special license for it makes it unsuitable. Closes #9330
* curl.h: include <sys/select.h> on SunOSTobias Nygren2022-08-171-1/+2
| | | | | | | | It is needed for fd_set to be visible to downstream consumers that use <curl/multi.h>. Header is known to exist at least as far back as Solaris 2.6. Closes #9329
* DEPRECATE.md: push the NSS deprecation date forward one year to 2023Daniel Stenberg2022-08-171-1/+1
| | | | URL: https://curl.se/mail/lib-2022-08/0016.html
* libssh2: setting atime or mtime >32bit on 4-bytes-long systemsDaniel Stenberg2022-08-161-4/+18
| | | | | | | | | | | Since the libssh2 API uses 'long' to store the timestamp, it cannot transfer >32bit times on Windows and 32bit architecture builds. Avoid nasty surprises by instead not setting such time. Spotted by Coverity Closes #9325
* libssh: setting atime or mtime > 32bit is now just skippedDaniel Stenberg2022-08-161-4/+18
| | | | | | | | | The libssh API used caps the time to an unsigned 32bit variable. Avoid nasty surprises by instead not setting such time. Spotted by Coverity. Closes #9324
* KNOWN_BUGS: Windows Unicode builds use homedir in current localeJay Satiro2022-08-161-0/+11
| | | | | | | | | Bug: https://github.com/curl/curl/pull/7252 Reported-by: dEajL3kA@users.noreply.github.com Ref: https://github.com/curl/curl/pull/7281 Closes https://github.com/curl/curl/pull/9305
View Lorry Controller Status