mirror/curl
2
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2024-12-15 06:40:09 +08:00
Code Issues Packages Projects Releases Wiki Activity
28,037 Commits 15 Branches 222 Tags 186 MiB
eec5ce4ab4
Commit Graph

28037 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Daniel Stenberg
eec5ce4ab4
urlapi: if possible, shorten given numerical IPv6 addresses 
Extended test 1560 to verify

Closes #8206
 2022-01-02 22:59:08 +01:00
MAntoniak
1f31bdb10b
url: reduce ssl backend count for CURL_DISABLE_PROXY builds 
Closes #8212
 2022-01-02 22:53:47 +01:00
Daniel Stenberg
78dcbe40a6
KNOWN_BUGS: "Trying local ports fails on Windows" 
Reported-by: gclinch on github
Closes #8112
 2022-01-01 17:59:56 +01:00
Daniel Stenberg
d8f6e5dc8e
misc: update copyright year range 2021-12-30 14:17:47 +01:00
Daniel Stenberg
4ad6b69e79
zuul: remove the wolfssl even more 
Follow-up to 1914465cf1
 2021-12-30 14:15:33 +01:00
Daniel Stenberg
e1b04106f8
examples/multi-single.c: remove WAITMS() 
As it isn't used.

Reported-by: Melroy van den Berg
Fixes #8200
Closes #8201
 2021-12-30 13:55:54 +01:00
Daniel Stenberg
a4d9876c31
gtls: add gnutls include for the session type 
Follow-up to 8fbd6feddf to make it build more universally
 2021-12-29 23:46:13 +01:00
Daniel Stenberg
e9021838db
m4/curl-compilers: tell clang -Wno-pointer-bool-conversion 
To hush compiler warnings we don't care for: error: address of function
'X' will always evaluate to 'true'

Fixes #8197
Closes #8198
 2021-12-29 23:20:57 +01:00
Daniel Stenberg
f77292663c
http_proxy: don't close the socket (too early) 
... and double-check in the OpenSSL shutdown that the socket is actually
still there before it is used.

Fixes #8193
Closes #8195

Reported-by: Leszek Kubik
 2021-12-29 23:20:03 +01:00
Daniel Stenberg
8fbd6feddf
ngtcp2: verify the server certificate for the gnutls case 
Closes #8178
 2021-12-28 23:34:30 +01:00
Daniel Stenberg
c148f0f551
ngtcp2: verify the server cert on connect (quictls) 
Make ngtcp2+quictls correctly acknowledge `CURLOPT_SSL_VERIFYPEER` and
`CURLOPT_SSL_VERIFYHOST`.

The name check now uses a function from lib/vtls/openssl.c which will
need attention for when TLS is not done by OpenSSL or is disabled while
QUIC is enabled.

Possibly the servercert() function in openssl.c should be adjusted to be
able to use for both regular TLS and QUIC.

Ref: #8173
Closes #8178
 2021-12-28 23:34:23 +01:00
Daniel Stenberg
1914465cf1
zuul: remove the wolfssl build 2021-12-28 15:44:35 +01:00
Daniel Stenberg
d82ad1f1ea
github workflow: add wolfssl 
Closes #8196
 2021-12-28 15:44:29 +01:00
Nicolas Sterchele
e7f9c904ca
zuul: fix quiche build pointing to wrong Cargo 
Fixes #8184
Closes #8189
 2021-12-27 23:40:48 +01:00
Daniel Stenberg
21248e052d
checksrc: detect more kinds of NULL comparisons we avoid 
Co-authored-by: Jay Satiro
Closes #8180
 2021-12-27 23:39:26 +01:00
Daniel Stenberg
acaa79f961
RELEASE-NOTES: synced 2021-12-27 22:54:22 +01:00
Daniel Stenberg
7a08bb709c
mesalink: remove the BACKEND define kludge 
Closes #8183
 2021-12-26 18:33:07 +01:00
Daniel Stenberg
b8ef4a845b
schannel: remove the BACKEND define kludge 
Closes #8182
 2021-12-26 11:59:28 +01:00
Daniel Stenberg
4a2ab69ab5
gtls: check return code for gnutls_alpn_set_protocols 
Closes #8181
 2021-12-26 11:28:23 +01:00
Stefan Huber
7c1ede7b69
README: label the link to the support document 
Closes #8185
 2021-12-26 11:08:53 +01:00
Daniel Stenberg
d4492b6d12
docs/HTTP3: describe how to setup a h3 reverse-proxy for testing 
Assisted-by: Matt Holt

Closes #8177
 2021-12-23 17:28:13 +01:00
Daniel Stenberg
193053e2ed
libcurl-multi.3: "SOCKS proxy handshakes" are not blocking 
Since 4a4b63daaa
 2021-12-23 10:19:06 +01:00
Vladimir Panteleev
2c1dbc1af0
tests: Add test for CURLOPT_HTTP200ALIASES 2021-12-21 08:45:06 +01:00
Vladimir Panteleev
1b9f1f6055
http: Fix CURLOPT_HTTP200ALIASES 
The httpcode < 100 check was also triggered when none of the fields were
parsed, thus making the if(!nc) block unreachable.

Closes #8171
 2021-12-21 08:44:55 +01:00
Daniel Stenberg
ef4dc1b5be
RELEASE-NOTES: synced 2021-12-20 16:19:41 +01:00
Daniel Stenberg
e7e5cc4c63
language: "email" 
Missed three occurrences.

Follow-up to 7a92f86
 2021-12-20 13:49:37 +01:00
Daniel Stenberg
556a42edfb
nss:set_cipher don't clobber the cipher list 
The string is set by the user and needs to remain intact for proper
connection reuse etc.

Reported-by: Eric Musser
Fixes #8160
Closes #8161
 2021-12-20 10:51:44 +01:00
Daniel Stenberg
7a92f865b4
misc: s/e-mail/email 
Consistency is king. Following the lead in everything curl.

Closes #8159
 2021-12-19 23:48:13 +01:00
Tobias Nießen
b29af4a406
docs: fix typo in OpenSSL 3 build instructions 
Closes #8162
 2021-12-18 16:22:12 +01:00
Daniel Stenberg
ed0bc61e31
linkcheck.yml: add CI job that checks markdown links 
Closes #8158
 2021-12-17 09:17:09 +01:00
Daniel Stenberg
4bf36e2b2d
RELEASE-PROCEDURE.md: remove ICAL link and old release dates 2021-12-17 09:17:09 +01:00
Daniel Stenberg
97f15c2348
BINDINGS.md: "markdown-link-check-disable" 
It feels a bit unfortunate to litter an ugly tag for this functionality,
but if we get link scans of all markdown files, this might be worth the
price.
 2021-12-17 09:17:08 +01:00
Daniel Stenberg
1760258b16
docs: fix dead links, remove ECH.md 2021-12-17 09:17:08 +01:00
Jay Satiro
79d6057f1b openssl: define HAVE_OPENSSL_VERSION for OpenSSL 1.1.0+ 
Prior to this change OpenSSL_version was only detected in configure
builds. For other builds the old version parsing code was used which
would result in incorrect versioning for OpenSSL 3:

Before:

curl 7.80.0 (i386-pc-win32) libcurl/7.80.0 OpenSSL/3.0.0a zlib/1.2.11
WinIDN libssh2/1.9.0

After:

curl 7.80.0 (i386-pc-win32) libcurl/7.80.0 OpenSSL/3.0.1 zlib/1.2.11
WinIDN libssh2/1.9.0

Reported-by: lllaffer@users.noreply.github.com

Fixes https://github.com/curl/curl/issues/8154
Closes https://github.com/curl/curl/pull/8155
 2021-12-16 13:49:52 -05:00
xquery
cb26b2c7a7
docs: add known bugs list to HTTP3.md 
Closes #8156
 2021-12-16 10:39:49 +01:00
Dan Fandrich
4a09a85d55 BINDINGS: add one from Everything curl and update a link 2021-12-15 22:27:20 -08:00
Dan Fandrich
bedd44f434 libcurl-security.3: mention address and URL mitigations 
The new CURLOPT_PREREQFUNCTION callback is another way to sanitize
addresses.
Using the curl_url API is a way to mitigate against attacks relying on
URL parsing differences.
 2021-12-15 00:14:29 -08:00
Daniel Stenberg
b9239ba01b
RELEASE-NOTES: synced 2021-12-15 08:50:01 +01:00
Daniel Stenberg
c9e0549113
x509asn1: return early on errors 
Overhaul to make sure functions that detect errors bail out early with
error rather than trying to continue and risk hiding the problem.

Closes #8147
 2021-12-15 08:19:29 +01:00
Patrick Monnerat
cdc1da9120
openldap: several minor improvements 
- Early check proper LDAP URL syntax. Reject URLs with a userinfo part.
- Use dynamic memory for ldap_init_fd() URL rather than a
  stack-allocated buffer.
- Never chase referrals: supporting it would require additional parallel
  connections and alternate authentication credentials.
- Do not wait 1 microsecond while polling/reading query response data.
- Store last received server code for retrieval with CURLINFO_RESPONSE_CODE.

Closes #8140
 2021-12-15 08:07:53 +01:00
MAntoniak
39406280bb
misc: remove unused doh flags when CURL_DISABLE_DOH is defined 
Closes #8148
 2021-12-15 08:01:21 +01:00
Daniel Stenberg
867ad1cd8b
mbedtls: fix CURLOPT_SSLCERT_BLOB 
The memory passed to mbedTLS for this needs to be null terminated.

Reported-by: Florian Van Heghe
Closes #8146
 2021-12-14 15:35:54 +01:00
Daniel Stenberg
64e8bf9ff4
asyn-ares: ares_getaddrinfo needs no happy eyeballs timer 
Closes #8142
 2021-12-14 15:34:43 +01:00
Daniel Stenberg
771ca5d000
mailmap: add Yongkang Huang 
From #8141
 2021-12-14 14:48:30 +01:00
MrDwZ
1cdfdcde3b check ssl_config when re-use proxy connection 2021-12-14 14:46:10 +01:00
Daniel Stenberg
9d0d16d435
mbedtls: do a separate malloc for ca_info_blob 
Since the mbedTLS API requires the data to the null terminated.

Follow-up to 456c53730d

Fixes #8139
Closes #8145
 2021-12-14 11:52:14 +01:00
Marc Hoersken
f03cc1b7a6
CI: build examples for additional code verification 
Some CIs already build them, let's do it on more of them.

Reviewed-by: Daniel Stenberg

Follow up to #7690 and 77311f420a
Replaces #7591
Closes #7922
 2021-12-14 07:53:39 +01:00
Marc Hoersken
77311f420a
docs/examples: workaround broken -Wno-pedantic-ms-format 
Avoid CURL_FORMAT_CURL_OFF_T by using unsigned long instead.
Improve size_t to long conversion in imap-append.c example.

Ref: https://github.com/curl/curl/issues/6079
Ref: https://github.com/curl/curl/pull/6082
Assisted-by: Jay Satiro
Reviewed-by: Daniel Stenberg

Preparation of #7922
 2021-12-14 07:52:26 +01:00
Marc Hoersken
52202691d1
tests/data/test302[12]: fix MSYS2 path conversion of hostpubsha256 
Ref: https://www.msys2.org/wiki/Porting/#filesystem-namespaces

Reviewed-by: Marcel Raad
Reviewed-by: Jay Satiro

Fixes #8084
Closes #8138
 2021-12-14 07:43:16 +01:00
Patrick Monnerat
2300ad26d3
openldap: simplify ldif generation code 
and take care of zero-length values, avoiding conversion to base64
and/or trailing spaces.

Closes #8136
 2021-12-13 15:57:19 +01:00