| 982a897b | 19-Dec-2018 |
David Garske |
wolfssl: Perform cleanup
This adds a cleanup callback for cyassl. Resolves possible memory leak
when using ECC fixed point cache.
Closes #3395
Reviewed-by: Daniel Stenberg <
wolfssl: Perform cleanup
This adds a cleanup callback for cyassl. Resolves possible memory leak
when using ECC fixed point cache.
Closes #3395
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
Reviewed-by: Daniel Gustafsson <daniel@yesql.se>
show more ...
|
| 0b9fadf8 | 19-Dec-2018 |
Daniel Stenberg |
mbedtls: follow-up VERIFYHOST fix from f097669248
Fix-by: Eric Rosenquist
Fixes #3376
Closes #3390 |
| ea2fed5d | 20-Dec-2018 |
Daniel Stenberg |
curlver: bump to 7.64.0 for next release |
| 3773de37 | 19-Dec-2018 |
Daniel Gustafsson |
cookies: extend domain checks to non psl builds
Ensure to perform the checks we have to enforce a sane domain in
the cookie request. The check for non-PSL enabled builds is quite
bas
cookies: extend domain checks to non psl builds
Ensure to perform the checks we have to enforce a sane domain in
the cookie request. The check for non-PSL enabled builds is quite
basic but it's better than nothing.
Closes #2964
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
show more ...
|
| 462037ad | 18-Dec-2018 |
Matus Uzak |
smb: fix incorrect path in request if connection reused
Follow-up to 09e401e01bf9. If connection gets reused, then data member
will be copied, but not the proto member. As a result, in
smb: fix incorrect path in request if connection reused
Follow-up to 09e401e01bf9. If connection gets reused, then data member
will be copied, but not the proto member. As a result, in smb_do(),
path has been set from the original proto.share data.
Closes #3388
show more ...
|
| 48492671 | 17-Dec-2018 |
Daniel Stenberg |
curl -J: do not append to the destination file
Reported-by: Kamil Dudka
Fixes #3380
Closes #3381 |
| f0976692 | 17-Dec-2018 |
Daniel Stenberg |
mbedtls: use VERIFYHOST
Previously, VERIFYPEER would enable/disable all checks.
Reported-by: Eric Rosenquist
Fixes #3376
Closes #3380 |
| d8a9de62 | 14-Dec-2018 |
Daniel Stenberg |
pingpong: change default response timeout to 120 seconds
Previously it was 30 minutes |
| 154a17b6 | 14-Dec-2018 |
Daniel Stenberg |
pingpong: ignore regular timeout in disconnect phase
The timeout set with CURLOPT_TIMEOUT is no longer used when
disconnecting from one of the pingpong protocols (FTP, IMAP, SMTP,
PO
pingpong: ignore regular timeout in disconnect phase
The timeout set with CURLOPT_TIMEOUT is no longer used when
disconnecting from one of the pingpong protocols (FTP, IMAP, SMTP,
POP3).
Reported-by: jasal82 on github
Fixes #3264
Closes #3374
show more ...
|
| 9e651848 | 14-Dec-2018 |
Daniel Stenberg |
TODO: Windows: set attribute 'archive' for completed downloads
Closes #3354 |
| 961266b2 | 14-Dec-2018 |
Daniel Stenberg |
RELEASE-NOTES: synced |
| 04b69c74 | 14-Dec-2018 |
Daniel Stenberg |
http: minor whitespace cleanup from f464535b |
| f464535b | 06-Dec-2018 |
Ayoub Boudhar |
http: Implement trailing headers for chunked transfers
This adds the CURLOPT_TRAILERDATA and CURLOPT_TRAILERFUNCTION
options that allow a callback based approach to sending trailing head
http: Implement trailing headers for chunked transfers
This adds the CURLOPT_TRAILERDATA and CURLOPT_TRAILERFUNCTION
options that allow a callback based approach to sending trailing headers
with chunked transfers.
The test server (sws) was updated to take into account the detection of the
end of transfer in the case of trailing headers presence.
Test 1591 checks that trailing headers can be sent using libcurl.
Closes #3350
show more ...
|
| 4531b299 | 13-Dec-2018 |
Daniel Stenberg |
darwinssl: accept setting max-tls with default min-tls
Reported-by: Andrei Neculau
Fixes #3367
Closes #3373 |
| 4b4062aa | 13-Dec-2018 |
Daniel Stenberg |
gopher: fix memory leak from 9026083ddb2a9 |
| 3997510e | 12-Dec-2018 |
Leonardo Taccari |
test1201: Add a trailing `?' to the selector
This verify that the `?' in the selector is kept as is.
Verifies the fix in #3370 |
| 9026083d | 12-Dec-2018 |
Leonardo Taccari |
gopher: always include the entire gopher-path in request
After the migration to URL API all octets in the selector after the
first `?' were interpreted as query and accidentally discarde
gopher: always include the entire gopher-path in request
After the migration to URL API all octets in the selector after the
first `?' were interpreted as query and accidentally discarded and not
passed to the server.
Add a gopherpath to always concatenate possible path and query URL
pieces.
Fixes #3369
Closes #3370
show more ...
|
| 305d25ed | 12-Dec-2018 |
Leonardo Taccari |
urlapi: distinguish possibly empty query
If just a `?' to indicate the query is passed always store a zero length
query instead of having a NULL query.
This permits to distingui
urlapi: distinguish possibly empty query
If just a `?' to indicate the query is passed always store a zero length
query instead of having a NULL query.
This permits to distinguish URL with trailing `?'.
Fixes #3369
Closes #3370
show more ...
|
| a58b2774 | 13-Dec-2018 |
Daniel Gustafsson |
OS400: handle memory error in list conversion
Curl_slist_append_nodup() returns NULL when it fails to create a new
item for the specified list, and since the coding here reassigned the
OS400: handle memory error in list conversion
Curl_slist_append_nodup() returns NULL when it fails to create a new
item for the specified list, and since the coding here reassigned the
new list on top of the old list it would result in a dangling pointer
and lost memory. Also, in case we hit an allocation failure at some
point during the conversion, with allocation succeeding again on the
subsequent call(s) we will return a truncated list around the malloc
failure point. Fix by assigning to a temporary list pointer, which can
be checked (which is the common pattern for slist appending), and free
all the resources on allocation failure.
Closes #3372
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
show more ...
|
| 7a09b52c | 13-Dec-2018 |
Daniel Gustafsson |
cookies: leave secure cookies alone
Only allow secure origins to be able to write cookies with the
'secure' flag set. This reduces the risk of non-secure origins
to influence the sta
cookies: leave secure cookies alone
Only allow secure origins to be able to write cookies with the
'secure' flag set. This reduces the risk of non-secure origins
to influence the state of secure origins. This implements IETF
Internet-Draft draft-ietf-httpbis-cookie-alone-01 which updates
RFC6265.
Closes #2956
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
show more ...
|
| fdc5563b | 12-Dec-2018 |
Daniel Stenberg |
docs: fix the --tls-max description
Reported-by: Tobias Lindgren
Pointed out in #3367
Closes #3368 |
| d8607da1 | 12-Dec-2018 |
Daniel Gustafsson |
urlapi: Fix port parsing of eol colon
A URL with a single colon without a portnumber should use the default
port, discarding the colon. Fix, add a testcase and also do little bit
of
urlapi: Fix port parsing of eol colon
A URL with a single colon without a portnumber should use the default
port, discarding the colon. Fix, add a testcase and also do little bit
of comment wordsmithing.
Closes #3365
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
show more ...
|
| 4258dc02 | 12-Dec-2018 |
Daniel Stenberg |
RELEASE-NOTES: 7.63.0 |
| a58741aa | 12-Dec-2018 |
Daniel Stenberg |
THANKS: from the curl 7.62.0 cycle |
| 1945460d | 11-Dec-2018 |
Daniel Stenberg |
test1519: use lib1518 and test CURLINFO_REDIRECT_URL more |
