Daniel Stenberg [Mon, 6 Mar 2017 08:21:01 +0000 (09:21 +0100)]
ares: return error at once if timed out before name resolve starts
Pointed-out-by: Ray Satiro
Bug: https://curl.haxx.se/mail/lib-2017-03/0004.html
Change-Id: I7c38e9dc6f386001692fa3b02f5bba00b59f4f45
Signed-off-by: Saurav Babu <saurav.babu@samsung.com>
Seonah Moon [Thu, 29 Dec 2016 10:18:45 +0000 (19:18 +0900)]
[P161227-02691, P161220-01444] Force ongoing connections to close in close_all_connections()
Bug: https://curl.haxx.se/mail/lib-2016-10/0011.html
Bug: https://curl.haxx.se/mail/lib-2016-10/0059.html
Change-Id: I6e015569958cc0da3bd9b03f17d4b32d475ebd0e
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Thu, 24 Nov 2016 08:27:17 +0000 (17:27 +0900)]
Remove dependency with ca-certificates
Change-Id: Ic4b50ae08734463d9d1a37f86ec60a8f2459e818
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Tue, 22 Nov 2016 07:53:24 +0000 (16:53 +0900)]
[CVE-2016-7167] curl escape and unescape integer overflows
Change-Id: Iffbaa7823c992cd93b8961ce69e7f6ac3f903e36
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Mon, 14 Nov 2016 06:50:11 +0000 (15:50 +0900)]
Add default CA bundle
Change-Id: Icc8dd83f8ab59cb18e6d9d6a7f732c6d1ba7cfa4
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Thu, 1 Oct 2015 04:27:10 +0000 (13:27 +0900)]
Add default cipher list for TV
Change-Id: Ibe293221f37388b85aed58ec40793baac2cccd14
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Tue, 4 Oct 2016 07:35:59 +0000 (16:35 +0900)]
openssl: fix bad memory free (regression)
The allocation could be made by OpenSSL so the free must be made with OPENSSL_free() to avoid problems.
(https://github.com/curl/curl/issues/1005)
Change-Id: I07527924fe20ed859cbd5d7ade356410c64d71c7
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Fri, 23 Sep 2016 05:12:16 +0000 (14:12 +0900)]
Update to 7.50.2
Change-Id: I1c5ba709c310e2c1735c12102e48f71d3413146b
Seonah Moon [Fri, 23 Sep 2016 04:49:53 +0000 (13:49 +0900)]
Imported Upstream version 7.50.2
Change-Id: I91c6040940a21b2bebab9d6cab11d50767b7bac4
Seonah Moon [Fri, 26 Aug 2016 05:29:23 +0000 (14:29 +0900)]
Change build macro for Tizen TV
This macro is ignored on build.tizen.org
It's only for Tizen TV build system
Change-Id: I0aa69505ddcfc1973d864f260d2b5e3f2fd87a3d
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Thu, 1 Oct 2015 04:27:10 +0000 (13:27 +0900)]
Add default cipher list for TV
Change-Id: I91579c36473a9619d00990c5897831006d89670f
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Wed, 22 Jun 2016 05:43:54 +0000 (14:43 +0900)]
[CVE-2016-4802] Windows DLL hijacking
Change-Id: I52bc7cb34ac493c20588876294d59039af03cbe1
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Wed, 22 Jun 2016 05:23:07 +0000 (14:23 +0900)]
[CVE-2016-3739] TLS certificate check bypass with mbedTLS/PolarSSL
Change-Id: I76d120f5c9e696ecd402a2099b94759cc22a51e2
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Tue, 26 Apr 2016 05:52:32 +0000 (14:52 +0900)]
Merge branch 'upstream' into tizen
Upgrade version 7.48.0
Change-Id: Ibb643307cb5add844a733bb23cb6051bc0fdb100
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
taesubkim [Mon, 25 Apr 2016 01:21:23 +0000 (10:21 +0900)]
Imported Upstream version 7.48.0
Change-Id: Ibca5368d95ef0b73c945bb0df8b7ef9fc3e3bd82
Signed-off-by: Taesub Kim <taesub.kim@samsung.com>
seonah moon [Mon, 11 Apr 2016 11:05:33 +0000 (04:05 -0700)]
Revert "Imported Upstream version 7.44.0"
This reverts commit
8a08705db260779441360e959b97b6c172f8acb0.
Change-Id: Ie319aab9015869b714a03b8aa890a67ccbc9233e
seonah moon [Thu, 7 Apr 2016 06:59:58 +0000 (23:59 -0700)]
Revert "Update to 7.44.0"
This reverts commit
2bc9d6bb53df44a0c5174767de734620c2cdfd9e.
Change-Id: I831001a99b6ad80dc062c84b3877208e1b40b80a
Seonah Moon [Thu, 7 Apr 2016 04:35:45 +0000 (13:35 +0900)]
Update to 7.44.0
Change-Id: I5b1e06765d1fe3c75597ff7db9831228ea0cad05
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Seonah Moon [Thu, 7 Apr 2016 02:41:57 +0000 (11:41 +0900)]
Imported Upstream version 7.44.0
Change-Id: I04e7fac0b620653ff8c174e87039756e98c4fb02
seonah moon [Thu, 7 Apr 2016 02:31:17 +0000 (19:31 -0700)]
Revert "Imported Upstream version 7.44.0"
This reverts commit
31368b6eac8092a307849518e912b4c475c0238a.
Change-Id: I3428294b4931a00ba9684528d3ffb326f92ed4e8
Seonah Moon [Thu, 7 Apr 2016 01:07:19 +0000 (10:07 +0900)]
Imported Upstream version 7.44.0
Change-Id: Iacb2e604edff0cb8e7687289419ad1908a7a9de6
Seonah Moon [Wed, 9 Dec 2015 00:58:55 +0000 (09:58 +0900)]
Replace 'tizen_profile_name' to 'profile' for Tizen 3.0
Change-Id: I92101758608b72134f28d38fc11d01c527d2f05e
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
taesub.kim [Mon, 16 Nov 2015 10:07:08 +0000 (19:07 +0900)]
Upgrade upstream version to 7.40.0
Change-Id: I60df9f32924246f842db1056534bb707e77b431e
taesub.kim [Mon, 16 Nov 2015 08:28:24 +0000 (17:28 +0900)]
Imported Upstream version 7.40.0
Change-Id: I744943f451cb7db8f796a53f10dd6f57c297287d
taesub.kim [Mon, 16 Nov 2015 08:23:25 +0000 (17:23 +0900)]
Base code merged to SPIN 2.4
Change-Id: I345fdf6d033fc695d6f3f3ea0c55e7c8b542e348
taesub kim [Wed, 11 Nov 2015 05:34:24 +0000 (21:34 -0800)]
Revert "Update to 7.40.1"
This reverts commit
32de14ae0782822e9c54c3fbb28cdefc1f4de969.
Change-Id: I955d8a59ce444eac32b74264d98272297ac51b9b
Seonah Moon [Mon, 9 Nov 2015 06:25:57 +0000 (15:25 +0900)]
Update to 7.40.1
Change-Id: I91d61adf7c97502bbc4370c6b095bbe39aa6cb60
Signed-off-by: Seonah Moon <seonah1.moon@samsung.com>
Kévin THIERRY [Thu, 30 Oct 2014 15:26:04 +0000 (16:26 +0100)]
Bump to version 7.37.1
Use upstream git instead of pristin-tar.
Also use "%__make" and "%make_install" rpm macros.
Bug-Tizen: TC-1807
Change-Id: If52b5604533d6e03826eae8ce35c01184cf208ab
Signed-off-by: Kévin THIERRY <kevin.thierry@open.eurogiciel.org>
Patrick McCarty [Wed, 4 Sep 2013 17:59:11 +0000 (10:59 -0700)]
Packaging cleanups
- Fix whitespace
- Package license for libcurl
- Fix RPM group tags
- Add the upstream URL
Change-Id: I101c1d0272da282dced66d439058d84ead13bd39
Patrick McCarty [Wed, 4 Sep 2013 17:45:38 +0000 (10:45 -0700)]
Update to 7.32.0
This update addresses the following CVEs:
- CVE-2011-2192
- CVE-2012-0036
- CVE-2013-1944
Change-Id: I58ed3c3561cbb670fb49ffc43a5e6b3be7c1a829
Alexandru Cornea [Fri, 28 Jun 2013 20:18:53 +0000 (23:18 +0300)]
resetting manifest requested domain to floor
Change-Id: Ib4fd617379bc46744c4a951b8232fabe30e7e4c1
Anas Nashif [Sat, 16 Feb 2013 06:37:24 +0000 (22:37 -0800)]
Add baselibs
Change-Id: I147e3da210e065be06ee455dd91c6d7548ed7492
Anas Nashif [Tue, 30 Oct 2012 22:51:57 +0000 (15:51 -0700)]
add packaging
Change-Id: Ia2b58e13b0000ced9c1e8c4895f0cdffb27cc877
Daniel Stenberg [Wed, 16 Jul 2014 14:29:02 +0000 (16:29 +0200)]
RELEASE-NOTES: synced with
4cb2521595
Daniel Stenberg [Tue, 15 Jul 2014 22:09:58 +0000 (00:09 +0200)]
test506: verify
aa6884845168
After the fixed cookie lock deadlock, this test now passes and it
detects double-locking and double-unlocking of mutexes.
Yousuke Kimoto [Mon, 14 Jul 2014 18:38:18 +0000 (20:38 +0200)]
cookie: avoid mutex deadlock
... by removing the extra mutex locks around th call to
Curl_flush_cookies() which takes care of the locking itself already.
Bug: http://curl.haxx.se/mail/lib-2014-02/0184.html
Daniel Stenberg [Tue, 15 Jul 2014 19:28:10 +0000 (21:28 +0200)]
gnutls: fix compiler warning
conversion to 'int' from 'long int' may alter its value
Dan Fandrich [Mon, 14 Jul 2014 23:01:39 +0000 (01:01 +0200)]
test320: strip off the actual negotiated cipher width
It's irrelevant to the test, and will change depending on which SSL
library is being used by libcurl.
Dan Fandrich [Mon, 14 Jul 2014 20:27:03 +0000 (22:27 +0200)]
gnutls: detect lack of SRP support in GnuTLS at run-time and try without
Reported-by: David Woodhouse
Michał Górny [Sun, 15 Jun 2014 10:42:30 +0000 (12:42 +0200)]
configure: respect host tool prefix for krb5-config
Use ${host_alias}-krb5-config if available. This improves cross-
compilation support and fixes multilib on Gentoo (at least).
David Woodhouse [Mon, 14 Jul 2014 18:04:55 +0000 (20:04 +0200)]
gnutls: handle IP address in cert name check
Before GnuTLS 3.3.6, the gnutls_x509_crt_check_hostname() function
didn't actually check IP addresses in SubjectAltName, even though it was
explicitly documented as doing so. So do it ourselves...
Dan Fandrich [Mon, 14 Jul 2014 08:40:33 +0000 (10:40 +0200)]
build: set _POSIX_PTHREAD_SEMANTICS on Solaris to get proper getpwuid_r
Daniel Stenberg [Mon, 14 Jul 2014 17:30:50 +0000 (19:30 +0200)]
RELEASE-NOTES: next one is called 7.37.1
Dan Fandrich [Sat, 12 Jul 2014 23:30:52 +0000 (01:30 +0200)]
gnutls: improved error message if setting cipher list fails
Reported-by: David Woodhouse
Dan Fandrich [Sat, 12 Jul 2014 22:18:40 +0000 (00:18 +0200)]
netrc: fixed thread safety problem by using getpwuid_r if available
The old way using getpwuid could cause problems in programs that enable
reading from netrc files simultaneously in multiple threads.
Reported-by: David Woodhouse
Dan Fandrich [Sat, 12 Jul 2014 21:39:22 +0000 (23:39 +0200)]
RELEASE-NOTES: add the reporter of the previous bug fix
Dan Fandrich [Sat, 12 Jul 2014 18:19:34 +0000 (20:19 +0200)]
netrc: treat failure to find home dir same as missing netrc file
This previously caused a fatal error (with a confusing error code, at
that).
Reported by: Glen A Johnson Jr.
Steve Holme [Sat, 12 Jul 2014 14:23:39 +0000 (15:23 +0100)]
RELEASE-NOTES: Synced with
aaaf9e50ec
Steve Holme [Sat, 12 Jul 2014 13:56:47 +0000 (14:56 +0100)]
ntlm_wb: Fixed buffer size not being large enough for NTLMv2 sessions
Bug: http://curl.haxx.se/mail/lib-2014-07/0103.html
Reported-by: David Woodhouse
Steve Holme [Sat, 28 Jun 2014 12:02:03 +0000 (13:02 +0100)]
build: Fixed overridden compiler PDB settings in VC7 to VC12
The curl tool project files for VC7 to VC12 would override the default
setting with the output filename being the same as the linker PDB file.
As such the compiler file would be overwritten with the linker file
for all debug builds.
To avoid this overwrite and for consistency with the libcurl project
files, removed the setting to force the default filename to be used.
Dan Fandrich [Fri, 11 Jul 2014 23:49:35 +0000 (01:49 +0200)]
tests: added globbing keyword to URL globbing tests
Dan Fandrich [Fri, 11 Jul 2014 23:39:56 +0000 (01:39 +0200)]
Fixed some "statement not reached" warnings
Dan Fandrich [Fri, 11 Jul 2014 23:31:12 +0000 (01:31 +0200)]
gnutls: fixed a couple of uninitialized variable references
Dan Fandrich [Fri, 11 Jul 2014 22:33:16 +0000 (00:33 +0200)]
gnutls: fixed compilation against versions < 2.12.0
The AES-GCM ciphers were added to GnuTLS as late as ver. 3.0.1 but
the code path in which they're referenced here is only ever used for
somewhat older GnuTLS versions. This caused undeclared identifier errors
when compiling against those.
Dan Fandrich [Fri, 11 Jul 2014 21:55:53 +0000 (23:55 +0200)]
gnutls: explicitly added SRP to the priority string
This seems to have become necessary for SRP support to work starting
with GnuTLS ver. 2.99.0. Since support for SRP was added to GnuTLS
before the function that takes this priority string, there should be no
issue with backward compatibility.
Dan Fandrich [Fri, 11 Jul 2014 21:43:13 +0000 (23:43 +0200)]
tests: adjust for capitalization differences in newer gnutls-serv
Dan Fandrich [Fri, 11 Jul 2014 21:40:01 +0000 (23:40 +0200)]
test320/1/2/4: fix the port number substitution variables
These tests have been broken since commit
1958fe57 in Oct. 2011
Dan Fandrich [Fri, 11 Jul 2014 21:33:55 +0000 (23:33 +0200)]
tests: document more test identifiers and variables
Dan Fandrich [Fri, 11 Jul 2014 21:21:31 +0000 (23:21 +0200)]
gnutls: ignore invalid certificate dates with VERIFYPEER disabled
This makes the behaviour consistent with what happens if a date can
be extracted from the certificate but is expired.
Steve Holme [Thu, 10 Jul 2014 21:30:30 +0000 (22:30 +0100)]
CURLOPT_UPLOAD: Corrected argument type
Daniel Stenberg [Thu, 10 Jul 2014 03:06:34 +0000 (22:06 -0500)]
FAQ: expand the thread-safe section
... with a mention of *NOSIGNAL, based on talk in bug #1386
Dan Fandrich [Mon, 7 Jul 2014 21:12:22 +0000 (23:12 +0200)]
url.c: Fixed memory leak on OOM
This showed itself on some systems with torture failures
in tests 1060 and 1061
Dan Fandrich [Sat, 5 Jul 2014 14:59:12 +0000 (16:59 +0200)]
Update instances of some obsolete CURLOPTs to their new names
Marcel Raad [Fri, 4 Jul 2014 16:26:57 +0000 (18:26 +0200)]
compiler warnings: potentially uninitialized variables
... pointed out by MSVC2013
Bug: http://curl.haxx.se/bug/view.cgi?id=1391
Kamil Dudka [Fri, 4 Jul 2014 10:41:53 +0000 (12:41 +0200)]
nss: make the list of CRL items global
Otherwise NSS could use an already freed item for another connection.
Kamil Dudka [Thu, 3 Jul 2014 22:39:23 +0000 (00:39 +0200)]
nss: fix a memory leak when CURLOPT_CRLFILE is used
Kamil Dudka [Thu, 3 Jul 2014 22:36:21 +0000 (00:36 +0200)]
nss: make crl_der allocated on heap
... and spell it as crl_der instead of crlDER
Kamil Dudka [Thu, 3 Jul 2014 21:53:44 +0000 (23:53 +0200)]
nss: let nss_{cache,load}_crl return CURLcode
Kamil Dudka [Thu, 3 Jul 2014 18:19:35 +0000 (20:19 +0200)]
tool: oops, forgot to include <plarenas.h>
... that contains the declaration of PL_ArenaFinish()
Kamil Dudka [Thu, 3 Jul 2014 18:19:35 +0000 (20:19 +0200)]
tool: call PL_ArenaFinish() on exit if NSPR is used
This prevents valgrind from reporting still reachable memory allocated
by NSPR arenas (mainly the freelist).
Reported-by: Hubert Kario
Dimitrios Siganos [Wed, 2 Jul 2014 09:49:08 +0000 (11:49 +0200)]
example: use correct type (long) for CURLOPT_FOLLOWLOCATION
Dimitrios Siganos [Wed, 2 Jul 2014 09:41:40 +0000 (11:41 +0200)]
Document type of argument for CURLOPT_FOLLOWLOCATION.
Dimitrios Siganos [Wed, 2 Jul 2014 09:41:39 +0000 (11:41 +0200)]
Document type of argument for CURLOPT_ERRORBUFFER.
Dimitrios Siganos [Wed, 2 Jul 2014 09:41:38 +0000 (11:41 +0200)]
Document type of argument for CURLOPT_COPYPOSTFIELDS.
Dimitrios Siganos [Wed, 2 Jul 2014 09:41:37 +0000 (11:41 +0200)]
Document type of argument for CURLOPT_ADDRESS_SCOPE.
Daniel Stenberg [Thu, 3 Jul 2014 20:36:41 +0000 (22:36 +0200)]
curl.1: minor language fix
Bug: http://curl.haxx.se/mail/archive-2014-07/0006.html
Ray Satiro [Mon, 9 Jun 2014 21:57:14 +0000 (23:57 +0200)]
progress callback: skip last callback update on errors
When an error has been detected, skip the final forced call to the
progress callback by making sure to pass the current return code
variable in the Curl_done() call in the CURLM_STATE_DONE state.
This avoids the "extra" callback that could occur even if you returned
error from the progress callback.
Bug: http://curl.haxx.se/mail/lib-2014-06/0062.html
Reported by: Jonathan Cardoso Machado
Dan Fandrich [Wed, 2 Jul 2014 19:40:39 +0000 (21:40 +0200)]
opts: fixed some CURLOPT references so they get turned into links
Kamil Dudka [Wed, 2 Jul 2014 14:34:48 +0000 (16:34 +0200)]
tool: call PR_Cleanup() on exit if NSPR is used
This prevents valgrind from reporting possibly lost memory that NSPR
uses for file descriptor cache and other globally allocated internal
data structures.
Kamil Dudka [Wed, 2 Jul 2014 15:49:37 +0000 (17:49 +0200)]
nss: make the fallback to SSLv3 work again
This feature was unintentionally disabled by commit
ff92fcfb.
Kamil Dudka [Wed, 2 Jul 2014 15:37:43 +0000 (17:37 +0200)]
nss: do not abort on connection failure
... due to calling SSL_VersionRangeGet() with NULL file descriptor
reported-by: upstream tests 305 and 404
Dan Fandrich [Tue, 1 Jul 2014 05:59:28 +0000 (07:59 +0200)]
opts: Document the socket callback function parameters
Steve Holme [Sat, 28 Jun 2014 11:40:06 +0000 (12:40 +0100)]
opts: Fixed some typos
Dan Fandrich [Wed, 25 Jun 2014 20:30:36 +0000 (22:30 +0200)]
curl_easy_setopt.3: fixed the error code for an unsupported option
Dan Fandrich [Mon, 23 Jun 2014 22:00:34 +0000 (00:00 +0200)]
opts: added some DEFAULT and RETURN VALUE sections
Daniel Stenberg [Sat, 21 Jun 2014 21:52:06 +0000 (23:52 +0200)]
libcurl docs: man page edits
mainly to improve how the web versions render
Dan Fandrich [Sat, 21 Jun 2014 18:43:04 +0000 (20:43 +0200)]
curl_easy_setopt.3: fixed some typos
Daniel Stenberg [Sat, 21 Jun 2014 18:21:47 +0000 (20:21 +0200)]
lib man pages: update easy setopt option references
... by using the "\fIopt(3)\fP" syntax they will be linked properly when
the web version of the page is generated.
Daniel Stenberg [Sat, 21 Jun 2014 18:03:35 +0000 (20:03 +0200)]
opts: the CURLOPT_SSL_ENABLE_*PN options are enabled by default
Colin Hogben [Wed, 18 Jun 2014 09:04:22 +0000 (10:04 +0100)]
lib: documentation updates in README.hostip
c-ares now does support IPv6;
avoid implying threaded resolver is Windows-only;
two referenced source files were renamed in 7de2f92
Daniel Stenberg [Sat, 21 Jun 2014 17:46:45 +0000 (19:46 +0200)]
curl_easy_setopt.3: CURLOPT_POSTFIELDS is the exception
... to the always-copy-char *-argument.
And fix some minor mistakes.
Daniel Stenberg [Sat, 21 Jun 2014 13:45:50 +0000 (15:45 +0200)]
curl_easy_setopt.3: refer to the individual man pages
With all the new individual option man pages created, this now refers to
each separate one instead of duplicaing the info. Also makes this page
easier to overview.
Dan Fandrich [Sat, 21 Jun 2014 09:22:04 +0000 (11:22 +0200)]
opts: fixed mancheck for out-of-tree builds
Daniel Stenberg [Fri, 20 Jun 2014 22:03:45 +0000 (00:03 +0200)]
curl_easy_setopt.3: shorten
shorten descriptions, mostly refer to the separate descriptions
Daniel Stenberg [Fri, 20 Jun 2014 12:26:56 +0000 (14:26 +0200)]
CURLOPT_DNS_LOCAL_IP4.3: better short desc
Dan Fandrich [Fri, 20 Jun 2014 21:43:26 +0000 (23:43 +0200)]
opts: document CURLE_OUT_OF_MEMORY among other return values
Dan Fandrich [Fri, 20 Jun 2014 21:04:39 +0000 (23:04 +0200)]
opts: fixed some typos
Daniel Stenberg [Thu, 19 Jun 2014 23:10:34 +0000 (01:10 +0200)]
opts: various corrections
Daniel Stenberg [Thu, 19 Jun 2014 23:02:49 +0000 (01:02 +0200)]
opts: add the rest of the options
... and fixed mancheck to ignore obsolete options
Daniel Stenberg [Thu, 19 Jun 2014 22:58:18 +0000 (00:58 +0200)]
opts: the final bunch of options as man pages
Now all current options have their own man pages.