- Oct 23, 2018
-
-
Daniel Stenberg authored
Follow-up to 05564e75. This function no longer frees the passed-in URL. Reported-by: Michael Kaufmann Bug: https://github.com/curl/curl/commit/05564e750e8f0c79016c680f301ce251e6e86155#commitcomm ent-30985666
-
Daniel Gustafsson authored
Most headerfiles end with a /* <headerguard> */ comment, but it was missing from some. The comment isn't the most important part of our code documentation but consistency has an intrinsic value in itself. This adds header guard comments to the files that were lacking it. Closes #3158 Reviewed-by: Jay Satiro <raysatiro@yahoo.com> Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Jay Satiro authored
Closes https://github.com/curl/curl/pull/3159
-
- Oct 20, 2018
-
-
Daniel Stenberg authored
Retract the previous approach as the sponsors will be the ones to set the final amounts. Closes #3152 [ci skip]
-
- Oct 19, 2018
-
-
Daniel Stenberg authored
Curl_follow() no longer frees the string. Make sure it happens in the caller function, like we normally handle allocations. This bug was introduced with the use of the URL API internally, it has never been in a release version Reported-by: Dario Weißer Closes #3149
-
Daniel Stenberg authored
Otherwise, closing that handle can still cause surprises! Reported-by: Martin Ankerl Fixes #3138 Closes #3147
-
Marcel Raad authored
The Visual Studio builds didn't use IPv6. Add it to all projects since Visual Studio 2008, which is verified to build via AppVeyor. Closes https://github.com/curl/curl/pull/3137
-
Marcel Raad authored
As done in the autotools and CMake builds by default. Closes https://github.com/curl/curl/pull/3137
-
- Oct 18, 2018
-
-
Daniel Stenberg authored
Closes #3144
-
- Oct 17, 2018
-
-
Kamil Dudka authored
Detected by Coverity. Closes #3140 Reviewed-by: Jay Satiro
-
Daniel Stenberg authored
-
Daniel Stenberg authored
... now there's only BountyGraph.
-
- Oct 16, 2018
-
-
Matthew Whitehead authored
For IP addresses in the subject alternative name field, the length of the IP address (and hence the number of bytes to perform a memcmp on) is incorrectly calculated to be zero. The code previously subtracted q from name.end. where in a successful case q = name.end and therefore addrlen equalled 0. The change modifies the code to subtract name.beg from name.end to calculate the length correctly. The issue only affects libcurl with GSKit SSL, not other SSL backends. The issue is not a security issue as IP verification would always fail. Fixes #3102 Closes #3141
-
- Oct 15, 2018
-
-
Daniel Gustafsson authored
Commit 57348eb9 added support for the MesaLink vtls backend, but missed updating the TLS section containing supported backends in the docs. Closes #3134 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
- Oct 14, 2018
-
-
Marcel Raad authored
If USE_BLOCKING_SOCKETS is defined, curlx_nonblock's arguments are not used.
-
- Oct 13, 2018
-
-
Michael Kaufmann authored
Closes #3124
-
- Oct 12, 2018
-
-
Viktor Szakats authored
Ref: https://rawgit.com/ "RawGit has reached the end of its useful life" Ref: https://news.ycombinator.com/item?id=18202481 Closes https://github.com/curl/curl/pull/3131
-
Daniel Stenberg authored
[ci skip]
-
Daniel Stenberg authored
and remove BOM from projects/wolfssl_override.props Closes #3126
-
- Oct 11, 2018
-
-
Marcel Raad authored
Accidentally aded in commit 1bb86057. Reported-by: Viktor Szakats Ref: https://github.com/curl/curl/pull/3120#issuecomment-428673136
-
- Oct 10, 2018
-
-
Daniel Gustafsson authored
-
Michael Kaufmann authored
- link TLS 1.2 and TLS 1.3 options - link proxy and non-proxy options Closes #3121
-
Marcel Raad authored
Removed in ae762e1a, accidentally added again in 9f3be567.
-
Marcel Raad authored
As done in the autotools build. This is required for MinGW, which supports only %I64 for printing 64-bit values, but warns about it. Closes https://github.com/curl/curl/pull/3120
-
- Oct 09, 2018
-
-
Viktor Szakats authored
Also add a unique but common text ('bind via') to make it easy to grep this specific failure regardless of platform. Ref: https://github.com/curl/curl/pull/878/files#diff-7a636f08047c4edb53a240f540b4ecf6R468 Closes https://github.com/curl/curl/pull/3118 Reviewed-by: Daniel Stenberg <daniel@haxx.se> Reviewed-by: Marcel Raad <Marcel.Raad@teamviewer.com>
-
Daniel Stenberg authored
-
Daniel Gustafsson authored
Changes s/OSCP/OCSP/ and bumps the copyright year due to the change.
-
Marcel Raad authored
This avoids an ERROR macro clash between <wingdi.h> and <arpa/tftp.h> on MinGW. Closes https://github.com/curl/curl/pull/3113
-
Marcel Raad authored
Classic MinGW has neither InitializeCriticalSectionEx nor GetTickCount64, independent of the target Windows version. Closes https://github.com/curl/curl/pull/3113
-
- Oct 08, 2018
-
-
Daniel Stenberg authored
-
Daniel Gustafsson authored
Closes #3112 Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-
Viktor Szakats authored
as detected by codespell 1.14.0 Closes https://github.com/curl/curl/pull/3114 Reviewed-by: Marcel Raad <Marcel.Raad@teamviewer.com>
-
Daniel Stenberg authored
-
Daniel Stenberg authored
... when they return NULL we're out of memory and MUST return failure. closes #3111
-
Daniel Stenberg authored
Bug bounty explainer. See https://bountygraph.com/programs/curl Closes #3067
-
Rick Deist authored
Closes #3110
-
Daniel Stenberg authored
Now FILE transfers send headers to the header callback like HTTP and other protocols. Also made curl_easy_getinfo(...CURLINFO_PROTOCOL...) work for FILE in the callbacks. Makes "curl -i file://.." and "curl -I file://.." work like before again. Applied the bold header logic to them too. Regression from c1c27625 (7.61.0) Reported-by: Shaun Jackman Fixes #3083 Closes #3101
-
- Oct 07, 2018
-
-
Daniel Gustafsson authored
In case a very small buffer was passed to the version function, it could result in the buffer not being NULL-terminated since strncpy() doesn't guarantee a terminator on an overflowed buffer. Rather than adding code to terminate (and handle zero-sized buffers), move to using snprintf() instead like all the other vtls backends. Closes #3105 Reviewed-by: Daniel Stenberg <daniel@haxx.se> Reviewed-by: Viktor Szakats <commit@vszakats.net>
-
Daniel Gustafsson authored
Add DYLD_INSERT_LIBRARIES support to the TODO list. Reported in #2394.
-
Daniel Gustafsson authored
The LD_PRELOAD functionality doesn't exist on macOS, so skip any tests requiring it. Fixes #2394 Closes #3106 Reported-by: Github user @jakirkham Reviewed-by: Daniel Stenberg <daniel@haxx.se>
-