#14844: curl-7.76.0
-------------------------+-----------------------
Reporter: renodr | Owner: timtas
Type: enhancement | Status: assigned
Priority: normal | Milestone: 10.2
Component: BOOK | Version: SVN
Severity: normal | Resolution:
Keywords: |
-------------------------+-----------------------
Changes (by timtas):
* owner: blfs-book => timtas
* status: new => assigned
Comment:
{{{
Changes:
cookies: Support multiple -b parameters
curl: add --fail-with-body
doh: add options to disable ssl verification
http: add support to read and store the referrer header
sasl: support SCRAM-SHA-1 and SCRAM-SHA-256 via libgsasl
vtls: initial implementation of rustls backend
Bugfixes:
CVE-2021-22876: strip credentials from the auto-referer header field
CVE-2021-22890: add 'isproxy' argument to Curl_ssl_get/addsessionid()
asyn-ares: use consistent resolve error message
BUG-BOUNTY: removed the cooperation mention
build: delete unused feature guards
build: fix --disable-dateparse
build: fix --disable-http-auth
build: remove all traces of USE_BLOCKING_SOCKETS
c-hyper: Remove superfluous pointer check
c-hyper: support automatic content-encoding
CI/azure: disable test 433 on azure-ubuntu
CI/azure: replace python-impacket with python3-impacket
ci: stop building on freebsd-12-1
cmake: fix import library name for non-MS compiler on Windows
cmake: use CMAKE_INSTALL_INCLUDEDIR indirection
cmake: support WinIDN
config: fix building SMB with configure using Win32 Crypto
config: fix detection of restricted Windows App environment
configure: fail if --with-quiche is used and quiche isn't found
configure: make AC_TRY_* into AC_*_IFELSE
configure: make hyper opt-in, and fail if missing
configure: only add OpenSSL paths if they are defined
configure: provide Largefile feature for curl-config
configure: remove use of deprecated macros
configure: s/AC_HELP_STRING/AS_HELP_STRING
cookies: Fix potential NULL pointer deref with PSL
curl: set CURLOPT_NEW_FILE_PERMS if requested
curl_easy_setopt.3: add curl_easy_option* functions to SEE ALSO
curl_multibyte: always return a heap-allocated copy of string
curl_multibyte: fall back to local code page stat/access on Windows
Curl_timeleft: check both timeouts during connect
curl_url_set.3: mention CURLU_PATH_AS_IS
CURLOPT_QUOTE.3: clarify that libcurl doesn't parse what's sent
docs/HTTP2: remove the outdated remark about multiplexing for the tool
docs/Makefile.inc: format to be update-friendly
docs: add CURLOPT_CURLU to 'See also' in curl_url_ functions
docs: add missing Arg tag to --stderr
docs: Add SSL backend names to CURL_SSL_BACKEND
docs: clarify timeouts for queued transfers in multi API
docs: Explain DOH transfers inherit some SSL settings
docs: fix FILE example url in --metalink documentation
docs: make gen.pl support *italic* and **bold**
doh: Fix sharing user's resolve list with DOH handles
doh: Inherit CURLOPT_STDERR from user's easy handle
dynbuf: bump the max HTTP request to 1MB
examples: Remove threaded-shared-conn.c due to bug
file: Support unicode urls on windows
ftp: add 'list_only' to the transfer state struct
ftp: add 'prefer_ascii' to the transfer state struct
FTP: allow SIZE to fail when doing (resumed) upload
ftp: avoid SIZE when asking for a TYPE A file
ftp: fix Codacy/cppcheck warning about null pointer arithmetic
ftp: fix memory leak in ftp_done
ftp: never set data->set.ftp_append outside setopt
gen.pl: quote "bare" minuses in the nroff curl.1
github: add torture-ftp for FTP-only torture testing
gnutls: assume nettle crypto support
gskit: correct the gskit_send() prototype
hostip: fix build with sync resolver
hostip: fix crash in sync resolver builds that use DOH
hsts: remove unused defines
http2: don't set KEEP_SEND when there's no more data to be sent
http2: fail if connection terminated without END_STREAM
http: cap body data amount during send speed limiting
http: do not add a referrer header with empty value
http: make 416 not fail with resume + CURLOPT_FAILONERRROR
http: remove superfluous NULL assign
http: strip default port from URL sent to proxy
http: use credentials from transfer, not connection
ldap: use correct memory free function
lib1536: check ptr against NULL before dereferencing it
lib1537: check ptr against NULL before dereferencing it
lib: remove 'conn->data' completely
libssh2: kdb_callback: get the right struct pointer
libssh2:ssh_connect: clear session pointer after free
memdebug: close debug logfile explicitly on exit
mingw: enable using strcasecmp()
multi: close the connection when h2=>h1 downgrading
multi: do once-per-transfer inits in before_perform in DID state
multi: rename the multi transfer states
multi: update pending list when removing handle
ngtcp2: adapt to the new recv_datagram callback
ngtcp2: clarify calculation precedence
ngtcp2: Fix build error due to change in ngtcp2_addr_init
ngtcp2: sync with recent API updates
openldap: avoid NULL pointer dereferences
openssl: adapt to v3's new const for a few API calls
openssl: ensure to check SSL_CTX_set_alpn_protos return values
openssl: remove get_ssl_version_txt in favor of SSL_get_version
openssl: set the transfer pointer for logging early
OS400: update for CURLOPT_AWS_SIGV4
parse_proxy: fix a memory leak in the OOM path
pathhelp.pm: fix use of pwd -L in Msys environment
projects: Update VS projects for OpenSSL 1.1.x
quiche: fix build error: use 'int' for port number
quiche: fix crash when failing to connect
retry-all-errors.d: Explain curl errors versus HTTP response errors
retry.d: Clarify transient 5xx HTTP response codes
runtests.pl: add %TESTNUMBER variable to make copying tests more
convenient
runtests.pl: add a -P option to specify an external proxy
runtests.pl: kill processes locking test log files
setopt: error on CURLOPT_HTTP09_ALLOWED set true with Hyper
test1188: change error to check for: --fail HTTP status
test220/314: adjust to run with Hyper
test304: header CRLF cleanup to work with Hyper
test306: make it not run with Hyper
tests: disable .curlrc in more environments
tests: use %TESTNUMBER instead of fixed number
tftp: remove the 3600 second default timeout
time: enable 64-bit time_t in supported mingw environments
tool_help: add missing argument for --create-file-mode
tool_help: Increase space between option and description
tool_operate: bail if set CURLOPT_HTTP09_ALLOWED returns error
travis: add a rustls build
travis: bump wolfssl to 4.7.0
travis: only build wolfssl when needed
travis: split "torture" into a separate "events" build
travis: switch ngtcp2 build over to quictls
travis: use ubuntu nghttp2 package instead of build our own
url.c: use consistent error message for failed resolve
url: fix memory leak if OOM in the HSTS handling
url: fix possible use-after-free in default protocol
urldata: don't touch data->set.httpversion at run-time
urldata: fix build without HTTP and MQTT
urldata: make 'actions[]' use unsigned char instead of int
urldata: merge "struct DynamicStatic" into "struct UrlState"
urldata: remove the 'rtspversion' field
urldata: remove the _ORIG suffix from string names
version.d: Add missing features to the features list
wolfssl: don't store a NULL sessionid
}}
--
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/14844#comment:1>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch
--
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
