- 13 Oct, 2017 3 commits
-
-
Patrick Monnerat authored
-
Daniel Stenberg authored
-
Daniel Stenberg authored
Reported-by: Jeroen Ooms Closes #1988
-
- 12 Oct, 2017 5 commits
-
-
Patrick Monnerat authored
Include test cases in 554, 587, 650. Fixes https://github.com/curl/curl/issues/1986
-
Patrick Monnerat authored
Closes PR https://github.com/curl/curl/pull/1985
-
Patrick Monnerat authored
If stdin is not a regular file, its content is memory-buffered to enable a possible data "rewind". In all cases, stdin data size is determined before real use to avoid having an unknown part's size. --libcurl generated code is left as an unbuffered stdin fread/fseek callback part with unknown data size. Buffering is not supported in deprecated curl_formadd() API.
-
Daniel Stenberg authored
-
Daniel Stenberg authored
following the new github "standard"
-
- 11 Oct, 2017 3 commits
-
-
Daniel Stenberg authored
-
Artak Galoyan authored
Now VERIFYHOST, VERIFYPEER and VERIFYSTATUS options change during active connection updates the current connection's (i.e.'connectdata' structure) appropriate ssl_config (and ssl_proxy_config) structures variables, making these options effective for ongoing connection. This functionality was available before and was broken by the following change: "proxy: Support HTTPS proxy and SOCKS+HTTP(s)" CommitId: cb4e2be7. Bug: https://github.com/curl/curl/issues/1941 Closes https://github.com/curl/curl/pull/1951
-
David Benjamin authored
Those were temporary things we'd add and remove for our own convenience long ago. The last few stayed around for too long as an oversight but have since been removed. These days we have a running BORINGSSL_API_VERSION counter which is bumped when we find it convenient, but 2015-11-19 was quite some time ago, so just check OPENSSL_IS_BORINGSSL. Closes #1979
-
- 10 Oct, 2017 4 commits
-
-
Daniel Stenberg authored
-
Daniel Stenberg authored
-
Daniel Stenberg authored
... as otherwise it could leak that memory. Detected by OSS-fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3600 Assisted-by: Max Dymond Closes #1977
-
Daniel Stenberg authored
Reported-by: Zenju on github Test 244 added to verify Fixes #1974 Closes #1976
-
- 09 Oct, 2017 7 commits
-
-
Daniel Stenberg authored
Ref: #1974
-
Daniel Stenberg authored
-
Daniel Stenberg authored
-
Daniel Stenberg authored
-
Daniel Stenberg authored
Enable PKCS12 for all non-boringssl builds without relying on configure or cmake checks. Bug: https://curl.haxx.se/mail/lib-2017-10/0007.html Reported-by: Christian Schmitz Closes #1948
-
Kristiyan Tsaklev authored
Test 1422 updated to verify. Closes #1964
-
Patrick Monnerat authored
This allows freeing a mime structure bound to the easy handle before curl_easy_cleanup(). Fixes #1970.
-
- 08 Oct, 2017 10 commits
-
-
Daniel Stenberg authored
... like a very large non-existing RTSP version number. Added test 577 to verify. Detected by OSS-fuzz. Closes #1969
-
Patrick Monnerat authored
-
Patrick Monnerat authored
-
Patrick Monnerat authored
Reported-by: Alexey Melnichuk Fixes #1962
-
Patrick Monnerat authored
-
Patrick Monnerat authored
Also avoid dangling pointers in referencing parts.
-
Daniel Stenberg authored
-
Daniel Stenberg authored
-
Patrick Monnerat authored
-
Patrick Monnerat authored
-
- 07 Oct, 2017 3 commits
-
-
Daniel Stenberg authored
This reverts commit f3e03f6c. Caused memory leaks in the fuzzer, needs to be done differently. Disable test 1553 for now too, as it causes memory leaks without this commit!
-
Daniel Stenberg authored
Closes #1960
-
Daniel Stenberg authored
... as we must clean up memory.
-
- 06 Oct, 2017 5 commits
-
-
Daniel Stenberg authored
When imap_done() got called before a connection is setup, it would try to "finish up" and dereffed a NULL pointer. Test case 1553 managed to reproduce. I had to actually use a host name to try to resolve to slow it down, as using the normal local server IP will make libcurl get a connection in the first curl_multi_perform() loop and then the bug doesn't trigger. Fixes #1953 Assisted-by: Max Dymond
-
Dan Fandrich authored
These are around 5% flaky in my Linux x86 autobuilds.
-
Marcel Raad authored
When CURL_DISABLE_CRYPTO_AUTH is defined, Curl_none_md5sum's parameters are not used.
-
Daniel Stenberg authored
... fixes a memory leak with at least IMAP when remove_handle is never called and the transfer is abruptly just abandoned early. Test 1552 added to verify Detected by OSS-fuzz Assisted-by: Max Dymond Closes #1954
-
Benbuck Nason authored
Fixes #1950: curlx_strtoofft() doesn't fully protect against null 'str' argument. Closes #1952
-