luo980/curl
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
28,612 Commits 20 Branches 224 Tags 202 MiB
9ec22e4fe6
Commit Graph

5443 Commits

Author SHA1 Message Date
Daniel Stenberg
435acbd379
BUG-BOUNTY.md: mention the audit exception 
Dedicated - paid for - security audits that are performed in
collaboration with curl developers are not eligible for bounties.

(plus I changed the sub-titles to use ## instead of # in the markdown)

Closes #8880
 2022-05-19 11:14:54 +02:00
Daniel Stenberg
84052154f7
curl: deprecate --random-file and --egd-file 
As libcurl no longer has any functionality for them, the tool now does
nothing with them.

Closes #8670
 2022-05-17 11:06:07 +02:00
Daniel Stenberg
8d86718f3f
opts: deprecate RANDOM_FILE and EGDSOCKET 
These two options were only ever used for the OpenSSL backend for
versions before 1.1.0. They were never used for other backends and they
are not used with recent OpenSSL versions. They were never used much by
applications.

The defines RANDOM_FILE and EGD_SOCKET can still be set at build-time
for ancient EOL OpenSSL versions.

Closes #8670
 2022-05-17 11:05:54 +02:00
Daniel Gustafsson
2df67e93c3 docs: clarify data replacement policy for MIME API 
The API documentation for the MIME functions specify that the parts
can be set twice, with the last call winning.  While true, the user
can set the parts n times for n > 2, reword to specify multiple API
calls instead.

Closes: #8860
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
 2022-05-16 20:32:38 +02:00
Jay Satiro
a61eac6248 FAQ: Clarify Windows double quote usage 
- Windows command prompt doesn't use literal quoting via single quotes.

- Windows command prompt inner double quotes are escaped with a
  backslash.

- Windows powershell does use single quotes but curl is not a powershell
  script so the arguments may not be passed on correctly.

- Windows powershell inner double quotes seems can be passed to curl if
  the outer quotes are double quotes and an escape of backslash-backtick
  is used.

Command prompt example:

~~~
getargs -v -d "\"a\""

argv[0]: getargs
argv[1]: -v
argv[2]: -d
argv[3]: "a"
~~~

Ref: https://github.com/curl/curl/issues/8818
Ref: https://gist.github.com/jay/19aba48653bd591cf4b90eb9249a302c

Reported-by: KotlinIsland@users.noreply.github.com

Closes https://github.com/curl/curl/pull/8823
 2022-05-14 02:38:58 -04:00
Daniel Stenberg
1ddc8aefb2
page-footer: mention exit code zero too 
Success (zero) is also an "exit code" worth mentioning.

Closes #8833
 2022-05-12 16:26:20 +02:00
Daniel Stenberg
fdb5e21b4d
quiche: support ca-fallback 
Follow-up to b01f3e679f which added this for ngtcp2/openssl

Removed from KNOWN_BUGS

Fixes #8696
Closes #8830
 2022-05-11 10:49:31 +02:00
Daniel Stenberg
7fb6c9ba8f
THANKS: added contributors from 7.83.1 2022-05-11 08:11:14 +02:00
Daniel Stenberg
22c4ecee7c
docs/RELEASE-PROCEDURE.md: refreshed and adjsuted the release dates 2022-05-09 16:25:16 +02:00
Daniel Stenberg
a15fa1c357
KNOWN_BUGS: timeout when reusing a http3 connection 
Closes #8764
 2022-05-06 09:20:18 +02:00
Daniel Stenberg
06fd9736b7
KNOWN_BUGS: configure --with-ca-fallback is not supported by h3 
Closes #8696
 2022-05-06 09:15:46 +02:00
Daniel Stenberg
1b0cab695d
TODO: expand on "Expose tried IP addresses that failed" 
Ref: #8794
 2022-05-05 13:57:16 +02:00
Daniel Gustafsson
8e8413ab0b HTTP-COOKIES: add missing CURLOPT_COOKIESESSION 
Commit 980a47b42 added support for ignoring session cookies, but it
was never added to the documentation.

Closes: #8795
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
 2022-05-05 11:51:07 +02:00
Daniel Stenberg
7fc0123129
docs/THANKS: remove name duplicate 2022-05-05 10:25:56 +02:00
Daniel Stenberg
dd4f2622bc
CURLOPT_SSH_AUTH_TYPES.3: fix the default 
The default is all possible methods.

Closes #8792
 2022-05-04 23:31:24 +02:00
Daniel Stenberg
851fb743db
CURLOPT_DOH_URL.3: mention the known bug 
It is mostly duplicating info from KNOWN_BUGS but make it easier to find
for users of this option.

Closes #8790
 2022-05-04 14:44:16 +02:00
Daniel Stenberg
55e137bdf5
CURLOPT_HSTS*FUNCTION.3: document the involved structs as well 
Reviewed-By: Daniel Gustafsson
Closes #8788
 2022-05-03 17:18:28 +02:00
Daniel Stenberg
45c578f662
docs/SECURITY-PROCESS.md: "Visible command line arguments" 2022-05-03 13:37:04 +02:00
Daniel Stenberg
0d015fb3f6
SECURITY-PROCESS: mention "URL inconsistencies" 
... as common problems that are *not* vulns.
 2022-05-03 08:50:10 +02:00
Philip H
5e9a703cf2
misc: use "autoreconf -fi" instead buildconf 
Signed-off-by: Philip H <47042125+pheiduck@users.noreply.github.com>
Closes #8777
 2022-05-02 17:53:06 +02:00
Yusuke Nakamura
2e2767a378
msh3: get msh3 version from MsH3Version 
Closes #8762
 2022-04-30 10:51:22 +02:00
Yusuke Nakamura
279dfb620b
msh3: psss remote_port to MsH3ConnectionOpen 
MsH3 supported additional "Port" parameter to connect not hosted on
443 port QUIC website.

* https://github.com/nibanks/msh3/releases/tag/v0.3.0
* https://github.com/nibanks/msh3/pull/37

Closes #8762
 2022-04-30 10:51:09 +02:00
Daniel Stenberg
ba342909cc
SECURITY-PROCESS: extended 
Also clarify BUG-BOUNTY.md with IBB details.

Closes #8754
 2022-04-27 15:34:21 +02:00
Daniel Stenberg
0ea2456a7e
docs/THANKS: contributors from 7.83.0 2022-04-27 08:11:01 +02:00
Daniel Stenberg
d2a36beee6
CURLOPT*TLSAUTH: they only work with OpenSSL or GnuTLS 
Closes #8753
 2022-04-26 07:45:08 +02:00
Daniel Stenberg
c126299635
cookie.d: clarify when cookies are always sent 2022-04-25 13:05:47 +02:00
Daniel Stenberg
4ec0549c39
misc: update copyright year ranges 2022-04-25 09:31:09 +02:00
Daniel Stenberg
b82d879817
TODO: telnet - exit immediately upon connection if stdin is /dev/null 
Suggested-by: Robin A. Meade
URL: https://curl.se/mail/archive-2022-04/0027.html
 2022-04-24 23:07:43 +02:00
Kushal Das
94ac2ca775
docs: updates spellings with full words 
Closes #8730
 2022-04-21 17:07:10 +02:00
Daniel Stenberg
d794d4bce2
libcurl-tutorial.3: spellfix and minor polish 2022-04-20 10:56:41 +02:00
Daniel Stenberg
1c92b101c4
CURLINFO_PRIMARY_PORT.3: spellfix 
Reported-by: Patrick Monnerat
 2022-04-20 10:46:51 +02:00
Daniel Stenberg
f7f26077bc
CURLINFO_PRIMARY_PORT.3: clarify which port this is 
As it was not entirely clear previously.

Closes #8725
 2022-04-19 23:06:12 +02:00
Daniel Stenberg
774dbd520a
CURLOPT_UNRESTRICTED_AUTH.3: extended explanation 
Include details about Authentication headers.

Reported-by: Brad Spencer
Fixes #8724
Closes #8726
 2022-04-19 18:15:02 +02:00
Gisle Vanem
64c5982d65 docs/HTTP3.md: fix typo 
also fix msh3 section formatting

Ref: https://github.com/curl/curl/commit/37492ebb#r70980087
 2022-04-17 23:48:27 -04:00
Daniel Stenberg
53399c72ff
gen.pl: change wording for mutexed options 
Instead of saying "This option overrides NNN", now say "This option is
mutually exclusive to NNN" in the generated man page ouput, as the
option does not in all cases actually override the others but they are
always mutually exclusive.

Ref: #8704
Closes #8716
 2022-04-17 11:21:16 +02:00
Daniel Stenberg
36e09dc302
fail.d: tweak the description 
Reviewed-by: Daniel Gustafsson
Suggested-by: Robert Charles Muir
Ref: https://twitter.com/rcmuir/status/1514915401574010887

Closes #8714
 2022-04-15 23:50:35 +02:00
Daniel Gustafsson
fe87e10c81 docs: Fix missing semicolon in example code 
Multiple share examples were missing a semicolon on the line defining
the CURLSHcode variable.

Closes: #8697
Reported-by: Michael Kaufmann <mail@michael-kaufmann.ch>
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
 2022-04-15 23:35:15 +02:00
Daniel Gustafsson
b7c0bd68ff curl_easy_header: fix typos in documentation 
Closes: #8694
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
 2022-04-11 11:25:13 +02:00
Nick Banks
37492ebbfa
msh3: add support for QUIC and HTTP/3 using msh3 
Considered experimental, as the other HTTP/3 backends.

Closes #8517
 2022-04-10 18:23:04 +02:00
Daniel Stenberg
7befbe9ce9
TODO: "SFTP with SCP://" 2022-04-10 10:35:39 +02:00
Daniel Stenberg
4a8f6869db
English: use American spelling consistently 
Authorization, Initialization, Organization etc.

Closes #8673
 2022-04-05 14:55:47 +02:00
Sascha Zengler
b47bda5594 BUGS: Fix incorrect punctuation 
Closes #8672
Reviewed-by: Daniel Gustafsson <daniel@yesql.se>
 2022-04-05 08:53:19 +02:00
Daniel Stenberg
a3f4d7cee9
misc: spelling fixes 
Mostly in comments but also in the -w documentation for headers_json.

Closes #8647
 2022-03-30 10:49:06 +02:00
Daniel Stenberg
adb3ecff8d
KNOW_BUGS: HTTP3/Transfer closed with n bytes remaining to read 
"HTTP/3 does not support client certs" considered fixed, at least with
the ngtcp2 backend.

Closes #8523
 2022-03-30 10:35:12 +02:00
Daniel Stenberg
89e6129e5a
CURLOPT_PREQUOTE.3: only works for FTP file transfers, not dirs 
Also add to quote.d. Add to TODO as something to add in a future.

Reported-by: anon00000000 on github
Closes #8602
Closes #8648
 2022-03-29 18:15:44 +02:00
Daniel Stenberg
3a4182d468
docs: lots of minor language polish 
Mostly based on recent language decisions from "everything curl":

- remove contractions (isn't => is not)
- *an* HTTP (consistency)
- runtime (no hyphen)
- backend (no hyphen)
- URL is uppercase

Closes #8646
 2022-03-29 13:58:14 +02:00
Daniel Stenberg
301bd97965
CURLOPT_DISALLOW_USERNAME_IN_URL.3: use uppercase URL 2022-03-28 19:40:47 +02:00
Ian Blanes
884098665d
docs/DYNBUF: clarify documentation for Curl_dyn_ptr and Curl_dyn_uptr 
Closes #8606
 2022-03-28 09:39:09 +02:00
Daniel Stenberg
a6c3b7d6f5
TODO: Read keys from ~/.ssh/id_ecdsa, id_ed25519 
It would be nice to expand the list of key locations curl uses for the
newer key types supported by libssh2.

Closes #8586
 2022-03-27 16:21:29 +02:00
Farzin
47048e0287
CURLOPT_PROGRESSFUNCTION.3: fix typo in example 
Closes #8636
 2022-03-25 16:53:30 +01:00