6 Commits

Author	SHA1	Message	Date
Harry Sintonen	3aa3cc9b05	misc: better random strings ... Generate alphanumerical random strings. Prior this change curl used to create random hex strings. This was mostly okay, but having alphanumerical random strings is better: The strings have more entropy in the same space. The MIME multipart boundary used to be mere 64-bits of randomness due to being 16 hex chars. With these changes the boundary is 22 alphanumerical chars, or little over 130 bits of randomness. Closes #11838	2023-09-16 11:37:57 +02:00
SaltyMilk	0c667188e0	fopen: optimize ... Closes #11419	2023-07-11 19:43:51 +02:00
Marcel Raad	06dc599405	fopen: fix conversion warning on 32-bit Android ... When building for 32-bit ARM or x86 Android, `st_mode` is defined as `unsigned int` instead of `mode_t`, resulting in a -Wimplicit-int-conversion clang warning because `mode_t` is `unsigned short`. Add a cast to silence the warning. Ref: https://android.googlesource.com/platform/bionic/+/refs/tags/ndk-r25c/libc/include/sys/stat.h#86 Closes https://github.com/curl/curl/pull/11313	2023-06-14 09:31:47 +02:00
Kvarec Lezki	74040ddecb	fopen: remove unnecessary assignment ... [CWE-1164] V1048: The '* tempname' variable was assigned the same value. Ref: https://pvs-studio.com/en/docs/warnings/v1048/ Closes https://github.com/curl/curl/pull/10398	2023-02-05 03:15:08 -05:00
Daniel Stenberg	2bc1d775f5	copyright: update all copyright lines and remove year ranges ... - they are mostly pointless in all major jurisdictions - many big corporations and projects already don't use them - saves us from pointless churn - git keeps history for us - the year range is kept in COPYING checksrc is updated to allow non-year using copyright statements Closes #10205	2023-01-03 09:19:21 +01:00
Daniel Stenberg	20f9dd6bae	fopen: add Curl_fopen() for better overwriting of files ... Bug: https://curl.se/docs/CVE-2022-32207.html CVE-2022-32207 Reported-by: Harry Sintonen Closes #9050	2022-06-26 11:03:57 +02:00