| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
| |
|
|
|
|
|
|
|
|
| |
We have and provide Curl_strerror() internally for a reason: strerror()
is not necessarily thread-safe so we should always try to avoid it.
Extended checksrc to warn for this, but feature the check disabled by
default and only enable it in lib/
|
| |
|
|
|
|
|
|
|
|
|
| |
Use dynamic memory allocation for the buffer used in checking "pinned
public key". The PUB_DER_MAX_BYTES parameter with default settings is
set to a value greater than 2kB.
Co-authored-by: Daniel Stenberg
Closes #7586
|
|
|
|
|
|
|
|
|
|
|
|
| |
Regression. In d6a37c23a3c (7.75.0) we removed the duplicated storage
(connection + easy handle), so this info needs be extracted again even
for re-used connections.
Add test 435 to verify
Reported-by: Max Dymond
Fixes #7660
Closes #7662
|
|
|
|
|
|
| |
`use_wakeup` is unused in this case.
Closes https://github.com/curl/curl/pull/7661
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This adds support for the previously unhandled supplemental data which
in -v output was printed like:
TLSv1.2 (IN), TLS header, Unknown (23):
These will now be printed with proper annotation:
TLSv1.2 (OUT), TLS header, Supplemental data (23):
Closes #7652
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
|
|
|
|
|
|
|
|
| |
and compiler warnings for data conversions.
Reported-by: MichaĆ Antoniak
Fixes #7645
Closes #7653
|
|
|
|
|
| |
Fixes #7643
Closes #7649
|
|
|
|
|
|
|
|
| |
This reverts commit 455a63c66f188598275e87d32de2c4e8e26b80cb.
Reported-by: Tk Xiong
Fixes #7633
Closes #7648
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Otherwise it would wait socket writability even after the entire CONNECT
request has sent and make curl basically busy-loop while waiting for a
response to come back.
The previous fix attempt in #7484 (c27a70a591a4) was inadequate.
Reported-by: zloi-user on github
Reported-by: Oleguer Llopart
Fixes #7589
Closes #7647
|
|
|
|
|
|
|
|
|
|
| |
Make the built-in HTTP parser behave similar to hyper and reject any
HTTP response using more than 3 digits for the response code.
Updated test 1432 accordingly.
Enabled test 1432 in the hyper builds.
Closes #7641
|
|
|
|
|
|
|
| |
Stop buffering crypto data because libngtcp2 now buffers submitted
crypto data.
Closes #7637
|
|
|
|
|
|
|
|
|
|
|
|
| |
Adds the full listing of CURL_DISABLE options to the CMake build. Moves
all option code, except for CURL_DISABLE_OPENSSL_AUTO_LOA_CONFIG which
resides near OpenSSL configuration, to the same block of code. Also
sorts the options here and in the cmake config header.
Additionally sorted the CURL-DISABLE listing and fixed the
CURL_DISABLE_POP3 option.
Closes #7624
|
|
|
|
|
|
| |
Enable test 1074
Closes #7617
|
|
|
|
|
|
| |
Enable test 1130 and 1131
Closes #7616
|
|
|
|
| |
Closes #7602
|
|
|
|
|
|
|
|
|
|
|
| |
Since this option is also used for FTP, it needs to work to set for
applications even if hyper doesn't support it for HTTP. Verified by test
1137.
Updated docs to specify that the option doesn't work for HTTP when using
the hyper backend.
Closes #7614
|
|
|
|
|
|
|
| |
There's no code flow possible where this can happen. The assert makes
sure it also won't be introduced undetected in the future.
Closes #7610
|
|
|
|
|
|
|
|
| |
As this leaks memory otherwise
Follow-up to ba904db0705c931
Closes #7599
|
|
|
|
|
|
|
|
|
| |
If wolfSSL is built in certain ways (OPENSSL_EXTRA or Debug), the error
queue gets added on to for each session and never freed. Fix it by
calling ERR_clear_error() like in vtls/openssl when needed. This func is
a no-op in wolfcrypt if the error queue is not enabled.
Closes #7594
|
|
|
|
|
|
|
|
| |
The values for HTTP_ONLY differed between CMakeLists.txt and
curl_setup.h. Sync them and sort the values in curl_setup.h to make it
easier to spot differences.
Closes #7601
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Define ALG_CLASS_DHASH (the typo from the include) to ALG_CLASS_HASH.
Prior to this change there was an incomplete fix to ignore the
CALG_TLS1PRF macro on those versions of MinGW where it uses the
ALG_CLASS_DHASH typoed macro.
Ref: 48cf45c
Ref: https://osdn.net/projects/mingw/ticket/38391
Ref: https://github.com/curl/curl/issues/2924
Closes https://github.com/curl/curl/pull/7580
|
|
|
|
|
|
| |
Enable test 287
Closes #7598
|
|
|
|
|
|
|
|
| |
With the use hyper_request_on_informational()
Enable test 155 and 158
Closes #7597
|
|
|
|
|
|
|
|
| |
Remove the previous handling that would call SSL_CTX_free(), and instead
add an assert that halts a debug build if there ever is a context
already set at this point.
Closes #7585
|
|
|
|
|
| |
Fixes #4130
Closes #7372
|
|
|
|
|
|
| |
... as it is gone from the API upstream.
Closes #7578
|
|
|
|
| |
Closes #7577
|
|
|
|
|
|
|
|
| |
Reverts 252790c5335a221
Assisted-by: Gergely Nagy
Fixes #7400
Closes #7525
|
|
|
|
|
|
|
|
|
| |
RFC4752 Section 3.1 states "The authorization identity is not terminated
with a zero-valued (%x00) octet". Although a comment in code said it may
be needed anyway, nothing confirms it. In addition, servers may consider
it as part of the identity, causing a failure.
Closes #7008
|
|
|
|
|
| |
... instead of deriving it from active ticket.
Closes #7008
|
|
|
|
| |
Closes #7008
|
|
|
|
| |
Closes #7008
|
|
|
|
|
| |
Assisted-by: Patrick Monnerat
Closes #7536
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
For when CURL_DISABLE_VERBOSE_STRINGS and DEBUGBUILD flags are both
active.
- socks.c : warning C4100: 'lineno': unreferenced formal parameter
(co-authored by Daniel Stenberg)
- mbedtls.c: warning C4189: 'port': local variable is initialized but
not referenced
- schannel.c: warning C4189: 'hostname': local variable is initialized
but not referenced
Cloes #7528
|
|
|
|
|
|
| |
Enabled test 154
Closes #7568
|
|
|
|
|
|
| |
occurence -> occurrence
Closes #7566
|
|
|
|
| |
Closes #7567
|
|
|
|
|
|
|
|
|
|
| |
- replace broken URL with the one it was most probably pointing to
when added (lib/tftp.c)
- replace broken URL with archive.org link (lib/curl_ntlm_wb.c)
- delete unnecessary protocol designator from archive.org URL
(docs/BINDINGS.md)
Closes #7562
|
|
|
|
| |
... and use #ifdef [feature] in the code as per our guidelines.
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
ares_getaddrinfo() is the getaddrinfo() cloned provided by c-ares, introduced
in version 1.16.0.
With older c-ares versions, curl invokes ares_gethostbyname() twice - once for
IPv4 and once for IPv6 to resolve both addresses, and then combines the
returned results.
Reported-by: jjandesmet
Fixes #7364
Closes #7552
|
|
|
|
| |
Closes #7551
|
|
|
|
| |
Closes #7538
|
|
|
|
|
|
|
| |
lib/progress.c:380:40: warning: conversion to 'long double' from
'curl_off_t {aka long long int}' may alter its value [-Wconversion]
Closes #7549
|
|
|
|
|
|
|
|
|
| |
Updated test31.
Added test 392 to verify secure cookies used for http://localhost
Reviewed-by: Daniel Gustafsson
Fixes #6733
Closes #7263
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
- Do not assume IPv6 is not working when getaddrinfo is not present.
The check to see if IPv6 actually works is now independent of whether
there is any resolver that can potentially resolve a hostname to IPv6.
Prior to this change if getaddrinfo() was not found at compile time then
Curl_ipv6works() would be defined as a macro that returns FALSE.
When getaddrinfo is not found then libcurl is built with CURLRES_IPV4
defined instead of CURLRES_IPV6, meaning that it cannot do IPv6 lookups
in the traditional way. With this commit if libcurl is built with IPv6
support (ENABLE_IPV6) but without getaddrinfo (CURLRES_IPV6), and the
IPv6 stack is actually working, then it is possible for libcurl to
resolve IPv6 addresses by using DoH.
Ref: https://github.com/curl/curl/issues/7483#issuecomment-890765378
Closes https://github.com/curl/curl/pull/7529
|
|
|
|
| |
Closes #7546
|
|
|
|
|
|
|
| |
Rework the return value handling of ngtcp2_conn_writev_stream and treat
NGTCP2_ERR_STREAM_SHUT_WR separately.
Closes #7546
|