]> granicus.if.org Git - curl/log
curl
5 years agoopenssl: fix warning with boringssl and SSL_CTX_set_min_proto_version
Daniel Stenberg [Sun, 15 Sep 2019 21:58:49 +0000 (23:58 +0200)]
openssl: fix warning with boringssl and SSL_CTX_set_min_proto_version

Follow-up to ffe34b7b59
Closes #4359

5 years agodoh: fix undefined behaviour and open up for gcc and clang optimization
Paul Dreik [Fri, 13 Sep 2019 18:06:21 +0000 (20:06 +0200)]
doh: fix undefined behaviour and open up for gcc and clang optimization

The undefined behaviour is annoying when running fuzzing with
sanitizers. The codegen is the same, but the meaning is now not up for
dispute. See https://cppinsights.io/s/516a2ff4

By incrementing the pointer first, both gcc and clang recognize this as
a bswap and optimizes it to a single instruction.  See
https://godbolt.org/z/994Zpx

Closes #4350

5 years agodoh: fix (harmless) buffer overrun
Paul Dreik [Sat, 14 Sep 2019 01:16:09 +0000 (03:16 +0200)]
doh: fix (harmless) buffer overrun

Added unit test case 1655 to verify.
Close #4352

the code correctly finds the flaws in the old code,
if one temporarily restores doh.c to the old version.

5 years agodocs: remove trailing ':' from section names in CURLOPT_TRAILER* man
Alessandro Ghedini [Sat, 14 Sep 2019 18:47:34 +0000 (19:47 +0100)]
docs: remove trailing ':' from section names in CURLOPT_TRAILER* man

5 years agodocs: fix typo in CURLOPT_HTTP_VERSION man
Alessandro Ghedini [Sat, 14 Sep 2019 18:44:29 +0000 (19:44 +0100)]
docs: fix typo in CURLOPT_HTTP_VERSION man

5 years agoCI: inintial github action job
Daniel Stenberg [Sat, 14 Sep 2019 18:25:43 +0000 (20:25 +0200)]
CI: inintial github action job

First shot at a CI build on github actions

5 years agoappveyor: add a winbuild
Daniel Stenberg [Wed, 11 Sep 2019 11:57:32 +0000 (13:57 +0200)]
appveyor: add a winbuild

Assisted-by: Marcel Raad
Assisted-by: Jay Satiro
Closes #4324

5 years agoFTP: allow "rubbish" prepended to the SIZE response
Daniel Stenberg [Thu, 12 Sep 2019 15:50:21 +0000 (17:50 +0200)]
FTP: allow "rubbish" prepended to the SIZE response

This is a protocol violation but apparently there are legacy proprietary
servers doing this.

Added test 336 and 337 to verify.

Reported-by: Philippe Marguinaud
Closes #4339

5 years agoFTP: skip CWD to entry dir when target is absolute
Zenju [Wed, 11 Sep 2019 18:04:28 +0000 (20:04 +0200)]
FTP: skip CWD to entry dir when target is absolute

Closes #4332

5 years agocurl: fix memory leaked by parse_metalink()
Kamil Dudka [Wed, 11 Sep 2019 14:32:11 +0000 (16:32 +0200)]
curl: fix memory leaked by parse_metalink()

This commit fixes a regression introduced by curl-7_65_3-5-gb88940850.
Detected by tests 2005, 2008, 2009, 2010, 2011, and 2012 with valgrind
and libmetalink enabled.

Closes #4326

5 years agoparsedate: still provide the name arrays when disabled
Daniel Stenberg [Thu, 12 Sep 2019 21:28:00 +0000 (23:28 +0200)]
parsedate: still provide the name arrays when disabled

If FILE or FTP are enabled, since they also use them!

Reported-by: Roland Hieber
Fixes #4325
Closes #4343

5 years agocurl:file2string: load large files much faster
Gilles Vollant [Thu, 12 Sep 2019 08:09:22 +0000 (10:09 +0200)]
curl:file2string: load large files much faster

... by using a more efficient realloc scheme.

Bug: https://curl.haxx.se/mail/lib-2019-09/0045.html
Closes #4336

5 years agoopenssl: close_notify on the FTP data connection doesn't mean closure
Daniel Stenberg [Thu, 12 Sep 2019 15:56:49 +0000 (17:56 +0200)]
openssl: close_notify on the FTP data connection doesn't mean closure

For FTPS transfers, curl gets close_notify on the data connection
without that being a signal to close the control connection!

Regression since 3f5da4e59a556fc (7.65.0)

Reported-by: Zenju on github
Reviewed-by: Jay Satiro
Fixes #4329
Closes #4340

5 years agodocs/HTTP3: fix `--with-ssl` ngtcp2 configure flag
Jimmy Gaussen [Thu, 12 Sep 2019 13:15:46 +0000 (15:15 +0200)]
docs/HTTP3: fix `--with-ssl` ngtcp2 configure flag

Closes #4338

5 years agoRELEASE-NOTES: synced
Daniel Stenberg [Thu, 12 Sep 2019 07:48:00 +0000 (09:48 +0200)]
RELEASE-NOTES: synced

5 years agocurlver: bump to 7.66.1
Daniel Stenberg [Thu, 12 Sep 2019 07:48:27 +0000 (09:48 +0200)]
curlver: bump to 7.66.1

5 years agosetopt: make it easier to add new enum values
Zenju [Wed, 11 Sep 2019 08:41:43 +0000 (10:41 +0200)]
setopt: make it easier to add new enum values

... by using the *_LAST define names better.

Closes #4321

5 years agoasyn-thread: s/AF_LOCAL/AF_UNIX for Solaris
Daniel Stenberg [Wed, 11 Sep 2019 21:11:58 +0000 (23:11 +0200)]
asyn-thread: s/AF_LOCAL/AF_UNIX for Solaris

Reported-by: Dagobert Michelsen
Fixes #4328
Closes #4333

5 years agowinbuild/MakefileBuild.vc: Add vssh
Bernhard Walle [Wed, 11 Sep 2019 10:56:54 +0000 (12:56 +0200)]
winbuild/MakefileBuild.vc: Add vssh

Without that modification, the Windows build using the makefiles doesn't
work.

Signed-off-by: Bernhard Walle <bernhard.walle@posteo.eu>
Fixes #4322
Closes #4323

5 years agowinbuild/MakefileBuild.vc: Fix line endings
Bernhard Walle [Wed, 11 Sep 2019 10:56:22 +0000 (12:56 +0200)]
winbuild/MakefileBuild.vc: Fix line endings

The file had mixed line endings.

Signed-off-by: Bernhard Walle <bernhard.walle@posteo.eu>
5 years agoldap: Stop using wide char version of ldapp_err2string
Jay Satiro [Tue, 27 Aug 2019 18:20:20 +0000 (14:20 -0400)]
ldap: Stop using wide char version of ldapp_err2string

Despite ldapp_err2string being documented by MS as returning a
PCHAR (char *), when UNICODE it is mapped to ldap_err2stringW and
returns PWCHAR (wchar_t *).

We have lots of code that expects ldap_err2string to return char *,
most of it failf used like this:

failf(data, "LDAP local: Some error: %s", ldap_err2string(rc));

Closes https://github.com/curl/curl/pull/4272

5 years agoRELEASE-NOTES: curl 7.66.0 curl-7_66_0
Daniel Stenberg [Mon, 9 Sep 2019 12:08:57 +0000 (14:08 +0200)]
RELEASE-NOTES: curl 7.66.0

5 years agoTHANKS: from the 7.66.0 release
Daniel Stenberg [Mon, 9 Sep 2019 12:10:32 +0000 (14:10 +0200)]
THANKS: from the 7.66.0 release

5 years agocurl: make sure the parallel transfers do them all
Daniel Stenberg [Tue, 10 Sep 2019 11:37:38 +0000 (13:37 +0200)]
curl: make sure the parallel transfers do them all

The logic could erroneously break the loop too early before all
transfers had been transferred.

Reported-by: Tom van der Woerdt
Fixes #4316
Closes #4317

5 years agourlapi: one colon is enough for the strspn() input (typo)
Daniel Stenberg [Tue, 10 Sep 2019 09:51:51 +0000 (11:51 +0200)]
urlapi: one colon is enough for the strspn() input (typo)

5 years agourlapi: verify the IPv6 numerical address
Daniel Stenberg [Wed, 4 Sep 2019 21:49:30 +0000 (23:49 +0200)]
urlapi: verify the IPv6 numerical address

It needs to parse correctly. Otherwise it could be tricked into letting
through a-f using host names that libcurl would then resolve. Like
'[ab.be]'.

Reported-by: Thomas Vegas
Closes #4315

5 years agoopenssl: use SSL_CTX_set_<min|max>_proto_version() when available
Clément Notin [Sun, 8 Sep 2019 14:44:54 +0000 (16:44 +0200)]
openssl: use SSL_CTX_set_<min|max>_proto_version() when available

OpenSSL 1.1.0 adds SSL_CTX_set_<min|max>_proto_version() that we now use
when available.  Existing code is preserved for older versions of
OpenSSL.

Closes #4304

5 years agoopenssl: indent, re-organize and add comments
Clément Notin [Sun, 8 Sep 2019 13:09:32 +0000 (15:09 +0200)]
openssl: indent, re-organize and add comments

5 years agosspi: fix memory leaks
migueljcrum [Fri, 6 Sep 2019 13:43:51 +0000 (13:43 +0000)]
sspi: fix memory leaks

Closes #4299

5 years agotravis: disable ngtcp2 builds (again)
Daniel Stenberg [Tue, 10 Sep 2019 06:02:06 +0000 (08:02 +0200)]
travis: disable ngtcp2 builds (again)

5 years agoCurl_fillreadbuffer: avoid double-free trailer buf on error
Daniel Stenberg [Wed, 4 Sep 2019 22:08:21 +0000 (00:08 +0200)]
Curl_fillreadbuffer: avoid double-free trailer buf on error

Reviewed-by: Jay Satiro
Reported-by: Thomas Vegas
Closes #4307

5 years agotool_setopt: handle a libcurl build without netrc support
Daniel Stenberg [Sun, 8 Sep 2019 21:47:56 +0000 (23:47 +0200)]
tool_setopt: handle a libcurl build without netrc support

Reported-by: codesniffer13 on github
Fixes #4302
Closes #4305

5 years agosecurity:read_data fix bad realloc()
Daniel Stenberg [Tue, 3 Sep 2019 20:59:32 +0000 (22:59 +0200)]
security:read_data fix bad realloc()

... that could end up a double-free

CVE-2019-5481
Bug: https://curl.haxx.se/docs/CVE-2019-5481.html

5 years agotftp: Alloc maximum blksize, and use default unless OACK is received
Thomas Vegas [Sat, 31 Aug 2019 15:30:51 +0000 (17:30 +0200)]
tftp: Alloc maximum blksize, and use default unless OACK is received

Fixes potential buffer overflow from 'recvfrom()', should the server
return an OACK without blksize.

Bug: https://curl.haxx.se/docs/CVE-2019-5482.html
CVE-2019-5482

5 years agotftp: return error when packet is too small for options
Thomas Vegas [Sat, 31 Aug 2019 14:59:56 +0000 (16:59 +0200)]
tftp: return error when packet is too small for options

5 years agoKNOWN_BUGS/TODO: cleanup and remove outdated issues
Daniel Stenberg [Thu, 5 Sep 2019 12:21:59 +0000 (14:21 +0200)]
KNOWN_BUGS/TODO: cleanup and remove outdated issues

5 years agoRELEASE-NOTES: synced
Daniel Stenberg [Wed, 4 Sep 2019 09:17:14 +0000 (11:17 +0200)]
RELEASE-NOTES: synced

5 years agonetrc: free 'home' on error
Daniel Stenberg [Tue, 3 Sep 2019 11:46:36 +0000 (13:46 +0200)]
netrc: free 'home' on error

Follow-up to f9c7ba9096ec2

Coverity CID 1453474

Closes #4291

5 years agourldata: avoid 'generic', use dedicated pointers
Daniel Stenberg [Tue, 3 Sep 2019 11:31:44 +0000 (13:31 +0200)]
urldata: avoid 'generic', use dedicated pointers

For the 'proto' union within the connectdata struct.

Closes #4290

5 years agocleanup: move functions out of url.c and make them static
Daniel Stenberg [Mon, 2 Sep 2019 21:22:15 +0000 (23:22 +0200)]
cleanup: move functions out of url.c and make them static

Closes #4289

5 years agosmtp: check for and bail out on too short EHLO response
Daniel Stenberg [Mon, 2 Sep 2019 21:04:26 +0000 (23:04 +0200)]
smtp: check for and bail out on too short EHLO response

Otherwise, a three byte response would make the smtp_state_ehlo_resp()
function misbehave.

Credit to OSS-Fuzz
Bug: https://crbug.com/oss-fuzz/16918

Assisted-by: Max Dymond
Closes #4287

5 years agosmb: init *msg to NULL in smb_send_and_recv()
Daniel Stenberg [Mon, 2 Sep 2019 13:28:30 +0000 (15:28 +0200)]
smb: init *msg to NULL in smb_send_and_recv()

... it might otherwise return OK from this function leaving that pointer
uninitialized.

Bug: https://crbug.com/oss-fuzz/16907

Closes #4286

5 years agoROADMAP: updated after recent user poll
Daniel Stenberg [Mon, 2 Sep 2019 07:49:31 +0000 (09:49 +0200)]
ROADMAP: updated after recent user poll

In rough prio order

5 years agoTHANKS: remove duplicate
Daniel Stenberg [Sat, 31 Aug 2019 10:10:36 +0000 (12:10 +0200)]
THANKS: remove duplicate

5 years agoCurl_addr2string: take an addrlen argument too
Daniel Stenberg [Fri, 30 Aug 2019 09:29:55 +0000 (11:29 +0200)]
Curl_addr2string: take an addrlen argument too

This allows the function to figure out if a unix domain socket has a
file name or not associated with it! When a socket is created with
socketpair(), as done in the fuzzer testing, the path struct member is
uninitialized and must not be accessed.

Bug: https://crbug.com/oss-fuzz/16699

Closes #4283

5 years agoCMake: remove needless newlines at end of gss variables
Rolf Eike Beer [Thu, 29 Aug 2019 12:55:24 +0000 (14:55 +0200)]
CMake: remove needless newlines at end of gss variables

5 years agoCI: remove duplicate configure flag for LGTM.com
Rolf Eike Beer [Thu, 29 Aug 2019 08:08:31 +0000 (10:08 +0200)]
CI: remove duplicate configure flag for LGTM.com

5 years agoCMake: use platform dependent name for dlopen() library
Rolf Eike Beer [Thu, 29 Aug 2019 07:54:10 +0000 (09:54 +0200)]
CMake: use platform dependent name for dlopen() library

Closes #4279

5 years agoquiche: expire when poll returned data
Daniel Stenberg [Thu, 29 Aug 2019 16:56:24 +0000 (18:56 +0200)]
quiche: expire when poll returned data

... to make sure we continue draining the queue until empty

Closes #4281

5 years agoquiche: decrease available buffer size, don't assign it!
Daniel Stenberg [Thu, 29 Aug 2019 16:55:29 +0000 (18:55 +0200)]
quiche: decrease available buffer size, don't assign it!

Found-by: Jeremy Lainé
5 years agoRELEASE-NOTES: synced
Daniel Stenberg [Thu, 29 Aug 2019 21:43:44 +0000 (23:43 +0200)]
RELEASE-NOTES: synced

5 years agocurl: fix include conditions
lufia [Wed, 28 Aug 2019 16:11:47 +0000 (01:11 +0900)]
curl: fix include conditions

5 years agoplan9: fix installation instructions
lufia [Wed, 28 Aug 2019 16:09:49 +0000 (01:09 +0900)]
plan9: fix installation instructions

Closes #4276

5 years agongtcp2: on h3 stream close, call expire
Daniel Stenberg [Wed, 28 Aug 2019 12:39:07 +0000 (14:39 +0200)]
ngtcp2: on h3 stream close, call expire

... to trigger a new read to detect the stream close!

Closes #4275

5 years agongtcp2: build latest ngtcp2 and ngtcp2_crypto_openssl
Tatsuhiro Tsujikawa [Thu, 29 Aug 2019 07:09:26 +0000 (16:09 +0900)]
ngtcp2: build latest ngtcp2 and ngtcp2_crypto_openssl

Closes #4278

5 years agongtcp2: set flow control window to stream buffer size
Daniel Stenberg [Wed, 28 Aug 2019 10:19:42 +0000 (12:19 +0200)]
ngtcp2: set flow control window to stream buffer size

Closes #4274

5 years agoCURLOPT_HEADERFUNCTION.3: clarify
Christopher Head [Wed, 28 Aug 2019 03:01:25 +0000 (20:01 -0700)]
CURLOPT_HEADERFUNCTION.3: clarify

Closes #4273

5 years agoCURLINFO docs: mention that in redirects times are added
Daniel Stenberg [Mon, 26 Aug 2019 21:36:39 +0000 (23:36 +0200)]
CURLINFO docs: mention that in redirects times are added

Suggested-by: Brandon Dong
Fixes #4250
Closes #4269

5 years agotravis: enable ngtcp2 builds again
Daniel Stenberg [Tue, 27 Aug 2019 15:03:40 +0000 (17:03 +0200)]
travis: enable ngtcp2 builds again

Switched to the openssl-quic-draft-22 openssl branch.

Closes #4271

5 years agoHTTP3: switched openssl branch to use
Daniel Stenberg [Tue, 27 Aug 2019 15:07:47 +0000 (17:07 +0200)]
HTTP3: switched openssl branch to use

5 years agongtcp2: Build with latest ngtcp2 and ngtcp2_crypto_openssl
Tatsuhiro Tsujikawa [Tue, 27 Aug 2019 13:00:34 +0000 (22:00 +0900)]
ngtcp2: Build with latest ngtcp2 and ngtcp2_crypto_openssl

Closes #4270

5 years agohttp2: when marked for closure and wanted to close == OK
Daniel Stenberg [Mon, 26 Aug 2019 14:00:05 +0000 (16:00 +0200)]
http2: when marked for closure and wanted to close == OK

It could otherwise return an error even when closed correctly if GOAWAY
had been received previously.

Reported-by: Tom van der Woerdt
Fixes #4267
Closes #4268

5 years agoRELEASE-NOTES: synced
Daniel Stenberg [Mon, 26 Aug 2019 12:45:41 +0000 (14:45 +0200)]
RELEASE-NOTES: synced

5 years agobuild-openssl: fix build with Visual Studio 2019
Daniel Stenberg [Mon, 26 Aug 2019 10:06:47 +0000 (12:06 +0200)]
build-openssl: fix build with Visual Studio 2019

Reviewed-by: Marcel Raad
Contributed-by: osabc on github
Fixes #4188
Closes #4266

5 years agovauth: return CURLE_AUTH_ERROR on gss_init_sec_context() failure
Kamil Dudka [Wed, 14 Aug 2019 07:47:17 +0000 (09:47 +0200)]
vauth: return CURLE_AUTH_ERROR on gss_init_sec_context() failure

This is a follow-up to https://github.com/curl/curl/pull/3864 .

Closes #4224

5 years agoKNOWN_BUGS: USE_UNIX_SOCKETS on Windows
Daniel Stenberg [Mon, 26 Aug 2019 10:11:29 +0000 (12:11 +0200)]
KNOWN_BUGS: USE_UNIX_SOCKETS on Windows

Closes #4040

5 years agoquiche: send the HTTP body correctly on callback uploads
Daniel Stenberg [Fri, 23 Aug 2019 15:47:36 +0000 (17:47 +0200)]
quiche: send the HTTP body correctly on callback uploads

Closes #4265

5 years agotravis: disable ngtcp2 builds (temporarily)
Daniel Stenberg [Sun, 25 Aug 2019 21:25:20 +0000 (23:25 +0200)]
travis: disable ngtcp2 builds (temporarily)

Just too many API changes right now

Closes #4264

5 years agongtcp2: add support for SSLKEYLOGFILE
Daniel Stenberg [Sat, 24 Aug 2019 17:11:25 +0000 (19:11 +0200)]
ngtcp2: add support for SSLKEYLOGFILE

Closes #4260

5 years agongtcp2: improve h3 response receiving
Daniel Stenberg [Sat, 24 Aug 2019 16:43:31 +0000 (18:43 +0200)]
ngtcp2: improve h3 response receiving

Closes #4259

5 years agongtcp2: use nghttp3_version()
Daniel Stenberg [Sun, 25 Aug 2019 16:09:37 +0000 (18:09 +0200)]
ngtcp2: use nghttp3_version()

5 years agongtcp2: sync with upstream API changes
Daniel Stenberg [Sat, 24 Aug 2019 22:06:30 +0000 (00:06 +0200)]
ngtcp2: sync with upstream API changes

Assisted-by: Tatsuhiro Tsujikawa
5 years agoscp: fix directory name length used in memcpy
Kyle Abramowitz [Thu, 22 Aug 2019 20:58:26 +0000 (20:58 +0000)]
scp: fix directory name length used in memcpy

Fix read off end of array due to bad pointer math in getworkingpath for
SCP home directory case.

Closes #4258

5 years agohttp: the 'closed' struct field is used by both ngh2 and ngh3
Daniel Stenberg [Sat, 24 Aug 2019 08:45:18 +0000 (10:45 +0200)]
http: the 'closed' struct field is used by both ngh2 and ngh3

and remove 'header_recvbuf', not used for anything

Reported-by: Jeremy Lainé
Closes #4257

5 years agongtcp2: accept upload via callback
Daniel Stenberg [Thu, 22 Aug 2019 12:08:18 +0000 (14:08 +0200)]
ngtcp2: accept upload via callback

Closes #4256

5 years agodefines: avoid underscore-prefixed defines
Daniel Stenberg [Thu, 22 Aug 2019 13:29:14 +0000 (15:29 +0200)]
defines: avoid underscore-prefixed defines

Double-underscored or underscore plus uppercase letter at least.

... as they're claimed to be reserved.

Reported-by: patnyb on github
Fixes #4254
Closes #4255

5 years agotravis: add a build using ngtcp2 + nghttp3 (and a patched OpenSSL)
Daniel Stenberg [Thu, 22 Aug 2019 07:03:30 +0000 (09:03 +0200)]
travis: add a build using ngtcp2 + nghttp3 (and a patched OpenSSL)

Runs no tests

Closes #4253

5 years agotravis: bump to using nghttp2 version 1.39.2
Daniel Stenberg [Wed, 21 Aug 2019 06:29:59 +0000 (08:29 +0200)]
travis: bump to using nghttp2 version 1.39.2

Closes #4252

5 years agodocs/examples/curlx: fix errors
Gisle Vanem [Tue, 20 Aug 2019 13:17:16 +0000 (15:17 +0200)]
docs/examples/curlx: fix errors

Initialise 'mimetype' and require the -p12 arg.

Closes #4248

5 years agocleanup: remove DOT_CHAR completely
Daniel Stenberg [Tue, 20 Aug 2019 11:22:15 +0000 (13:22 +0200)]
cleanup: remove DOT_CHAR completely

Follow-up to f9c7ba9096ec

The use of DOT_CHAR for ".ssh" was probably a mistake and is removed
now.

Pointed-out-by: Gisle Vanem
Bug: https://github.com/curl/curl/pull/4230#issuecomment-522960638

Closes #4247

5 years agospnego_sspi: add typecast to fix build warning
Daniel Stenberg [Tue, 20 Aug 2019 09:44:18 +0000 (11:44 +0200)]
spnego_sspi: add typecast to fix build warning

Reported in build "Win32 target on Debian Stretch (64-bit) -
i686-w64-mingw32 - gcc-20170516"

Closes #4245

5 years agoopenssl: build warning free with boringssl
Daniel Stenberg [Tue, 20 Aug 2019 09:30:25 +0000 (11:30 +0200)]
openssl: build warning free with boringssl

Closes #4244

5 years agocurl: make --libcurl use CURL_HTTP_VERSION_3
Daniel Stenberg [Tue, 20 Aug 2019 09:10:28 +0000 (11:10 +0200)]
curl: make --libcurl use CURL_HTTP_VERSION_3

Closes #4243

5 years agongtcp2: make postfields-set posts work
Daniel Stenberg [Tue, 20 Aug 2019 09:01:36 +0000 (11:01 +0200)]
ngtcp2: make postfields-set posts work

Closes #4242

5 years agohttp: remove chunked-encoding and expect header use for HTTP/3
Daniel Stenberg [Tue, 20 Aug 2019 07:59:28 +0000 (09:59 +0200)]
http: remove chunked-encoding and expect header use for HTTP/3

5 years agoconfigure: use pkg-config to detect quiche
Alessandro Ghedini [Sun, 18 Aug 2019 14:03:51 +0000 (15:03 +0100)]
configure: use pkg-config to detect quiche

This removes the need to hard-code the quiche target path in
configure.ac.

This depends on https://github.com/cloudflare/quiche/pull/128

Closes #4237

5 years agoCURLOPT_SSL_VERIFYHOST: treat the value 1 as 2
Daniel Stenberg [Tue, 20 Aug 2019 07:13:55 +0000 (09:13 +0200)]
CURLOPT_SSL_VERIFYHOST: treat the value 1 as 2

For a long time (since 7.28.1) we've returned error when setting the
value to 1 to make applications notice that we stopped supported the old
behavior for 1. Starting now, we treat 1 and 2 exactly the same.

Closes #4241

5 years agocurl: use .curlrc (with a dot) on Windows as well
Daniel Stenberg [Fri, 16 Aug 2019 09:31:29 +0000 (11:31 +0200)]
curl: use .curlrc (with a dot) on Windows as well

Fall-back to _curlrc if the dot-version is missing.

Co-Authored-By: Steve Holme
Closes #4230

5 years agonetrc: make the code try ".netrc" on Windows as well
Daniel Stenberg [Fri, 16 Aug 2019 09:30:29 +0000 (11:30 +0200)]
netrc: make the code try ".netrc" on Windows as well

... but fall back and try "_netrc" too if the dot version didn't work.

Co-Authored-By: Steve Holme
5 years agongtcp2: use ngtcp2_version() to get the run-time version
Daniel Stenberg [Mon, 19 Aug 2019 21:04:45 +0000 (23:04 +0200)]
ngtcp2: use ngtcp2_version() to get the run-time version

... which of course doesn't have to be the same used at build-time.

Function just recently merged in ngtcp2.

5 years agongtcp2: move the h3 initing to immediately after the rx key
Daniel Stenberg [Tue, 20 Aug 2019 06:49:56 +0000 (08:49 +0200)]
ngtcp2: move the h3 initing to immediately after the rx key

To fix a segfault and to better deal with 0-RTT

Assisted-by: Tatsuhiro Tsujikawa
5 years agoquiche: register debug callback once and earlier
Alessandro Ghedini [Sat, 17 Aug 2019 14:04:33 +0000 (15:04 +0100)]
quiche: register debug callback once and earlier

The quiche debug callback is global and can only be initialized once, so
make sure we don't do it multiple times (e.g. if multiple requests are
executed).

In addition this initializes the callback before the connection is
created, so we get logs for the handshake as well.

Closes #4236

5 years agossh: add a generic Curl_ssh_version function for SSH backends
Daniel Stenberg [Fri, 16 Aug 2019 13:32:05 +0000 (15:32 +0200)]
ssh: add a generic Curl_ssh_version function for SSH backends

Closes #4235

5 years agobase64: check for SSH, not specific SSH backends
Daniel Stenberg [Fri, 16 Aug 2019 14:19:43 +0000 (16:19 +0200)]
base64: check for SSH, not specific SSH backends

5 years agovssh: move ssh init/cleanup functions into backend code
Daniel Stenberg [Fri, 16 Aug 2019 14:16:33 +0000 (16:16 +0200)]
vssh: move ssh init/cleanup functions into backend code

5 years agovssh: create directory for SSH backend code
Daniel Stenberg [Fri, 16 Aug 2019 14:01:42 +0000 (16:01 +0200)]
vssh: create directory for SSH backend code

5 years agoTODO/ROADMAP: remove "refuse downgrade redirects" and HTTP/3
Daniel Stenberg [Fri, 16 Aug 2019 21:18:45 +0000 (23:18 +0200)]
TODO/ROADMAP: remove "refuse downgrade redirects" and HTTP/3

HTTP3 is now already in full progress

Downgrade redirects can be achived almost exactly like that by setting
CURLOPT_REDIR_PROTOCOLS.

5 years agoRELEASE-NOTES: synced
Daniel Stenberg [Thu, 15 Aug 2019 21:00:42 +0000 (23:00 +0200)]
RELEASE-NOTES: synced

5 years agotravis: add a quiche build
Daniel Stenberg [Sat, 10 Aug 2019 21:28:57 +0000 (23:28 +0200)]
travis: add a quiche build

Closes #4207

5 years agohttp: fix use of credentials from URL when using HTTP proxy
Daniel Stenberg [Thu, 15 Aug 2019 15:50:02 +0000 (17:50 +0200)]
http: fix use of credentials from URL when using HTTP proxy

When a username and password are provided in the URL, they were wrongly
removed from the stored URL so that subsequent uses of the same URL
wouldn't find the crendentials. This made doing HTTP auth with multiple
connections (like Digest) mishave.

Regression from 46e164069d1a5230 (7.62.0)

Test case 335 added to verify.

Reported-by: Mike Crowe
Fixes #4228
Closes #4229