Commits · 71a55534fa61b80373271a13de4473d4660364e2 · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP curl

07 Dec, 2016 1 commit

openssl: don't use OpenSSL's ERR_PACK. · 71a55534

Adam Langley authored Dec 07, 2016

ERR_PACK is an internal detail of OpenSSL. Also, when using it, a
function name must be specified which is overly specific: the test will
break whenever OpenSSL internally change things so that a different
function creates the error.

Closes #1157

71a55534

05 Dec, 2016 1 commit
- test2032: Mark test as flaky · dacfecb7
  Dan Fandrich authored Dec 05, 2016
  
  dacfecb7
03 Dec, 2016 1 commit
- libcurl-multi.3: typo · 254c0b30
  Jeremy Pearson authored Dec 03, 2016
```
Closes https://github.com/curl/curl/pull/1153
```
  254c0b30
02 Dec, 2016 2 commits
- test1281: added http as a required feature · 7117a9a6
  Dan Fandrich authored Dec 02, 2016
  
  7117a9a6
- curl: support zero-length argument strings in config files · cee0fb32
  Daniel Stenberg authored Dec 02, 2016
```
... like 'user-agent = ""'

Adjusted test 71 to verify.
```
  cee0fb32
01 Dec, 2016 5 commits

http_proxy: simplify CONNECT response reading · 74595b22

Daniel Stenberg authored Nov 30, 2016

Since it now reads responses one byte a time, a loop could be removed
and it is no longer limited to get the whole response within 16K, it is
now instead only limited to 16K maximum header line lengths.

74595b22

tests: fix CONNECT test cases to be more strict · 3b77aa6b
Daniel Stenberg authored Nov 30, 2016
```
... as they broke with the cleaned up CONNECT handling
```
3b77aa6b

CONNECT: read responses one byte at a time · 3ea35184

Daniel Stenberg authored Nov 30, 2016

... so that it doesn't read data that is actually coming from the
remote. 2xx responses have no body from the proxy, that data is from the
peer.

Fixes #1132

3ea35184

CONNECT: reject TE or CL in 2xx responses · c50b878c

Daniel Stenberg authored Nov 29, 2016

A server MUST NOT send any Transfer-Encoding or Content-Length header
fields in a 2xx (Successful) response to CONNECT. (RFC 7231 section
4.3.6)

Also fixes the three test cases that did this.

c50b878c

URL parser: reject non-numerical port numbers · aab33215
Daniel Stenberg authored Dec 01, 2016
```
Test 1281 added to verify
```
aab33215

30 Nov, 2016 3 commits
- runtests: made Servers: output be more consistent by removing OFF · 42253ad9
  Dan Fandrich authored Nov 30, 2016
  
  42253ad9
- cyassl: fixed typo introduced in 4f8b1774 · 18b02f19
  Dan Fandrich authored Nov 30, 2016
  
  18b02f19
- CURLOPT_CONNECT_TO: Skip non-matching "connect-to" entries properly · b34ea05d
  Michael Kaufmann authored Nov 30, 2016
```
If a port number in a "connect-to" entry does not match, skip this
entry instead of connecting to port 0.

If a port number in a "connect-to" entry matches, use this entry
and look no further.

Reported-by: Jay Satiro
Assisted-by: Jay Satiro, Daniel Stenberg

Closes #1148
```
  b34ea05d
29 Nov, 2016 1 commit
- BUGS: describe bug handling process · 12d6794b
  Daniel Stenberg authored Nov 17, 2016
  
  12d6794b
28 Nov, 2016 6 commits
- RELEASE-NOTES: synced with 19613fb3 · 4e8e22c2
  Daniel Stenberg authored Nov 28, 2016
  
  4e8e22c2
- http2: check nghttp2_session_set_local_window_size exists · 19613fb3
  Jay Satiro authored Nov 28, 2016
```
The function only exists since nghttp2 1.12.0.

Bug: https://github.com/curl/curl/commit/a4d8888#commitcomment-19985676
Reported-by: Michael Kaufmann
```
  19613fb3
- http2: Fix crashes when parent stream gets aborted · 421f7401
  Anders Bakken authored Nov 14, 2016
```
Closes #1125
```
  421f7401
- cmdline-docs: more options converted and fixed · a387d881
  Daniel Stenberg authored Nov 28, 2016
```
Now all options are in the new system.
```
  a387d881
- gen: include footer in mainpage output · ac85f332
  Daniel Stenberg authored Nov 28, 2016
  
  ac85f332
- lib1536: checksrc compliance · 30593d45
  Jay Satiro authored Nov 28, 2016
  
  30593d45
27 Nov, 2016 2 commits
- cmdline-opts: more command line options documented · 5c4a5263
  Daniel Stenberg authored Nov 28, 2016
```
Moved over to the new format
```
  5c4a5263
- curl: remove --proxy-ssl* options · 720ea577
  Daniel Stenberg authored Nov 28, 2016
```
There's mostly likely no need to allow setting SSLv2/3 version for HTTPS
proxy. Those protocols are insecure by design and deprecated.
```
  720ea577
26 Nov, 2016 5 commits
- CURLOPT_PROXY_*.3: polished some proxy option man pages · c67f8420
  Daniel Stenberg authored Nov 27, 2016
  
  c67f8420
- os400: support CURLOPT_PROXY_PINNEDPUBLICKEY · d2c5503e
  Patrick Monnerat authored Nov 26, 2016
```
Also define it in ILE/RPG binding.
```
  d2c5503e
- curl_version_info: add CURL_VERSION_HTTPS_PROXY · a4b2f7aa
  Okhin Vasilij authored Nov 25, 2016
```
Closes #1142
```
  a4b2f7aa
- tests: Add some testcases for recent new features. · e38fe7ab
  Frank Gevaerts authored Nov 25, 2016
```
Add missing tests for CURLINFO_SCHEME, CURLINFO_PROTOCOL, %{scheme},
and %{http_version}

closes #1143
```
  e38fe7ab
- curl_easy_reset: clear info for CULRINFO_PROTOCOL and CURLINFO_SCHEME · 267b26b2
  Frank Gevaerts authored Nov 25, 2016
  
  267b26b2
25 Nov, 2016 13 commits
- CURLOPT_PROXY_CAINFO.3: clarify proxy use · 3f7d9b90
  Daniel Stenberg authored Nov 25, 2016
  
  3f7d9b90
- CURLOPT_PROXY_CRLFILE.3: clarify https proxy and availability · 2527dd43
  Daniel Stenberg authored Nov 25, 2016
  
  2527dd43
- curl_easy_setopt.3: add CURLOPT_PROXY_PINNEDPUBLICKEY · 67edddeb
  Daniel Stenberg authored Nov 25, 2016
```
Follow-up to 4f8b1774
```
  67edddeb
- docs: include all opts man pages in dist · 9bfb00ef
  Daniel Stenberg authored Nov 25, 2016
```
Sorted the lists too.

... and include the new ones in the PDF and HTML generation targets
```
  9bfb00ef
- HTTPS Proxy: Implement CURLOPT_PROXY_PINNEDPUBLICKEY · 4f8b1774
  Thomas Glanzmann authored Nov 25, 2016
  
  4f8b1774
- url: proxy: Use 443 as default port for https proxies · 1232dbb8
  Thomas Glanzmann authored Nov 24, 2016
  
  1232dbb8
- TODO: removed "HTTPS proxy" · 8ebc5cda
  Daniel Stenberg authored Nov 25, 2016
  
  8ebc5cda
- winbuild: add config option ENABLE_NGHTTP2 · 65894c98
  Jan-E authored Nov 25, 2016
```
Closes #1141
```
  65894c98
- tool_urlglob: Improve sanity check in glob_range · a6618b52
  Jay Satiro authored Nov 24, 2016
```
Prior to this change we depended on errno if strtol could not perform a
conversion. POSIX says EINVAL *may* be set. Some implementations like
Microsoft's will not set it if there's no conversion.

Ref: https://github.com/curl/curl/commit/ee4f7660#commitcomment-19658189
```
  a6618b52
- tool_help: Change description for --retry-connrefused · 4bda3e04
  Jay Satiro authored Nov 24, 2016
```
Ref: https://github.com/curl/curl/pull/1064#issuecomment-260052409
```
  4bda3e04
- os400: sync ILE/RPG binding · 93c04cb1
  Patrick Monnerat authored Nov 25, 2016
  
  93c04cb1
- test1135: Fix curl_easy_duphandle prototype for code style · c34fa31f
  Jay Satiro authored Nov 24, 2016
```
Follow-up to dbadaebf which changed the style.
```
  c34fa31f
- x509asn1: Restore the parameter check in Curl_getASN1Element · 21274570
  Jay Satiro authored Nov 24, 2016
```
- Restore the removed parts of the parameter check.

Follow-up to 945f60e8 which altered the parameter check.
```
  21274570