luo980/curl - curl - Kebab: Code with Heart

luo980/curl

Fork 0

Commit Graph

Author	SHA1	Message	Date
Daniel Stenberg	e9b9bbac22	netrc: address several netrc parser flaws - make sure that a match that returns a username also returns a password, that should be blank if no password is found - fix handling of multiple logins for same host where the password/login order might be reversed. - reject credentials provided in the .netrc if they contain ASCII control codes - if the used protocol does not support such (like HTTP and WS do) Reported-by: Harry Sintonen Add test 478, 479 and 480 to verify. Updated unit 1304. Closes #15586	2024-11-17 11:33:56 +01:00

Author

SHA1

Message

Date

Daniel Stenberg

e9b9bbac22

netrc: address several netrc parser flaws

- make sure that a match that returns a username also returns a
  password, that should be blank if no password is found

- fix handling of multiple logins for same host where the password/login
  order might be reversed.

- reject credentials provided in the .netrc if they contain ASCII control
  codes - if the used protocol does not support such (like HTTP and WS do)

Reported-by: Harry Sintonen

Add test 478, 479 and 480 to verify. Updated unit 1304.

Closes #15586

2024-11-17 11:33:56 +01:00

1 Commits