| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
curl 7.85.0 release
|
| |
|
|
|
|
|
|
|
|
|
| |
Follow-up to bf7e887b2442783ab52
The previous fix for #9128 was incomplete and caused #9397.
Fixes #9397
Closes #9399
|
|
|
|
|
|
|
|
| |
Turns out we don't see the warnings, but the warnings right now are
plain ridiculous and unhelpful so we can just as well just kill this
job.
Closes #9390
|
|
|
|
|
|
| |
... make test 1014 pass when libpsl is used.
Closes #9391
|
|
|
|
|
|
| |
To make code analyzers happier
Closes #9392
|
|
|
|
|
|
|
|
|
|
| |
Covers the following PRs:
- #9066
- #9247
- #9248
Closes #9256
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
If the user is specified as part of the URL, and the same user exists
in .netrc, Authorization header was not sent at all.
The user and password fields were assigned in conn->user and password
but the user was not assigned to data->state.aptr, which is the field
that is used in output_auth_headers and friends.
Fix by assigning the user also to aptr.
Amends commit d1237ac906ae7e3cd7a22c3a2d3a135a97edfbf5.
Fixes #9243
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
If netrc entry has password with empty login, use it for any username.
Example:
.netrc:
machine example.com password 123456
curl -vn http://user@example.com/
Fix it by initializing state_our_login to TRUE, and reset it only when
finding an entry with the same host and different login.
Closes #9248
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- If, after parsing netrc, there is a password with no username then
set a blank username.
This used to be the case prior to 7d600ad (precedes 7.82). Note
parseurlandfillconn already does the same thing for URLs.
Reported-by: Raivis <standsed@users.noreply.github.com>
Testing-by: Domen Kožar
Fixes https://github.com/curl/curl/issues/8653
Closes #9334
Closes #9066
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Rejects 0x01 - 0x1f (except 0x09) plus 0x7f
Reported-by: Axel Chong
Bug: https://curl.se/docs/CVE-2022-35252.html
CVE-2022-35252
Closes #9381
|
|
|
|
|
|
|
|
|
|
|
|
| |
libssh 0.10.0 marks all SCP functions as "deprecated" which causes
compiler warnings and errors in our CI jobs and elsewhere. Ignore
deprecation warnings if 0.10.0 or later is found in the build.
If they actually remove the functions at a later point, then someone can
deal with that pain and functionality break then.
Fixes #9382
Closes #9383
|
|
|
|
|
|
|
| |
This reverts commit 70d010d285315e5f1cad6bdb4953e167b069b692.
Due to further reports in #9300 that indicate this commit might
introduce problems.
|
|
|
|
|
|
|
|
|
|
|
|
| |
Have curl_multi_init() use a much larger DNS hash table than used for
the easy interface to scale and perform better when used with _many_
host names.
curl_share_init() sets an in-between size.
Inspired-by: Ivan Tsybulin
See #9340
Closes #9376
|
|
|
|
|
|
|
|
| |
This should make it possible to also report test failures
if our freshly build curl binary is not fully functional.
Reviewed-by: Daniel Stenberg
Closes #9360
|
|
|
|
| |
Closes #9349
|
|
|
|
| |
Closes #9349
|
|
|
|
| |
Closes #9331
|
|
|
|
|
|
|
|
|
|
| |
Avoids failing test 1014 by replicating configure checks
for HAVE_ATOMIC and _WIN32_WINNT with custom CMake tests.
Reviewed-by: Marcel Raad
Follow up to #8680
Closes #9312
|
| |
|
|
|
|
|
|
|
|
| |
There 25 is used with FTP tests skipped, and 20 for FTP tests.
This should make torture tests stay within the 60min timeout.
Reviewed-by: Daniel Stenberg
Closes #9371
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
First check for errors and return CURLM_UNRECOVERABLE_POLL
before moving forward and waiting on socket readiness events.
Reviewed-by: Jay Satiro
Reviewed-by: Marcel Raad
Reported-by: Daniel Stenberg
Ref: #9361
Follow up to #8961
Closes #9372
|
|
|
|
|
|
|
|
|
|
|
| |
On Windows revents was not populated for extra_fds if
multi_wait had to wait due to the Curl_poll pre-check
not signalling any readiness. This commit fixes that.
Reviewed-by: Marcel Raad
Reviewed-by: Jay Satiro
Closes #9361
|
|
|
|
|
|
|
|
|
|
| |
Schannel cannot be used from msys2-native Linux-emulated builds.
Reviewed-by: Marcel Raad
Reviewed-by: Daniel Stenberg
Follow up to #9367
Closes #9370
|
|
|
|
|
|
|
|
|
|
|
|
| |
Prior to this change some tests that rely on nghttpx proxy did not use
CRLF headers everywhere. A recent change in nghttp2, which updated its
version of llhttp (HTTP parser), requires curl's HTTP/1.1 test server to
use CRLF headers.
Ref: https://github.com/nghttp2/nghttp2/commit/9d389e8
Fixes https://github.com/curl/curl/issues/9364
Closes https://github.com/curl/curl/pull/9365
|
|
|
|
|
|
|
|
|
|
| |
Sockets may be shut down by the kernel when the app is moved to the
background, but pipes are not.
Removed from KNOWN_BUGS
Fixes #6132
Closes #9368
|
|
|
|
|
|
|
| |
When reading the symbolic link name for a file, we need to add the file
name to base path name.
Closes #9369
|
|
|
|
|
|
|
|
| |
Previously the configure script would just warn about this fact and
continue with TLS disabled build which is not always helpful. TLS should
be explicitly disabled if that is what the user wants.
Closes #9367
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
By default, the PFXImportCertStore API persists the key in the user's
key store (as though the certificate was being imported for permanent,
ongoing use.)
The documentation specifies that keys that are not to be persisted
should be imported with the flag `PKCS12_NO_PERSIST_KEY`.
NOTE: this flag is only supported on versions of Windows newer than XP
and Server 2003.
Fixes #9300
Closes #9363
|
|
|
|
|
|
|
|
|
| |
To match the comments.
Reported-by: Wu Zheng
See #9355
Closes #9356
|
|
|
|
| |
Closes #9354
|
|
|
|
| |
Closes #9353
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Ẃhen it has been used in the multi interface, it is otherwise left in
the connection cache, can't be reused and nothing will close them since
the easy handle loses the association with the multi handle and thus the
connection cache - until the multi handle is closed or it gets pruned
because the cache is full.
Reported-by: Dominik Thalhammer
Fixes #9335
Closes #9342
|
|
|
|
| |
gen.pl escapes them itself now
|
|
|
|
|
|
|
|
| |
As "(aq" and "(dq" to prevent them from implying a meaning in the nroff
output. This removes the need for using \& escapes in the .d files'
description parts.
Closes #9352
|
|
|
|
|
|
|
|
|
| |
Avoid loosing any triggered handles by first aborting and joining
the waiting threads before evaluating the individual signal state.
This removes the race condition and therefore need for a mutex.
Closes #9023
|
|
|
|
|
|
|
|
| |
This commit changes the failf message to output the maximum length, when
curl refuses to process a URL because it is too long.
See: #9317
Closes: #9327
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Commit b589696f added lines to some shell within AC_ARG_WITH macros, but
inadvertently failed to move the final closing ).
Quote the script section using braces.
So, if these problems have been around for a while, how did I find them?
Only because I did a configure including these options:
$ ./configure --with-openssl --without-rustls
SSL: enabled (OpenSSL)
Closes #9344
|
|
|
|
|
|
| |
It is not used by runtests since 3c0f462
Closes #9333
|
|
|
|
|
|
| |
No practical use anymore since 3c0f4622cdfd6
Closes #9332
|
|
|
|
| |
Closes #9328
|
|
|
|
| |
Closes #9328
|
|
|
|
|
|
|
| |
This example is a bit convoluted to use as an example, combined with the
special license for it makes it unsuitable.
Closes #9330
|
|
|
|
|
|
|
|
| |
It is needed for fd_set to be visible to downstream consumers that use
<curl/multi.h>. Header is known to exist at least as far back as Solaris
2.6.
Closes #9329
|
|
|
|
| |
URL: https://curl.se/mail/lib-2022-08/0016.html
|
|
|
|
|
|
|
|
|
|
|
| |
Since the libssh2 API uses 'long' to store the timestamp, it cannot
transfer >32bit times on Windows and 32bit architecture builds.
Avoid nasty surprises by instead not setting such time.
Spotted by Coverity
Closes #9325
|
|
|
|
|
|
|
|
|
| |
The libssh API used caps the time to an unsigned 32bit variable. Avoid
nasty surprises by instead not setting such time.
Spotted by Coverity.
Closes #9324
|
|
|
|
|
|
|
|
|
| |
Bug: https://github.com/curl/curl/pull/7252
Reported-by: dEajL3kA@users.noreply.github.com
Ref: https://github.com/curl/curl/pull/7281
Closes https://github.com/curl/curl/pull/9305
|