aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2017-06-16curl-compilers.m4: enable comma clang warningMarcel Raad
It usually warns when using commas instead of semicolons or other operators by accident. Closes https://github.com/curl/curl/pull/1578
2017-06-16curl-compilers.m4: enable missing-variable-declarations clang warningMarcel Raad
It usually warns when forgetting to declare TU-local variables static. Closes https://github.com/curl/curl/pull/1578
2017-06-16curl-compilers.m4: enable double-promotion warningMarcel Raad
Enable -Wdouble-promotion for both GCC and clang. It warns on implicit promotion from float to double. Closes https://github.com/curl/curl/pull/1578
2017-06-16curl-compilers.m4: enable vla warning for clangMarcel Raad
Previously, that warning was only implicitly active in C90 mode. Enable it unconditionally as already done for GCC. Closes https://github.com/curl/curl/pull/1578
2017-06-16http-proxy: fix chunked-encoded CONNECT responsesDaniel Stenberg
Regression since 5113ad0424. ... and remove 'flaky' from test 1061 again Closes #1579
2017-06-16http-proxy: deal with EAGAINDaniel Stenberg
... the previous code would reset the header length wrongly (since 5113ad0424). This makes test 1060 reliable again. Also: make sws send even smaller chunks of data to increase the likeliness of this happening.
2017-06-16libtest/libntlmconnect: fix compiler warnings from f94fcdbDaniel Stenberg
2017-06-16HTTPS-Proxy: don't offer h2 for https proxy connectionsJay Satiro
Bug: https://github.com/curl/curl/issues/1254 Closes #1546
2017-06-16tests: stabilize test 2032 and 2033Daniel Stenberg
Both these tests run the same underlying test code: libntlmconnect.c - this test code made some assumptions about socket ordering when it used curl_easy_fdset() and when we changed timing or got accidental changes in libcurl the tests would fail. The tests verify that the different transfers keep using the same connections, which I now instead made sure by adding the number of bytes each transfer gets and then verifies that they always get the same amount as when these tests worked. Closes #1576
2017-06-16test1148: verify the -# progressbarDaniel Stenberg
Closes #1569
2017-06-16test1061: mark as flakyDaniel Stenberg
Fails intermittently on travis builds since a few days. Likely due to 5113ad0424.
2017-06-16url: refactor the check for Windows drive letter in pathJay Satiro
- Move the logic to detect a Windows drive letter prefix (eg c: in c:foo) into a function-like macro. Closes https://github.com/curl/curl/pull/1571
2017-06-16mk-ca-bundle.pl: Check curl's exit code after certdata downloadJay Satiro
- No longer allow partial downloads of certdata. Prior to this change partial downloads were (erroneously?) allowed since only the server code was checked to be 200. Bug: https://github.com/curl/curl/pull/1577 Reported-by: Matteo B.
2017-06-16dist: add the fuzz dir to the tarballDaniel Stenberg
2017-06-16configure: disable nghttp2 too if HTTP has been disabledDaniel Stenberg
2017-06-16http-proxy: fix build with --disable-proxy or --disable-httpDaniel Stenberg
Reported-by: Dan Fandrich
2017-06-15fuzz/README: document how to buildDaniel Stenberg
Fixes #1476
2017-06-15fuzz: corpora file structure, initial commitFrederik B
2017-06-15fuzz: bring oss-fuzz initial code converted to C89Frederik B
2017-06-15http-proxy: only attempt FTP over HTTP proxyDaniel Stenberg
... all other non-HTTP protocol schemes are now defaulting to "tunnel trough" mode if a HTTP proxy is specified. In reality there are no HTTP proxies out there that allow those other schemes. Assisted-by: Ray Satiro, Michael Kaufmann Closes #1505
2017-06-15TODO: the generated include file is goneDaniel Stenberg
... since commit 73a2fcea0b
2017-06-15curl_setup.h: error out on CURL_WANTS_CA_BUNDLE_ENV useDaniel Stenberg
... to make it really apparent if there's any user using this on purpose. Suggested-by: Jay Satiro Closes #1542
2017-06-15lib/curl_setup.h: remove CURL_WANTS_CA_BUNDLE_ENVDaniel Stenberg
When this define was set, libcurl would check the environment variable named CURL_CA_BUNDLE at run-time and use that CA cert bundle. This feature was only defined by the watcom and m32 makefiles and caused inconsistent behaviours among libcurls built on different platforms. The curl tool does already feature its own similar logic and the library does not really need it, and it isn't documented libcurl behavior. So this change removes it. Ref: #1538
2017-06-15test1147: verify -H on a fileDaniel Stenberg
2017-06-15curl: allow --header and --proxy-header read from fileDaniel Stenberg
So many headers can be provided as @filename. Suggested-by: Timothe Litt Closes #1486
2017-06-15RELEASE-NOTES: synced with 2ad80eec5Daniel Stenberg
2017-06-15curl/curlver.h: start working on 7.55.0Daniel Stenberg
2017-06-14http-proxy: do the HTTP CONNECT process entirely non-blockingDaniel Stenberg
Mentioned as a problem since 2007 (8f87c15bdac63) and of course it existed even before that. Closes #1547
2017-06-14progress: let "current speed" be UL + DL speeds combinedDaniel Stenberg
Bug #1556 Reported-by: Paul Harris Closes #1559
2017-06-14system.h: fix MinGW buildMarcel Raad
CURLSYS_PULL_WS2TCPIP_H got renamed to CURL_PULL_WS2TCPIP_H in commit 73a2fcea0b4adea6ba342cd7ed1149782c214ae3.
2017-06-14timers: store internal time stamps as time_t instead of doublesDaniel Stenberg
This gives us accurate precision and it allows us to avoid storing "no time" for systems with too low timer resolution as we then bump the time up to 1 microsecond. Should fix test 573 on windows. Remove the now unused curlx_tvdiff_secs() function. Maintains the external getinfo() API with using doubles. Fixes #1531
2017-06-14dist: make the hugehelp.c not get regenerated unnecessarilyDaniel Stenberg
The maketgz script now makes sure the generated hugehelp.c file in the tarball is newer than the generated curl.1 man page, so that it doesn't have to get unnecessarily rebuilt first thing in a typical build. It thus also removes the need for perl to build off a plain release tarball. Fixes #1565
2017-06-14includes: remove curl/curlbuild.h and curl/curlrules.hDaniel Stenberg
Rely entirely on curl/system.h now. Introduced in Aug 2008 with commit 14240e9e109f. Now gone. Fixes #1456
2017-06-14release: 7.54.1Daniel Stenberg
2017-06-13mk-lib1521.pl: updated to match the test changes in 916ec30aDan Fandrich
2017-06-13libressl: OCSP and intermediate certs workaround no longer neededStuart Henderson
lib/vtls/openssl.c has a workaround for a bug with OCSP responses signed by intermediate certs, this was fixed in LibreSSL in https://github.com/libressl-portable/openbsd/commit/912c64f68f7ac4f225b7d1fdc8fbd43168912ba0 Bug: https://curl.haxx.se/mail/lib-2017-06/0038.html
2017-06-13url: fix buffer overwrite with file protocol (CVE-2017-9502)Daniel Stenberg
Bug: https://github.com/curl/curl/issues/1540 Advisory: https://curl.haxx.se/docs/adv_20170614.html Assisted-by: Ray Satiro Reported-by: Marcel Raad
2017-06-13urlglob: fix division by zeroDaniel Stenberg
The multiply() function that is used to avoid integer overflows, was itself reason for a possible division by zero error when passed a specially formatted glob. Reported-by: GwanYeong Kim
2017-06-12configure: update the copyright year in the outputDaniel Stenberg
2017-06-12BINDINGS: update SP-Forth and OCaml urlsygrek
2017-06-11FindWin32CACert: Use a temporary buffer on the stackMichael Kaufmann
Don't malloc() the temporary buffer, and use the correct type: SearchPath() works with TCHAR, but SearchPathA() works with char. Set the buffer size to MAX_PATH, because the terminating null byte is already included in MAX_PATH. Reviewed-by: Daniel Stenberg Reviewed-by: Marcel Raad Closes #1548
2017-06-11test1521: fixed OOM handlingDan Fandrich
2017-06-09RELEASE-PROCEDURE: updated future release datesDaniel Stenberg
2017-06-09gitignore: ignore all vim swap filesPaul Harris
Closes #1561
2017-06-09lib1521: fix compiler warnings on the use of bad 'long' valuesDaniel Stenberg
Reported-by: Marcel Raad Bug: https://github.com/curl/curl/commit/cccac4fb2b20d6ed87da7978408c3ecacc464fe4#commitcomment-22453387
2017-06-09setopt: check CURLOPT_ADDRESS_SCOPE option rangeDaniel Stenberg
... and return error instead of triggering an assert() when being way out of range.
2017-06-08cmake: Fix inconsistency regarding mbed TLS include directoryTheAssassin
Previously, one had to set MBEDTLS_INCLUDE_DIR to make CMake find the headers, but the system complained that mbed TLS wasn't found due to MBEDTLS_INCLUDE_DIRS (note the trailing s) was not set. This commit attempts to fix that. Closes https://github.com/curl/curl/pull/1541
2017-06-08examples/multi-uv.c: fix deprecated symbolRyuichi KAWAMATA
Closes #1557
2017-06-08asyn-ares: s/Curl_expire_latest/Curl_expireDaniel Stenberg
2017-06-08expire: remove Curl_expire_latest()Daniel Stenberg
With the introduction of expire IDs and the fact that existing timers can be removed now and thus never expire, the concept with adding a "latest" timer is not working anymore as it risks to not expire at all. So, to be certain the timers actually are in line and will expire, the plain Curl_expire() needs to be used. The _latest() function was added as a sort of shortcut in the past that's quite simply not necessary anymore. Follow-up to 31b39c40cf90 Reported-by: Paul Harris Closes #1555