Curl_close: call Curl_resolver_cancel to avoid memory-leak

There might be a pending (c-ares) resolve that isn't free'd up yet.

Closes #9310

asyn-thread: fix socket leak on OOM

Closes #9310

GHA: mv CI torture test from Zuul

Closes #9310

ngtcp2-wolfssl.yml: add GHA to build ngtcp2 + wolfSSL

Closes #9318

test399: verify check of too long host name

url: reject URLs with hostnames longer than 65535 bytes

It *probably* causes other problems too since DNS can't resolve such
long names, but the SNI field in TLS is limited to 16 bits le

url: reject URLs with hostnames longer than 65535 bytes

It *probably* causes other problems too since DNS can't resolve such
long names, but the SNI field in TLS is limited to 16 bits length.

Closes #9317

show more ...

curl_multi_perform.3: minor language fix

Closes #9316

ngtcp2: fix picky compiler warnings with wolfSSL for QUIC

Follow-up to 8a13be227eede2

Closes #9315

ngtcp2: remove leftover variable

Mistake leftover from my edit before push.

Follow-up from 8a13be227eede2601c2b3b
Reported-by: Viktor Szakats
Bug: https://github.com/curl/cu

ngtcp2: remove leftover variable

Mistake leftover from my edit before push.

Follow-up from 8a13be227eede2601c2b3b
Reported-by: Viktor Szakats
Bug: https://github.com/curl/curl/pull/9290#issuecomment-1214569167

show more ...

Makefile.m32: allow -nghttp3/-ngtcp2 without -ssl [ci skip]

Before this patch `-nghttp3`/`-ngtcp2` had an effect only when `-ssl`
was also enabled. `-ssl` meaning OpenSSL (and its forks)

Makefile.m32: allow -nghttp3/-ngtcp2 without -ssl [ci skip]

Before this patch `-nghttp3`/`-ngtcp2` had an effect only when `-ssl`
was also enabled. `-ssl` meaning OpenSSL (and its forks). After
8a13be227eede2601c2b3b1c63e08b3dc9b35dd5 nghttp3/ngtcp2 can also be
used together with wolfSSL. This patch adds the ability to enable
`-nghttp3`/`-ngtcp2` independently from `-ssl` (OpenSSL), allowing to
use it with wolfSSL or other, future TLS backends.

Before this patch, it was fine to enable `-nghttp3`/`-ngtcp2`
unconditionally. After this patch, this is no longer the case, and now
it's the user's responsibility to enable `-nghttp3`/`-ngtcp2` only
together with a compatible TLS backend.

When using a TLS backend other than OpenSSL, the TLS-specific ngtcp2
library must be configured manually, e.g.:
`export CURL_LDFLAG_EXTRAS=-lngtcp2_crypto_wolfssl`

(or via `NGTCP2_LIBS`)

Closes #9314

show more ...

quic: add support via wolfSSL

- based on ngtcp2 PR https://github.com/ngtcp2/ngtcp2/pull/505
- configure adapted to build against ngtcp2 wolfssl crypto lib
- quic code added for crea

quic: add support via wolfSSL

- based on ngtcp2 PR https://github.com/ngtcp2/ngtcp2/pull/505
- configure adapted to build against ngtcp2 wolfssl crypto lib
- quic code added for creation of WOLFSSL* instances

Closes #9290

show more ...

memdebug: add annotation attributes

memory debug tracking annotates whether the returned pointer does not
`alias`, hints where the size required is, for Windows to be better
debugged

memdebug: add annotation attributes

memory debug tracking annotates whether the returned pointer does not
`alias`, hints where the size required is, for Windows to be better
debugged via Visual Studio.

Closes https://github.com/curl/curl/pull/9306

show more ...

GHA: move libressl CI from zuul to GitHub

Closes #9309

KNOWN_BUGS: FTPS directory listing hangs on Windows with Schannel

Closes #9161

KNOWN_BUGS: CURLOPT_CERTINFO results in CURLE_OUT_OF_MEMORY with Schannel

Closes #8741

KNOWN_BUGS: libssh blocking and infinite loop problem

Closes #8632

RELEASE-NOTES: synced

msh3: fix the QUIC disconnect function

And free request related memory better in 'done'. Fixes a memory-leak.

Reported-by: Gisle Vanem
Fixes #8915
Closes #9304

connect: close the happy eyeballs loser connection when using QUIC

Reviewed-by: Nick Banks

Closes #9303

refactor: split resolve_server() into functions

This commit splits the branch-heavy resolve_server() function into
various sub-functions, in order to reduce the amount of nested
if/e

refactor: split resolve_server() into functions

This commit splits the branch-heavy resolve_server() function into
various sub-functions, in order to reduce the amount of nested
if/else-statements.

Beside this, it also removes many else-sequences, by returning in the
previous if-statement.

Closes #9283

show more ...

schannel: re-indent to use curl style better

Only white space changes

Closes #9301

docs/cmdline-opts: fix example and categories for --form-escape

The example was missing a "--form" argument
I also replaced "--form" with "-F" to shorten the line a bit since it
was

docs/cmdline-opts: fix example and categories for --form-escape

The example was missing a "--form" argument
I also replaced "--form" with "-F" to shorten the line a bit since it
was already very long.

And I also moved --form-escape from the "post" category to the "upload"
category (this is what I originally wanted to fix, before also noticing
the mistake in the example).

Closes #9298

show more ...

HTTP3.md: update to msh3 v0.4.0

Closes #9297

hostip: resolve *.localhost to 127.0.0.1/::1

Following the footsteps of other clients like Firefox/Chrome. RFC 6761
says clients SHOULD do this.

Add test 389 to verify.

hostip: resolve *.localhost to 127.0.0.1/::1

Following the footsteps of other clients like Firefox/Chrome. RFC 6761
says clients SHOULD do this.

Add test 389 to verify.

Reported-by: TheKnarf on github
Fixes #9192
Closes #9296

show more ...

KNOWN_BUGS: long paths are not fully supported on Windows

Bug: https://github.com/curl/curl/issues/8361
Reported-by: Gisle Vanem

Closes https://github.com/curl/curl/pull/9288