1. 25 Nov, 2018 2 commits
    • Daniel Stenberg's avatar
      RELEASE-NOTES: synced · 27a5e1f1
      Daniel Stenberg authored
    • Daniel Stenberg's avatar
      curl_easy_perform: fix timeout handling · 34fe0e16
      Daniel Stenberg authored
      curl_multi_wait() was erroneously used from within
      curl_easy_perform(). It could lead to it believing there was no socket
      to wait for and then instead sleep for a while instead of monitoring the
      socket and then miss acting on that activity as swiftly as it should
      (causing an up to 1000 ms delay).
      Reported-by: Antoni Villalonga
      Fixes #3305
      Closes #3306
      Closes #3308
  2. 23 Nov, 2018 4 commits
  3. 22 Nov, 2018 2 commits
    • Tobias Hintze's avatar
      test: update test20/1322 for eglibc bug workaround · 9944d6ba
      Tobias Hintze authored
      The tests 20 and 1322 are using getaddrinfo of libc for resolving. In
      eglibc-2.19 there is a memory leakage and invalid free bug which
      surfaces in some special circumstances (PF_UNSPEC hint with invalid or
      non-existent names). The valgrind runs in testing fail in these
      As the tests 20/1322 are not specific on either protocol (IPv4/IPv6)
      this commit changes the hints to IPv4 protocol by passing `--ipv4` flag
      on the tests' command line.  This prevents the valgrind failures.
    • Tobias Hintze's avatar
      host names: allow trailing dot in name resolve, then strip it · 5b4cce2e
      Tobias Hintze authored
      Delays stripping of trailing dots to after resolving the hostname.
      Fixes #3022
      Closes #3222
  4. 21 Nov, 2018 5 commits
    • UnknownShadow200's avatar
    • Daniel Gustafsson's avatar
      configure: Fix typo in comment · 2fcc4367
      Daniel Gustafsson authored
    • Michael Kaufmann's avatar
      openssl: support session resume with TLS 1.3 · 549310e9
      Michael Kaufmann authored
      Session resumption information is not available immediately after a TLS 1.3
      handshake. The client must wait until the server has sent a session ticket.
      Use OpenSSL's "new session" callback to get the session information and put it
      into curl's session cache. For TLS 1.3 sessions, this callback will be invoked
      after the server has sent a session ticket.
      The "new session" callback is invoked only if OpenSSL's session cache is
      enabled, so enable it and use the "external storage" mode which lets curl manage
      the contents of the session cache.
      A pointer to the connection data and the sockindex are now saved as "SSL extra
      data" to make them available to the callback.
      This approach also works for old SSL/TLS versions and old OpenSSL versions.
      Reviewed-by: default avatarDaniel Stenberg <daniel@haxx.se>
      Fixes #3202
      Closes #3271
    • Michael Kaufmann's avatar
      ssl: fix compilation with OpenSSL 0.9.7 · 30a65381
      Michael Kaufmann authored
      - ENGINE_cleanup() was used without including "openssl/engine.h"
      - enable engine support for OpenSSL 0.9.7
      Closes #3266
    • Daniel Stenberg's avatar
      openssl: disable TLS renegotiation with BoringSSL · 59311bd3
      Daniel Stenberg authored
      Since we're close to feature freeze, this change disables this feature
      with an #ifdef. Define ALLOW_RENEG at build-time to enable.
      This could be converted to a bit for CURLOPT_SSL_OPTIONS to let
      applications opt-in this.
      Concern-raised-by: David Benjamin
      Fixes #3283
      Closes #3293
  5. 20 Nov, 2018 4 commits
    • Romain Fliedel's avatar
      ares: remove fd from multi fd set when ares is about to close the fd · 6765e6d9
      Romain Fliedel authored
      When using c-ares for asyn dns, the dns socket fd was silently closed
      by c-ares without curl being aware. curl would then 'realize' the fd
      has been removed at next call of Curl_resolver_getsock, and only then
      notify the CURLMOPT_SOCKETFUNCTION to remove fd from its poll set with
      CURL_POLL_REMOVE. At this point the fd is already closed.
      By using ares socket state callback (ARES_OPT_SOCK_STATE_CB), this
      patch allows curl to be notified that the fd is not longer needed
      for neither for write nor read. At this point by calling
      Curl_multi_closed we are able to notify multi with CURL_POLL_REMOVE
      before the fd is actually closed by ares.
      In asyn-ares.c Curl_resolver_duphandle we can't use ares_dup anymore
      since it does not allow passing a different sock_state_cb_data
      Closes #3238
    • Romain Fliedel's avatar
    • pkubaj's avatar
      ntlm: Remove redundant ifdef USE_OPENSSL · 7c96f6a1
      pkubaj authored
      lib/curl_ntlm.c had code that read as follows:
        #ifdef USE_OPENSSL
        # ifdef USE_OPENSSL
        # else
        # ..
        # endif
      Remove the redundant USE_OPENSSL along with #else (it's not possible to
      reach it anyway). The removed construction is a leftover from when the
      SSLeay support was removed.
      Closes #3269
      Reviewed-by: default avatarDaniel Gustafsson <daniel@yesql.se>
      Reviewed-by: default avatarDaniel Stenberg <daniel@haxx.se>
    • Han Han's avatar
      ssl: replace all internal uses of CURLE_SSL_CACERT · 78ff4e0d
      Han Han authored
      Closes #3291
  6. 19 Nov, 2018 7 commits
  7. 18 Nov, 2018 1 commit
    • Daniel Gustafsson's avatar
      tool_doswin: Fix uninitialized field warning · b88bf6e6
      Daniel Gustafsson authored
      The partial struct initialization in 397664a0
      a warning on uninitialized MODULEENTRY32 struct members:
        /src/tool_doswin.c:681:3: warning: missing initializer for field
        'th32ModuleID' of 'MODULEENTRY32 {aka struct tagMODULEENTRY32}'
      This is sort of a bogus warning as the remaining members will be set
      to zero by the compiler, as all omitted members are. Nevertheless,
      remove the warning by omitting all members and setting the dwSize
      members explicitly.
      Closes #3254
      Reviewed-by: default avatarMarcel Raad <Marcel.Raad@teamviewer.com>
      Reviewed-by: default avatarJay Satiro <raysatiro@yahoo.com>
  8. 17 Nov, 2018 1 commit
  9. 16 Nov, 2018 3 commits
  10. 15 Nov, 2018 1 commit
  11. 13 Nov, 2018 3 commits
  12. 12 Nov, 2018 1 commit
  13. 10 Nov, 2018 1 commit
  14. 09 Nov, 2018 5 commits