| 6f0afb84 | 21-Sep-2018 |
Daniel Stenberg |
configure: force-use -lpthreads on HPUX
When trying to detect pthreads use on HPUX the checks will succeed
without the correct -l option but then end up failing at run-time.
Rep
configure: force-use -lpthreads on HPUX
When trying to detect pthreads use on HPUX the checks will succeed
without the correct -l option but then end up failing at run-time.
Reported-by: Eason-Yu on github
Fixes #2697
Closes #3025
show more ...
|
| 39c9140c | 21-Sep-2018 |
Erik Minekus |
Curl_saferealloc: Fixed typo in docblock
Closes #3029 |
| 2097cd51 | 21-Sep-2018 |
Daniel Stenberg |
urlapi: fix support for address scope in IPv6 numerical addresses
Closes #3024 |
| 9bdadbbd | 10-Sep-2018 |
Loganaden Velvindron |
GnutTLS: TLS 1.3 support
Closes #2971 |
| e968029b | 20-Sep-2018 |
Daniel Stenberg |
TODO: c-ares and CURLOPT_OPENSOCKETFUNCTION
Removed DoH.
Closes #2734 |
| 2e5651a5 | 18-Sep-2018 |
Jay Satiro |
vtls: fix ssl version "or later" behavior change for many backends
- Treat CURL_SSLVERSION_MAX_NONE the same as
CURL_SSLVERSION_MAX_DEFAULT. Prior to this change NONE would mean use
vtls: fix ssl version "or later" behavior change for many backends
- Treat CURL_SSLVERSION_MAX_NONE the same as
CURL_SSLVERSION_MAX_DEFAULT. Prior to this change NONE would mean use
the minimum version also as the maximum.
This is a follow-up to 6015cef which changed the behavior of setting
the SSL version so that the requested version would only be the minimum
and not the maximum. It appears it was (mostly) implemented in OpenSSL
but not other backends. In other words CURL_SSLVERSION_TLSv1_0 used to
mean use just TLS v1.0 and now it means use TLS v1.0 *or later*.
- Fix CURL_SSLVERSION_MAX_DEFAULT for OpenSSL.
Prior to this change CURL_SSLVERSION_MAX_DEFAULT with OpenSSL was
erroneously treated as always TLS 1.3, and would cause an error if
OpenSSL was built without TLS 1.3 support.
Co-authored-by: Daniel Gustafsson
Fixes https://github.com/curl/curl/issues/2969
Closes https://github.com/curl/curl/pull/3012
show more ...
|
| ba782baa | 19-Sep-2018 |
Daniel Stenberg |
certs: generate tests certs with sha256 digest algorithm
As OpenSSL 1.1.1 starts to complain and fail on sha1 CAs:
"SSL certificate problem: CA signature digest algorithm too weak"
certs: generate tests certs with sha256 digest algorithm
As OpenSSL 1.1.1 starts to complain and fail on sha1 CAs:
"SSL certificate problem: CA signature digest algorithm too weak"
Closes #3014
show more ...
|
| 5c73093e | 19-Sep-2018 |
Daniel Stenberg |
urlapi: document the error codes, remove two unused ones
Assisted-by: Daniel Gustafsson
Closes #3019 |
| 9307c219 | 19-Sep-2018 |
Daniel Stenberg |
urlapi: add CURLU_GUESS_SCHEME and fix hostname acceptance
In order for this API to fully work for libcurl itself, it now offers a
CURLU_GUESS_SCHEME flag that makes it "guess" scheme ba
urlapi: add CURLU_GUESS_SCHEME and fix hostname acceptance
In order for this API to fully work for libcurl itself, it now offers a
CURLU_GUESS_SCHEME flag that makes it "guess" scheme based on the host
name prefix just like libcurl always did. If there's no known prefix, it
will guess "http://".
Separately, it relaxes the check of the host name so that IDN host names
can be passed in as well.
Both these changes are necessary for libcurl itself to use this API.
Assisted-by: Daniel Gustafsson
Closes #3018
show more ...
|
| eb0b3acb | 19-Sep-2018 |
Kamil Dudka |
nss: try to connect even if libnssckbi.so fails to load
One can still use CA certificates stored in NSS database.
Reported-by: Maxime Legros
Bug: https://curl.haxx.se/mail/lib-2
nss: try to connect even if libnssckbi.so fails to load
One can still use CA certificates stored in NSS database.
Reported-by: Maxime Legros
Bug: https://curl.haxx.se/mail/lib-2018-09/0077.html
Closes #3016
show more ...
|
| 522e647c | 19-Sep-2018 |
Daniel Gustafsson |
urlapi: don't set value which is never read
In the CURLUPART_URL case, there is no codepath which invokes url
decoding so remove the assignment of the urldecode variable. This
fixes
urlapi: don't set value which is never read
In the CURLUPART_URL case, there is no codepath which invokes url
decoding so remove the assignment of the urldecode variable. This
fixes the deadstore bug-report from clang static analysis.
Closes #3015
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
show more ...
|
| 056cc37e | 19-Sep-2018 |
Daniel Gustafsson |
todo: Update reference to already done item
TODO item 1.1 was implemented in commit 946ce5b61f, update reference
to it with instead referencing the implemented option.
Closes #3
todo: Update reference to already done item
TODO item 1.1 was implemented in commit 946ce5b61f, update reference
to it with instead referencing the implemented option.
Closes #3013
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
show more ...
|
| d0c615b8 | 18-Sep-2018 |
Daniel Stenberg |
RELEASE-NOTES: synced |
| 71b3c675 | 15-Sep-2018 |
slodki |
cmake: don't require OpenSSL if USE_OPENSSL=OFF
User must have OpenSSL installed even if not used by libcurl at all
since 7.61.1 release. Broken at
7867aaa9a01decf93711428462335be8c
cmake: don't require OpenSSL if USE_OPENSSL=OFF
User must have OpenSSL installed even if not used by libcurl at all
since 7.61.1 release. Broken at
7867aaa9a01decf93711428462335be8cef70212
Reviewed-by: Sergei Nikulov
Closes #3001
show more ...
|
| ec5d0991 | 15-Sep-2018 |
Daniel Stenberg |
curl_multi_wait: call getsock before figuring out timeout
.... since getsock may update the expiry timer.
Fixes #2996
Closes #3000 |
| ef38059f | 16-Sep-2018 |
Daniel Stenberg |
examples/http2-pushinmemory: receive HTTP/2 pushed files in memory
Closes #3004 |
| ed783006 | 18-Sep-2018 |
Daniel Gustafsson |
darwinssl: Fix realloc memleak
The reallocation was using the input pointer for the return value, which
leads to a memory leak on reallication failure. Fix by instead use the
safe in
darwinssl: Fix realloc memleak
The reallocation was using the input pointer for the return value, which
leads to a memory leak on reallication failure. Fix by instead use the
safe internal API call Curl_saferealloc().
Closes #3005
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
Reviewed-by: Nick Zitzmann <nickzman@gmail.com>
show more ...
|
| 23524bf8 | 15-Sep-2018 |
Kruzya |
examples: Fix memory leaks from realloc errors
Make sure to not overwrite the reallocated pointer in realloc() calls
to avoid a memleak on memory errors. |
| 927cb370 | 17-Sep-2018 |
Daniel Gustafsson |
memory: add missing curl_printf header
ftp_send_command() was using vsnprintf() without including the libcurl
*rintf() replacement header. Fix by including curl_printf.h and also
add
memory: add missing curl_printf header
ftp_send_command() was using vsnprintf() without including the libcurl
*rintf() replacement header. Fix by including curl_printf.h and also
add curl_memory.h while at it since memdebug.h depends on it.
Closes #2999
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
show more ...
|
| 093ba904 | 14-Sep-2018 |
Si |
curl: update --tlsv* descriptions in --help output
Closes #2994 |
| 55dbcb06 | 14-Sep-2018 |
Daniel Stenberg |
http: made Curl_add_buffer functions take a pointer-pointer
... so that they can clear the original pointer on failure, which makes
the error-paths and their cleanups easier.
Cl
http: made Curl_add_buffer functions take a pointer-pointer
... so that they can clear the original pointer on failure, which makes
the error-paths and their cleanups easier.
Closes #2992
show more ...
|
| 130c53b6 | 14-Sep-2018 |
Daniel Stenberg |
http2: fix memory leaks on error-path |
| 0d717a31 | 15-Sep-2018 |
Rikard Falkeborn |
libtest: Add chkdecimalpoint to .gitignore
Closes #2998 |
| 420087bb | 14-Sep-2018 |
Viktor Szakats |
secure Openwall URLs |
| 4ff5f940 | 13-Sep-2018 |
Daniel Stenberg |
openssl: show "proper" version number for libressl builds
Closes #2989 |
