summaryrefslogtreecommitdiff
path: root/tests
Commit message (Collapse)AuthorAgeFilesLines
* http: added options for allowing HTTP/0.9 responsesbagder/http09Daniel Stenberg2018-12-2018-8/+71
| | | | | | | | | | | Added CURLOPT_HTTP09_ALLOWED and --http0.9 for this purpose. For now, both the tool and library allow HTTP/0.9 by default. docs/DEPRECATE.md lays out the plan for when to reverse that default: 6 months after the 7.64.0 release. The options are added already now so that applications/scripts can start using them already now. Fixes #2873
* cookies: extend domain checks to non psl buildsDaniel Gustafsson2018-12-191-0/+1
| | | | | | | | | Ensure to perform the checks we have to enforce a sane domain in the cookie request. The check for non-PSL enabled builds is quite basic but it's better than nothing. Closes #2964 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
* http: minor whitespace cleanup from f464535bDaniel Stenberg2018-12-141-1/+0
|
* http: Implement trailing headers for chunked transfersAyoub Boudhar2018-12-146-1/+197
| | | | | | | | | | | | | This adds the CURLOPT_TRAILERDATA and CURLOPT_TRAILERFUNCTION options that allow a callback based approach to sending trailing headers with chunked transfers. The test server (sws) was updated to take into account the detection of the end of transfer in the case of trailing headers presence. Test 1591 checks that trailing headers can be sent using libcurl. Closes #3350
* test1201: Add a trailing `?' to the selectorLeonardo Taccari2018-12-131-2/+2
| | | | | | This verify that the `?' in the selector is kept as is. Verifies the fix in #3370
* cookies: leave secure cookies aloneDaniel Gustafsson2018-12-135-22/+89
| | | | | | | | | | | Only allow secure origins to be able to write cookies with the 'secure' flag set. This reduces the risk of non-secure origins to influence the state of secure origins. This implements IETF Internet-Draft draft-ietf-httpbis-cookie-alone-01 which updates RFC6265. Closes #2956 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
* urlapi: Fix port parsing of eol colonDaniel Gustafsson2018-12-121-0/+8
| | | | | | | | | A URL with a single colon without a portnumber should use the default port, discarding the colon. Fix, add a testcase and also do little bit of comment wordsmithing. Closes #3365 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
* test1519: use lib1518 and test CURLINFO_REDIRECT_URL moreDaniel Stenberg2018-12-122-3/+63
|
* Curl_follow: extract the Location: header field unvalidatedDaniel Stenberg2018-12-124-2/+141
| | | | | | | | | | | ... when not actually following the redirect. Otherwise we return error for this and an application can't extract the value. Test 1518 added to verify. Reported-by: Pavel Pavlov Fixes #3340 Closes #3364
* tests: add urlapi unittestDaniel Gustafsson2018-12-114-2/+157
| | | | | | | | | | This adds a new unittest intended to cover the internal functions in the urlapi code, starting with parse_port(). In order to avoid name collisions in debug builds, parse_port() is renamed Curl_parse_port() since it will be exported. Reviewed-by: Daniel Stenberg <daniel@haxx.se> Reviewed-by: Marcel Raad <Marcel.Raad@teamviewer.com>
* http: fix HTTP auth to include query in URIJay Satiro2018-12-112-1/+76
| | | | | | | | | | - Include query in the path passed to generate HTTP auth. Recent changes to use the URL API internally (46e1640, 7.62.0) inadvertently broke authentication URIs by omitting the query. Fixes https://github.com/curl/curl/issues/3353 Closes #3356
* test329: verify cookie max-age=0 immediate expiryDaniel Stenberg2018-12-092-1/+71
|
* test328: verify Content-Encoding: noneDaniel Stenberg2018-11-282-1/+56
| | | | | | Because of issue #3315 Closes #3317
* cookies: create the cookiejar even if no cookies to saveDaniel Stenberg2018-11-233-2/+79
| | | | | | | | | | | Important for when the file is going to be read again and thus must not contain old contents! Adds test 327 to verify. Reported-by: daboul on github Fixes #3299 Closes #3300
* snprintf: renamed and we now only use msnprintf()Daniel Stenberg2018-11-2331-201/+212
| | | | | | | | | | | The function does not return the same value as snprintf() normally does, so readers may be mislead into thinking the code works differently than it actually does. A different function name makes this easier to detect. Reported-by: Tomas Hoger Assisted-by: Daniel Gustafsson Fixes #3296 Closes #3297
* test: update test20/1322 for eglibc bug workaroundTobias Hintze2018-11-222-2/+2
| | | | | | | | | | | | The tests 20 and 1322 are using getaddrinfo of libc for resolving. In eglibc-2.19 there is a memory leakage and invalid free bug which surfaces in some special circumstances (PF_UNSPEC hint with invalid or non-existent names). The valgrind runs in testing fail in these situations. As the tests 20/1322 are not specific on either protocol (IPv4/IPv6) this commit changes the hints to IPv4 protocol by passing `--ipv4` flag on the tests' command line. This prevents the valgrind failures.
* impacket: add LICENSEDaniel Stenberg2018-11-191-0/+84
| | | | | | | | | | | The license for the impacket package was not in our tree. Imported now from upstream's https://github.com/SecureAuthCorp/impacket/blob/master/LICENSE Reported-by: infinnovation-dev on github Fixes #3276 Closes #3277
* tests: disable SO_EXCLUSIVEADDRUSE for stunnel on WindowsMarc Hoersken2018-11-151-0/+5
| | | | | | | SO_EXCLUSIVEADDRUSE is on by default on Vista or newer, but does not work together with SO_REUSEADDR being on. The default changes were made with stunnel 5.34 and 5.35.
* setopt: add CURLOPT_CURLUJim Fuller2018-11-094-2/+132
| | | | | | Allows an application to pass in a pre-parsed URL via a URL handle. Closes #3227
* curl: add %{stderr} and %{stdout} for --write-outFrank Gevaerts2018-11-072-1/+63
| | | | Closes #3115
* urlapi: only skip encoding the first '=' with APPENDQUERY setDaniel Stenberg2018-11-071-1/+1
| | | | | | | | | APPENDQUERY + URLENCODE would skip all equals signs but now it only skip encoding the first to better allow "name=content" for any content. Reported-by: Alexey Melnichuk Fixes #3231 Closes #3231
* url: a short host name + port is not a schemeDaniel Stenberg2018-11-066-43/+29
| | | | | | | | | | | | | | | | | | | The function identifying a leading "scheme" part of the URL considered a few letters ending with a colon to be a scheme, making something like "short:80" to become an unknown scheme instead of a short host name and a port number. Extended test 1560 to verify. Also fixed test203 to use file_pwd to make it get the correct path on windows. Removed test 2070 since it was a duplicate of 203. Assisted-by: Marcel Raad Reported-by: Hagai Auro Fixes #3220 Fixes #3233 Closes #3223 Closes #3235
* netrc: don't ignore the login name specified with "--user"Michael Kaufmann2018-11-051-13/+38
| | | | | | | | | | | | - for "--netrc", don't ignore the login/password specified with "--user", only ignore the login/password in the URL. This restores the netrc behaviour of curl 7.61.1 and earlier. - fix the documentation of CURL_NETRC_REQUIRED - improve the detection of login/password changes when reading .netrc - don't read .netrc if both login and password are already set Fixes #3213 Closes #3224
* unittest: make 1652 stable across collationsDaniel Gustafsson2018-11-051-2/+2
| | | | | | | | | | | | The previous coding used a format string whose output depended on the current locale of the environment running the test. Since the gist of the test is to have a format string, with the actual formatting being less important, switch to a more stable formatstring with decimals. Reported-by: Marcel Raad Closes #3234 Reviewed-by: Daniel Stenberg <daniel@haxx.se> Reviewed-by: Marcel Raad <Marcel.Raad@teamviewer.com>
* Revert "url: a short host name + port is not a scheme"Daniel Stenberg2018-11-051-3/+0
| | | | | | | This reverts commit 226cfa8264cd979eff3fd52c0f3585ef095e7cf2. This commit caused test failures on appveyor/windows. Work on fixing them is in #3235.
* symbols-in-versions: add missing CURLU_ symbolsDaniel Stenberg2018-11-041-1/+3
| | | | | | | | ...and fix symbol-scan.pl to also scan urlapi.h Reported-by: Alexey Melnichuk Fixes #3226 Closes #3230
* infof: clearly indicate truncationDaniel Gustafsson2018-11-034-2/+161
| | | | | | | | | | | | | | | | | | The internal buffer in infof() is limited to 2048 bytes of payload plus an additional byte for NULL termination. Servers with very long error messages can however cause truncation of the string, which currently isn't very clear, and leads to badly formatted output. This appends a "...\n" (or just "..." in case the format didn't with a newline char) marker to the end of the string to clearly show that it has been truncated. Also include a unittest covering infof() to try and catch any bugs introduced in this quite important function. Closes #3216 Reviewed-by: Daniel Stenberg <daniel@haxx.se> Reviewed-by: Marcel Raad <Marcel.Raad@teamviewer.com>
* url: a short host name + port is not a schemeDaniel Stenberg2018-11-031-0/+3
| | | | | | | | | | | | The function identifying a leading "scheme" part of the URL considered a few letters ending with a colon to be a scheme, making something like "short:80" to become an unknown scheme instead of a short host name and a port number. Extended test 1560 to verify. Reported-by: Hagai Auro Fixes #3220 Closes #3223
* URL: fix IPv6 numeral address parserDaniel Stenberg2018-11-031-0/+9
| | | | | | | | Regression from 46e164069d1a52. Extended test 1560 to verify. Reported-by: tpaukrt on github Fixes #3218 Closes #3219
* Curl_follow: accept non-supported schemes for "fake" redirectsDaniel Stenberg2018-11-022-1/+59
| | | | | | | | | | When not actually following the redirect and the target URL is only stored for later retrieval, curl always accepted "non-supported" schemes. This was a regression from 46e164069d1a5230. Reported-by: Brad King Fixes #3210 Closes #3215
* axtls: removedDaniel Stenberg2018-11-013-21/+2
| | | | | | | | | | As has been outlined in the DEPRECATE.md document, the axTLS code has been disabled for 6 months and is hereby removed. Use a better supported TLS library! Assisted-by: Daniel Gustafsson Closes #3194
* tests: drop http_pipe.py script no longer usedKamil Dudka2018-11-012-442/+1
| | | | | | It is unused since commit f7208df7d9d5cd5e15e2d89237e828f32b63f135. Closes #3204
* runtests: use the local curl for verifyingDaniel Stenberg2018-10-311-1/+1
| | | | | | | | | ... revert the mistaken change brought in commit 8440616f53. Reported-by: Alessandro Ghedini Bug: https://curl.haxx.se/mail/lib-2018-10/0118.html Closes #3198
* test2080: verify the fix for CVE-2018-16842Daniel Stenberg2018-10-302-4/+2
|
* unit1650: fix "null pointer passed as argument 1 to memcmp"Daniel Stenberg2018-10-291-1/+1
| | | | | | Detected by UndefinedBehaviorSanitizer Closes #3187
* unit1300: fix stack-use-after-scope AddressSanitizer warningDaniel Stenberg2018-10-291-3/+4
| | | | Closes #3186
* test1651: unit test Curl_extract_certinfo()Daniel Stenberg2018-10-274-2/+417
| | | | The version used for Gskit, NSS, GnuTLS, WolfSSL and schannel.
* Windows: fixes for MinGW targeting Windows VistaMarcel Raad2018-10-091-1/+2
| | | | | | | Classic MinGW has neither InitializeCriticalSectionEx nor GetTickCount64, independent of the target Windows version. Closes https://github.com/curl/curl/pull/3113
* FILE: fix CURLOPT_NOBODY and CURLOPT_HEADER outputDaniel Stenberg2018-10-0829-69/+65
| | | | | | | | | | | | | | | Now FILE transfers send headers to the header callback like HTTP and other protocols. Also made curl_easy_getinfo(...CURLINFO_PROTOCOL...) work for FILE in the callbacks. Makes "curl -i file://.." and "curl -I file://.." work like before again. Applied the bold header logic to them too. Regression from c1c2762 (7.61.0) Reported-by: Shaun Jackman Fixes #3083 Closes #3101
* runtests: skip ld_preload tests on macOSDaniel Gustafsson2018-10-071-1/+1
| | | | | | | | | | The LD_PRELOAD functionality doesn't exist on macOS, so skip any tests requiring it. Fixes #2394 Closes #3106 Reported-by: Github user @jakirkham Reviewed-by: Daniel Stenberg <daniel@haxx.se>
* test2100: test DoH using IPv4-onlyDaniel Stenberg2018-10-061-0/+0
| | | | | | | | | To make it only send one DoH request and avoid the race condition that could lead to the requests getting sent in reversed order and thus making it hard to compare in the test case. Fixes #3107 Closes #3108
* tests/FILEFORMAT: mention how to use <fileN> and <stripfileN> tooDaniel Stenberg2018-10-061-0/+19
| | | | [ci skip]
* doh: keep the IPv4 address in (original) network byte orderDaniel Stenberg2018-10-051-8/+8
| | | | | | | | Ideally this will fix the reversed order shown in SPARC tests: resp 8: Expected 127.0.0.1 got 1.0.0.127 Closes #3091
* CMake: suppress MSVC warning C4127 for libtestMarcel Raad2018-10-051-0/+4
| | | | It's issued by older Windows SDKs (prior to version 8.0).
* test320: strip out more HTML when comparingDaniel Stenberg2018-10-041-20/+4
| | | | | | | | To make the test case work with different gnutls-serv versions better. Reported-by: Kamil Dudka Fixes #3093 Closes #3094
* runtests: use Windows paths for Windows curlMarcel Raad2018-10-041-1/+1
| | | | | curl generated by CMake's Visual Studio generator has "Windows" in the version number.
* tests/negtelnetserver.py: fix Python2-ism in neg TELNET serverColin Hogben2018-10-041-21/+12
| | | | | | | | Fix problems caused by differences in treatment of bytes objects between python2 and python3. Fixes #2929 Closes #3080
* test1299: use single quotes around asteriskMarcel Raad2018-10-021-1/+1
| | | | Ref: https://github.com/curl/curl/issues/1751#issuecomment-321522580
* runtests: ignore disabled even when ranges are givenDaniel Stenberg2018-10-021-8/+17
| | | | | | | | | | | runtests.pl support running a range of tests, like "44 to 127". Starting now, the code makes sure that even such given ranges will ignore tests that are marked as disabled. Disabled tests can still be run by explictly specifying that test number. Closes #3075
* test1650: make it depend on http/2Daniel Stenberg2018-10-012-0/+12
| | | | | | | Follow-up to 570008c99da0ccbb as it gets link errors. Reported-by: Michael Kaufmann Closes #3068
View Lorry Controller Status