Skip to content
RELEASE-NOTES 3.3 KiB
Newer Older
Curl and libcurl 7.42.0
 Public curl releases:         145
 Command line options:         163
 curl_easy_setopt() options:   209
 Contributors:                 1233
This release includes the following changes:
 o openssl: show the cipher selection to use in verbose text
This release includes the following bugfixes:

 o sws: timeout idle CONNECT connections
 o nss: improve error handling in Curl_nss_random()
 o nss: do not skip Curl_nss_seed() if data is NULL
 o curl-config.in: eliminate double quotes around CURL_CA_BUNDLE
 o http2: move lots of verbose output to be debug-only
 o dist: add extern-scan.pl to the tarball
 o http2: return recv error on unexpected EOF [1]
 o build: Use default RandomizedBaseAddress directive in VC9+ project files
 o build: Removed DataExecutionPrevention directive from VC9+ project files
 o tool: Updated the warnf() function to use the GlobalConfig structure
 o http2: Return error if stream was closed with other than NO_ERROR
 o mprintf.h: remove #ifdef CURLDEBUG
 o libtest: fixed linker errors on msvc [6]
 o tool: use ENABLE_CURLX_PRINTF instead of _MPRINTF_REPLACE
 o curl.1: fix "The the" typo
 o cmake: handle build definitions CURLDEBUG/DEBUGBUILD
 o openssl: remove all uses of USE_SSLEAY
 o multi: fix memory-leak on timeout (regression) [4]
 o curl_easy_setopt.3: added CURLOPT_SSL_VERIFYSTATUS
 o metalink: add some error checks [3]
 o TLS: make it possible to enable ALPN/NPN without HTTP/2
 o http2: use CURL_HTTP_VERSION_* symbols instead of NPN_*
 o conncontrol: only log changes to the connection bit
 o multi: fix *getsock() with CONNECT [2]
 o symbols.pl: handle '-' in the deprecated field [5]
 o MacOSX-Framework: use @rpath instead of @executable_path [7]
 o GnuTLS: add support for CURLOPT_CAPATH
 o GnuTLS: print negotiated TLS version and full cipher suite name
 o GnuTLS: don't print double newline after certificate dates
 o memanalyze.pl: handle free(NULL)
 o proxy: re-use proxy connections (regression) [8]
 o mk-ca-bundle: Don't report SHA1 numbers with "-q"
 o http: always send Host: header as first header [9]
 o openssl: sort ciphers to use based on strength [10]
 o openssl: use colons properly in the ciphers list
This release includes the following known bugs:

 o see docs/KNOWN_BUGS (http://curl.haxx.se/docs/knownbugs.html)

This release would not have looked like this without help, code, reports and
advice from friends like these:

  Alessandro Ghedini, Alexander Pepper, Brad King, Daniel Stenberg, Fabian Keil,
  Jeroen Ooms, Jonathan Cardoso, Jon Seymour, Kamil Dudka, Markus Elfring,
  Michel Promonet, Peter Laser, Rainer Canavan, Ray Satiro, Richard Moore,
  Sergei Nikulov, Steve Havelka, Steve Holme, Tatsuhiro Tsujikawa,
  Viktor Szakáts,
        Thanks! (and sorry if I forgot to mention someone)

References to bug reports and discussions on issues:

 [1] = http://curl.haxx.se/bug/view.cgi?id=1487
 [2] = http://curl.haxx.se/mail/lib-2015-01/0170.html
 [3] = https://github.com/bagder/curl/issues/150
 [4] = https://github.com/bagder/curl/issues/147
 [5] = http://curl.haxx.se/mail/lib-2015-03/0052.html
 [6] = https://github.com/bagder/curl/pull/144
 [7] = https://github.com/bagder/curl/pull/157
 [8] = http://curl.haxx.se/bug/view.cgi?id=1492
 [9] = http://curl.haxx.se/bug/view.cgi?id=1491
 [10] = http://curl.haxx.se/bug/view.cgi?id=1487