- Sep 21, 2018
-
-
Erik Minekus authored
Closes #3029
-
Daniel Stenberg authored
Closes #3024
-
Loganaden Velvindron authored
Closes #2971
-
- Sep 20, 2018
-
-
Daniel Stenberg authored
Removed DoH. Closes #2734
-
Jay Satiro authored
- Treat CURL_SSLVERSION_MAX_NONE the same as CURL_SSLVERSION_MAX_DEFAULT. Prior to this change NONE would mean use the minimum version also as the maximum. This is a follow-up to 6015cefb which changed the behavior of setting the SSL version so that the requested version would only be the minimum and not the maximum. It appears it was (mostly) implemented in OpenSSL but not other backends. In other words CURL_SSLVERSION_TLSv1_0 used to mean use just TLS v1.0 and now it means use TLS v1.0 *or later*. - Fix CURL_SSLVERSION_MAX_DEFAULT for OpenSSL. Prior to this change CURL_SSLVERSION_MAX_DEFAULT with OpenSSL was erroneously treated as always TLS 1.3, and would cause an error if OpenSSL was built without TLS 1.3 support. Co-authored-by: Daniel Gustafsson Fixes https://github.com/curl/curl/issues/2969 Closes https://github.com/curl/curl/pull/3012
-
Daniel Stenberg authored
As OpenSSL 1.1.1 starts to complain and fail on sha1 CAs: "SSL certificate problem: CA signature digest algorithm too weak" Closes #3014
-
- Sep 19, 2018
-
-
Daniel Stenberg authored
Assisted-by: Daniel Gustafsson Closes #3019
-
Daniel Stenberg authored
In order for this API to fully work for libcurl itself, it now offers a CURLU_GUESS_SCHEME flag that makes it "guess" scheme based on the host name prefix just like libcurl always did. If there's no known prefix, it will guess "http://". Separately, it relaxes the check of the host name so that IDN host names can be passed in as well. Both these changes are necessary for libcurl itself to use this API. Assisted-by: Daniel Gustafsson Closes #3018
-
Kamil Dudka authored
One can still use CA certificates stored in NSS database. Reported-by: Maxime Legros Bug: https://curl.haxx.se/mail/lib-2018-09/0077.html Closes #3016
-
Daniel Gustafsson authored
In the CURLUPART_URL case, there is no codepath which invokes url decoding so remove the assignment of the urldecode variable. This fixes the deadstore bug-report from clang static analysis. Closes #3015 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Daniel Gustafsson authored
TODO item 1.1 was implemented in commit 946ce5b6 , update reference to it with instead referencing the implemented option. Closes #3013 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
- Sep 18, 2018
-
-
Daniel Stenberg authored
-
Daniel Stenberg authored
.... since getsock may update the expiry timer. Fixes #2996 Closes #3000
-
Daniel Stenberg authored
Closes #3004
-
Daniel Gustafsson authored
The reallocation was using the input pointer for the return value, which leads to a memory leak on reallication failure. Fix by instead use the safe internal API call Curl_saferealloc(). Closes #3005 Reviewed-by: Daniel Stenberg <daniel@haxx.se> Reviewed-by: Nick Zitzmann <nickzman@gmail.com>
-
- Sep 17, 2018
-
-
Kruzya authored
Make sure to not overwrite the reallocated pointer in realloc() calls to avoid a memleak on memory errors.
-
Daniel Gustafsson authored
ftp_send_command() was using vsnprintf() without including the libcurl *rintf() replacement header. Fix by including curl_printf.h and also add curl_memory.h while at it since memdebug.h depends on it. Closes #2999 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
- Sep 16, 2018
-
-
Si authored
Closes #2994
-
Daniel Stenberg authored
... so that they can clear the original pointer on failure, which makes the error-paths and their cleanups easier. Closes #2992
-
Daniel Stenberg authored
-
- Sep 15, 2018
-
-
Rikard Falkeborn authored
Closes #2998
-
- Sep 14, 2018
-
-
Viktor Szakats authored
-
Daniel Stenberg authored
Closes #2989
-
Rainer Jung authored
Fixes #2983 Closes #2988
-
- Sep 13, 2018
-
-
Daniel Gustafsson authored
The failf() macro is the name used for invoking Curl_failf(). While there isn't a way to turn off failf like there is for infof, but it's still a good idea to use the macro. Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Daniel Gustafsson authored
Strings broken on multiple rows in the .c file need to have appropriate whitespace padding on either side of the concatenation point to render a correct amalgamated string. Fix by adding a space at the occurrences found. Closes #2986 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Daniel Gustafsson authored
The FTP command allocated by aprintf() must be freed after usage. Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Daniel Gustafsson authored
Commit 8238ba9c inadvertently removed the actual command to be sent from the send buffer in a refactoring. Add back copying the command into the buffer. Also add more guards against malformed input while at it. Closes #2985 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Daniel Gustafsson authored
When erroring out on a request being too large, the existing buffer was leaked. Fix by explicitly freeing on the way out. Closes #2966 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Yiming Jing authored
-
Yiming Jing authored
-
Yiming Jing authored
Closes #2984
-
Yiming Jing authored
-
Dave Reisner authored
This yields "the scheme is %s\n" instead of "the scheme is %s0 Closes #2970
-
Dave Reisner authored
-
Daniel Stenberg authored
to help user understand what the problem is Reported-by: Daniel Shahaf Fixes #2763 Closes #2977
-
- Sep 12, 2018
-
-
Yiming Jing authored
The previous test certificates contained RSA keys of only 1024 bits. However, RSA claims that 1024-bit RSA keys are likely to become crackable some time before 2010. The NIST recommends at least 2048-bit keys for RSA for now. Better use full 2048 also for testing. Closes #2973
-
Daniel Gustafsson authored
Closes #2968 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Marcel Raad authored
On Windows, the read function from <io.h> is used, which has its byte count parameter as unsigned int instead of size_t. Closes https://github.com/curl/curl/pull/2972
-