- Dec 13, 2018
-
-
Daniel Stenberg authored
Reported-by: Tobias Lindgren Pointed out in #3367 Closes #3368
-
- Sep 16, 2018
-
-
Si authored
Closes #2994
-
- Sep 06, 2018
-
-
Daniel Stenberg authored
-
- May 31, 2018
-
-
Björn Stenberg authored
Adds CURLOPT_DISALLOW_USERNAME_IN_URL and --disallow-username-in-url. Makes libcurl reject URLs with a username in them. Closes #2340
-
- May 29, 2018
-
-
Daniel Stenberg authored
Adds CURLOPT_TLS13_CIPHERS and CURLOPT_PROXY_TLS13_CIPHERS. curl: added --tls13-ciphers and --proxy-tls13-ciphers Fixes #2435 Reported-by: zzq1015 on github Closes #2607
-
- May 21, 2018
-
-
Daniel Stenberg authored
It is enabled by default, so --no-styled-output will switch off the detection/use of bold headers. Closes #2538
-
- May 18, 2018
-
-
Aleks authored
...as there's also a version 2. Closes #2579
-
- Apr 21, 2018
-
-
Jay Satiro authored
Before: -m, --max-time <time> Maximum time allowed for the transfer After: -m, --max-time <seconds> Maximum time allowed for the transfer
-
- Mar 17, 2018
-
-
Lawrence Matthews authored
Add --haproxy-protocol for the command line tool Closes #2162
-
- Feb 20, 2018
-
-
Anders Bakken authored
- Add new option CURLOPT_HAPPY_EYEBALLS_TIMEOUT to set libcurl's happy eyeball timeout value. - Add new optval macro CURL_HET_DEFAULT to represent the default happy eyeballs timeout value (currently 200 ms). - Add new tool option --happy-eyeballs-timeout-ms to expose CURLOPT_HAPPY_EYEBALLS_TIMEOUT. The -ms suffix is used because the other -timeout options in the tool expect seconds not milliseconds. Closes https://github.com/curl/curl/pull/2260
-
- Feb 18, 2018
-
-
Daniel Stenberg authored
... not of the #define was set at build-time!
-
- Jan 30, 2018
-
-
Daniel Stenberg authored
To verify a proxy's public key. For when using HTTPS proxies. Fixes #2192 Closes #2268
-
- Jan 07, 2018
-
-
Jay Satiro authored
-
- Nov 05, 2017
-
-
Patrick Monnerat authored
This uses the brotli external library (https://github.com/google/brotli). Brotli becomes a feature: additional curl_version_info() bit and structure fields are provided for it and CURLVERSION_NOW bumped. Tests 314 and 315 check Brotli content unencoding with correct and erroneous data. Some tests are updated to accomodate with the now configuration dependent parameters of the Accept-Encoding header.
-
- Sep 02, 2017
-
-
Patrick Monnerat authored
Extended -F option syntax to support multipart mail messages. -F keyword headers= added to include custom headers in parts. Documentation upgraded.
-
- Aug 28, 2017
-
-
Johannes Schindelin authored
This new feature flag reports When cURL was built with multiple SSL backends. Signed-off-by:
Johannes Schindelin <johannes.schindelin@gmx.de>
-
- Aug 17, 2017
-
-
Viktor Szakats authored
The required low-level logic was already available as part of `libssh2` (via `LIBSSH2_FLAG_COMPRESS` `libssh2_session_flag()`[1] option.) This patch adds the new `libcurl` option `CURLOPT_SSH_COMPRESSION` (boolean) and the new `curl` command-line option `--compressed-ssh` to request this `libssh2` feature. To have compression enabled, it is required that the SSH server supports a (zlib) compatible compression method and that `libssh2` was built with `zlib` support enabled. [1] https://www.libssh2.org/libssh2_session_flag.html Ref: https://github.com/curl/curl/issues/1732 Closes https://github.com/curl/curl/pull/1735
-
- Aug 15, 2017
-
-
Kamil Dudka authored
Commit curl-7_54_0-118-g8b2f22e changed the output format of curl --help to use <file> and <dir> instead of FILE and DIR, which caused zsh.pl to produce a broken completion script: % curl --<TAB> _curl:10: no such file or directory: seconds Closes #1779
-
- Jul 29, 2017
-
-
Jay Satiro authored
Follow-up to 171f8ded. Ref: https://github.com/curl/curl/issues/1704
-
- Jun 28, 2017
-
-
Kamil Dudka authored
Closes https://github.com/curl/curl/pull/1454
-
- Jun 21, 2017
-
-
Daniel Stenberg authored
... and CURLOPT_REQUEST_TARGET instead of CURLOPT_STRIP_PATH_SLASH. This option instead provides the full "alternative" target to use in the request, instead of extracting the path from the URL. Test 1298 and 1299 updated accordingly. Idea-by: Evert Pot Suggestion: https://daniel.haxx.se/blog/2017/06/19/options-with-curl/comment-page-1/#comment-18373 Closes #1593
-
- Jun 19, 2017
-
-
Daniel Stenberg authored
... to enable sending "OPTIONS *" which wasn't possible previously. This option currently only works for HTTP. Added test cases 1298 + 1299 to verify Fixes #1280 Closes #1462
-
- Jun 16, 2017
-
-
Daniel Stenberg authored
... unless "--output -" is used. Binary detection is done by simply checking for a binary zero in early data. Added test 1425 1426 to verify. Closes #1512
-
- May 14, 2017
-
-
Daniel Stenberg authored
... and support and additional "security patched" date for those who enhance older versions that way. Pass on the define CURL_PATCHSTAMP with a date for that. Building with non-release headers shows the date as [unreleased]. Also: this changes the date format generated in the curlver.h file to be "YYYY-MM-DD" (no name of the day or month, no time, no time zone) to make it easier on the eye and easier to parse. Example (new) date string: 2017-05-09 Suggested-by: Brian Childs Closes #1474
-
- May 08, 2017
-
-
Daniel Stenberg authored
... using the docs/cmdline-opts/gen.pl script, so that we get all the command line option documentation from the same source. The generation of the list has to be done manually and pasted into the source code. Closes #1465
-
- May 06, 2017
-
-
Daniel Stenberg authored
... and USE_ENVIRONMENT and --environment. It was once added for RISC OS support and its platform specific behavior has been annoying ever since. Added in commit c3c8bbd3, mostly unchanged since then. Most probably not actually used for years. Closes #1463
-
- Mar 12, 2017
-
-
Desmond O. Chang authored
- Add new option CURLOPT_SUPPRESS_CONNECT_HEADERS to allow suppressing proxy CONNECT response headers from the user callback functions CURLOPT_HEADERFUNCTION and CURLOPT_WRITEFUNCTION. - Add new tool option --suppress-connect-headers to expose CURLOPT_SUPPRESS_CONNECT_HEADERS and allow suppressing proxy CONNECT response headers from --dump-header and --include. Assisted-by: Jay Satiro Assisted-by:
<CarloCannas@users.noreply.github.com> Closes https://github.com/curl/curl/pull/783
-
- Mar 08, 2017
-
-
Jozef Kralik authored
This commit introduces the CURL_SSLVERSION_MAX_* constants as well as the --tls-max option of the curl tool. Closes https://github.com/curl/curl/pull/1166
-
- Jan 13, 2017
-
-
Isaac Boukris authored
In addition to unix domain sockets, Linux also supports an abstract namespace which is independent of the filesystem. In order to support it, add new CURLOPT_ABSTRACT_UNIX_SOCKET option which uses the same storage as CURLOPT_UNIX_SOCKET_PATH internally, along with a flag to specify abstract socket. On non-supporting platforms, the abstract address will be interpreted as an empty string and fail gracefully. Also add new --abstract-unix-socket tool parameter. Signed-off-by:
Isaac Boukris <iboukris@gmail.com> Reported-by: Chungtsun Li (typeless) Reviewed-by: Daniel Stenberg Reviewed-by: Peter Wu Closes #1197 Fixes #1061
-
- Dec 16, 2016
-
-
Daniel Stenberg authored
CURLOPT_SOCKS_PROXY -> CURLOPT_PRE_PROXY Added the corresponding --preroxy command line option. Sets a SOCKS proxy to connect to _before_ connecting to a HTTP(S) proxy.
-
- Nov 27, 2016
-
-
Daniel Stenberg authored
There's mostly likely no need to allow setting SSLv2/3 version for HTTPS proxy. Those protocols are insecure by design and deprecated.
-
- Nov 26, 2016
-
-
Okhin Vasilij authored
Closes #1142
-
- Nov 25, 2016
-
-
- Nov 24, 2016
-
-
Alex Rousskov authored
* HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
-
- Nov 16, 2016
-
-
Jay Satiro authored
-
- Nov 15, 2016
-
-
Daniel Stenberg authored
Fixes test 1139 failures Follow-up to f82bbe01
-
- Nov 11, 2016
-
-
Daniel Hwang authored
to consider ECONNREFUSED as a transient error. Closes #1064
-
- Nov 07, 2016
-
-
Kamil Dudka authored
Fully implemented with the NSS backend only for now. Reviewed-by: Ray Satiro
-
- Apr 28, 2016
-
-
Daniel Stenberg authored
-
Daniel Stenberg authored
-