- Oct 17, 2018
-
-
Daniel Stenberg authored
... now there's only BountyGraph.
-
- Oct 16, 2018
-
-
Matthew Whitehead authored
For IP addresses in the subject alternative name field, the length of the IP address (and hence the number of bytes to perform a memcmp on) is incorrectly calculated to be zero. The code previously subtracted q from name.end. where in a successful case q = name.end and therefore addrlen equalled 0. The change modifies the code to subtract name.beg from name.end to calculate the length correctly. The issue only affects libcurl with GSKit SSL, not other SSL backends. The issue is not a security issue as IP verification would always fail. Fixes #3102 Closes #3141
-
- Oct 15, 2018
-
-
Daniel Gustafsson authored
Commit 57348eb9 added support for the MesaLink vtls backend, but missed updating the TLS section containing supported backends in the docs. Closes #3134 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
- Oct 14, 2018
-
-
Marcel Raad authored
If USE_BLOCKING_SOCKETS is defined, curlx_nonblock's arguments are not used.
-
- Oct 13, 2018
-
-
Michael Kaufmann authored
Closes #3124
-
- Oct 12, 2018
-
-
Viktor Szakats authored
Ref: https://rawgit.com/ "RawGit has reached the end of its useful life" Ref: https://news.ycombinator.com/item?id=18202481 Closes https://github.com/curl/curl/pull/3131
-
Daniel Stenberg authored
[ci skip]
-
Daniel Stenberg authored
and remove BOM from projects/wolfssl_override.props Closes #3126
-
- Oct 11, 2018
-
-
Marcel Raad authored
Accidentally aded in commit 1bb86057. Reported-by: Viktor Szakats Ref: https://github.com/curl/curl/pull/3120#issuecomment-428673136
-
- Oct 10, 2018
-
-
Daniel Gustafsson authored
-
Michael Kaufmann authored
- link TLS 1.2 and TLS 1.3 options - link proxy and non-proxy options Closes #3121
-
Marcel Raad authored
Removed in ae762e1a, accidentally added again in 9f3be567.
-
Marcel Raad authored
As done in the autotools build. This is required for MinGW, which supports only %I64 for printing 64-bit values, but warns about it. Closes https://github.com/curl/curl/pull/3120
-
- Oct 09, 2018
-
-
Viktor Szakats authored
Also add a unique but common text ('bind via') to make it easy to grep this specific failure regardless of platform. Ref: https://github.com/curl/curl/pull/878/files#diff-7a636f08047c4edb53a240f540b4ecf6R468 Closes https://github.com/curl/curl/pull/3118 Reviewed-by: Daniel Stenberg <daniel@haxx.se> Reviewed-by: Marcel Raad <Marcel.Raad@teamviewer.com>
-
Daniel Stenberg authored
-
Daniel Gustafsson authored
Changes s/OSCP/OCSP/ and bumps the copyright year due to the change.
-
Marcel Raad authored
This avoids an ERROR macro clash between <wingdi.h> and <arpa/tftp.h> on MinGW. Closes https://github.com/curl/curl/pull/3113
-
Marcel Raad authored
Classic MinGW has neither InitializeCriticalSectionEx nor GetTickCount64, independent of the target Windows version. Closes https://github.com/curl/curl/pull/3113
-
- Oct 08, 2018
-
-
Daniel Stenberg authored
-
Daniel Gustafsson authored
Closes #3112 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Viktor Szakats authored
as detected by codespell 1.14.0 Closes https://github.com/curl/curl/pull/3114 Reviewed-by: Marcel Raad <Marcel.Raad@teamviewer.com>
-
Daniel Stenberg authored
-
Daniel Stenberg authored
... when they return NULL we're out of memory and MUST return failure. closes #3111
-
Daniel Stenberg authored
Bug bounty explainer. See https://bountygraph.com/programs/curl Closes #3067
-
Rick Deist authored
Closes #3110
-
Daniel Stenberg authored
Now FILE transfers send headers to the header callback like HTTP and other protocols. Also made curl_easy_getinfo(...CURLINFO_PROTOCOL...) work for FILE in the callbacks. Makes "curl -i file://.." and "curl -I file://.." work like before again. Applied the bold header logic to them too. Regression from c1c27625 (7.61.0) Reported-by: Shaun Jackman Fixes #3083 Closes #3101
-
- Oct 07, 2018
-
-
Daniel Gustafsson authored
In case a very small buffer was passed to the version function, it could result in the buffer not being NULL-terminated since strncpy() doesn't guarantee a terminator on an overflowed buffer. Rather than adding code to terminate (and handle zero-sized buffers), move to using snprintf() instead like all the other vtls backends. Closes #3105 Reviewed-by: Daniel Stenberg <daniel@haxx.se> Reviewed-by: Viktor Szakats <commit@vszakats.net>
-
Daniel Gustafsson authored
Add DYLD_INSERT_LIBRARIES support to the TODO list. Reported in #2394.
-
Daniel Gustafsson authored
The LD_PRELOAD functionality doesn't exist on macOS, so skip any tests requiring it. Fixes #2394 Closes #3106 Reported-by: Github user @jakirkham Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Marcel Raad authored
This enables more tests. Closes https://github.com/curl/curl/pull/3104
-
Marcel Raad authored
Closes https://github.com/curl/curl/pull/3104
-
Marcel Raad authored
Use the oldest and latest Windows SDKs for them. Also, remove all but one OpenSSL build. Closes https://github.com/curl/curl/pull/3104
-
Marcel Raad authored
This adds Visual Studio 9 and 10 builds. There's no 64-bit VC9 compiler on AppVeyor, so use it as the Win32 build. Also, VC9 cannot be used for running the test suite. Closes https://github.com/curl/curl/pull/3104
-
Marcel Raad authored
Closes https://github.com/curl/curl/pull/3104
-
Marcel Raad authored
Closes https://github.com/curl/curl/pull/3104
-
- Oct 06, 2018
-
-
Daniel Stenberg authored
To make it only send one DoH request and avoid the race condition that could lead to the requests getting sent in reversed order and thus making it hard to compare in the test case. Fixes #3107 Closes #3108
-
Daniel Stenberg authored
[ci skip]
-
- Oct 05, 2018
-
-
Daniel Stenberg authored
-
Dmitry Kostjuchenko authored
Closes #3048
-
Daniel Stenberg authored
Ideally this will fix the reversed order shown in SPARC tests: resp 8: Expected 127.0.0.1 got 1.0.0.127 Closes #3091
-