./www/curl, Client that groks URLs

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 7.64.0, Package name: curl-7.64.0, Maintainer: pkgsrc-users

Curl is a command line tool for transferring files with URL syntax, supporting
HTTPS certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload,
proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate,
kerberos...), file transfer resume, proxy tunneling and a busload of other
useful tricks.

Required to run:

Required to build:

Package options: gssapi, idn, inet6

Master sites:

SHA1: 7539acc0742c2fb1472bc2904f0bd58eeebc011a
RMD160: 40806b3ea50ddab9d2f063dad37e81fdf6b04a17
Filesize: 2342.68 KB

Version history: (Expand)

CVS history: (Expand)

   2019-02-06 09:02:48 by Adam Ciarcinski | Files touched by this commit (3) | Package updated
Log message:
curl: updated to 7.64.0

curl and libcurl 7.64.0

This release includes the following changes:
* cookies: leave secure cookies alone
* hostip: support wildcard hosts
* http: Implement trailing headers for chunked transfers
* http: added options for allowing HTTP/0.9 responses
* timeval: Use high resolution timestamps on Windows

This release includes the following bugfixes:
* CVE-2018-16890: NTLM type-2 out-of-bounds buffer read
* CVE-2019-3822: NTLMv2 type-3 header stack buffer overflow
* CVE-2019-3823: SMTP end-of-response out-of-bounds read
* FAQ: remove mention of sourceforge for github
* OS400: handle memory error in list conversion
* OS400: upgrade ILE/RPG binding.
* README: add codacy code quality badge
* Revert http_negotiate: do not close connection
* THANKS: added several missing names from year <= 2000
* build: make 'tidy' target work for metalink builds
* cmake: added checks for variadic macros
* cmake: updated check for HAVE_POLL_FINE to match autotools
* cmake: use lowercase for function name like the rest of the code
* configure: detect xlclang separately from clang
* configure: fix recv/send/select detection on Android
* configure: rewrite --enable-code-coverage
* conncache_unlock: avoid indirection by changing input argument type
* cookie: fix comment typo
* cookies: allow secure override when done over HTTPS
* cookies: extend domain checks to non psl builds
* cookies: skip custom cookies when redirecting cross-site
* curl --xattr: strip credentials from any URL that is stored
* curl -J: refuse to append to the destination file
* curl/urlapi.h: include "curl.h" first
* curl_multi_remove_handle() don't block terminating c-ares requests
* darwinssl: accept setting max-tls with default min-tls
* disconnect: separate connections and easy handles better
* disconnect: set conn->data for protocol disconnect
* docs/version.d: mention MultiSSL
* docs: fix the --tls-max description
* docs: use $(INSTALL_DATA) to install man page
* docs: use meaningless port number in CURLOPT_LOCALPORT example
* gopher: always include the entire gopher-path in request
* http2: clear pause stream id if it gets closed
* if2ip: remove unused function Curl_if_is_interface_name
* libssh: do not let libssh create socket
* libssh: free sftp_canonicalize_path() data correctly
* libtest/stub_gssapi: use "real" snprintf
* mbedtls: use VERIFYHOST
* multi: multiplexing improvements
* multi: set the EXPIRE_*TIMEOUT timers at TIMER_STARTSINGLE time
* ntlm: fix NTMLv2 compliance
* ntlm_sspi: add support for channel binding
* openssl: adapt to 3.0.0, OpenSSL_version_num() is deprecated
* openssl: fix the SSL_get_tlsext_status_ocsp_resp call
* openvms: fix OpenSSL discovery on VAX
* openvms: fix typos in documentation
* os400: add a missing closing bracket
* os400: fix extra parameter syntax error
* pingpong: change default response timeout to 120 seconds
* pingpong: ignore regular timeout in disconnect phase
* printf: fix format specifiers
* runtests.pl: Fix perl call to include srcdir
* schannel: fix compiler warning
* schannel: preserve original certificate path parameter
* schannel: stop calling it "winssl"
* sigpipe: if mbedTLS is used, ignore SIGPIPE
* smb: fix incorrect path in request if connection reused
* ssh: log the libssh2 error message when ssh session startup fails
* test1558: verify CURLINFO_PROTOCOL on file:// transfer
* test1561: improve test name
* test1653: make it survive torture tests
* tests: allow tests to pass by 2037-02-12
* tests: move objnames-* from lib into tests
* timediff: fix math for unsigned time_t
* timeval: Disable MSVC Analyzer GetTickCount warning
* tool_cb_prg: avoid integer overflow
* travis: added cmake build for osx
* urlapi: Fix port parsing of eol colon
* urlapi: distinguish possibly empty query
* urlapi: fix parsing ipv6 with zone index
* urldata: rename easy_conn to just conn
* winbuild: conditionally use /DZLIB_WINAPI
* wolfssl: fix memory-leak in threaded use
* spnego_sspi: add support for channel binding
   2019-02-01 19:10:21 by Greg Troxel | Files touched by this commit (1)
Log message:
curl: Drop redundant comment
   2018-12-13 20:52:27 by Adam Ciarcinski | Files touched by this commit (668)
Log message:
revbump for boost 1.69.0
   2018-12-12 12:09:55 by Leonardo Taccari | Files touched by this commit (4) | Package updated
Log message:
curl: Update www/curl to 7.63.0

pkgsrc changes:
 - Remove no longer needed patch-lib_connect.c: imported upstream

This release includes the following changes:

 o curl: add %{stderr} and %{stdout} for --write-out
 o curl: add undocumented option --dump-module-paths for win32
 o setopt: add CURLOPT_CURLU

This release includes the following bugfixes:

 o (lib)curl.rc: fixup for minor bugs
 o CURLINFO_REDIRECT_URL: extract the Location: header field unvalidated
 o CURLOPT_HEADERFUNCTION.3: match 'nitems' name in synopsis and description
 o CURLOPT_WRITEFUNCTION.3: spell out that it gets called many times
 o Curl_follow: accept non-supported schemes for "fake" redirects
 o KNOWN_BUGS: add --proxy-any connection issue
 o NTLM: Remove redundant ifdef USE_OPENSSL
 o NTLM: force the connection to HTTP/1.1
 o OS400: add URL API ccsid wrappers and sync ILE/RPG bindings
 o SECURITY-PROCESS: bountygraph shuts down again
 o TODO: Have the URL API offer IDN decoding
 o ares: remove fd from multi fd set when ares is about to close the fd
 o axtls: removed
 o checksrc: add COPYRIGHTYEAR check
 o cmake: fix MIT/Heimdal Kerberos detection
 o configure: include all libraries in ssl-libs fetch
 o configure: show CFLAGS, LDFLAGS etc in summary
 o connect: fix building for recent versions of Minix
 o cookies: create the cookiejar even if no cookies to save
 o cookies: expire "Max-Age=0" immediately
 o curl: --local-port range was not "including"
 o curl: fix --local-port integer overflow
 o curl: fix memory leak reading --writeout from file
 o curl: fixed UTF-8 in current console code page (Windows)
 o curl_easy_perform: fix timeout handling
 o curl_global_sslset(): id == -1 is not necessarily an error
 o curl_multibyte: fix a malloc overcalculation
 o curle: move deprecated error code to ifndef block
 o docs: curl_formadd field and file names are now escaped
 o docs: escape "\n" codes
 o doh: fix memory leak in OOM situation
 o doh: make it work for h2-disabled builds too
 o examples/ephiperfifo: report error when epoll_ctl fails
 o ftp: avoid two unsigned int overflows in FTP listing parser
 o host names: allow trailing dot in name resolve, then strip it
 o http2: Upon HTTP_1_1_REQUIRED, retry the request with HTTP/1.1
 o http: don't set CURLINFO_CONDITION_UNMET for http status code 204
 o http: fix HTTP Digest auth to include query in URI
 o http_negotiate: do not close connection until negotiation is completed
 o impacket: add LICENSE
 o infof: clearly indicate truncation
 o ldap: fix LDAP URL parsing regressions
 o libcurl: stop reading from paused transfers
 o mprintf: avoid unsigned integer overflow warning
 o netrc: don't ignore the login name specified with "--user"
 o nss: Fall back to latest supported SSL version
 o nss: Fix compatibility with nss versions 3.14 to 3.15
 o nss: fix fallthrough comment to fix picky compiler warning
 o nss: remove version selecting dead code
 o nss: set default max-tls to 1.3/1.2
 o openssl: Remove SSLEAY leftovers
 o openssl: do not log excess "TLS app data" lines for TLS 1.3
 o openssl: do not use file BIOs if not requested
 o openssl: fix unused variable compiler warning with old openssl
 o openssl: support session resume with TLS 1.3
 o openvms: fix example name
 o os400: Add curl_easy_conn_upkeep() to ILE/RPG binding
 o os400: add CURLOPT_CURLU to ILE/RPG binding
 o os400: fix return type of curl_easy_pause() in ILE/RPG binding
 o packages: remove old leftover files and dirs
 o pop3: only do APOP with a valid timestamp
 o runtests: use the local curl for verifying
 o schannel: be consistent in Schannel capitalization
 o schannel: better CURLOPT_CERTINFO support
 o schannel: use Curl_ prefix for global private symbols
 o snprintf: renamed and we now only use msnprintf()
 o ssl: fix compilation with OpenSSL 0.9.7
 o ssl: replace all internal uses of CURLE_SSL_CACERT
 o symbols-in-versions: add missing CURLU_ symbols
 o test328: verify Content-Encoding: none
 o tests: disable SO_EXCLUSIVEADDRUSE for stunnel on Windows
 o tests: drop http_pipe.py script no longer used
 o tool_cb_wrt: Silence function cast compiler warning
 o tool_doswin: Fix uninitialized field warning
 o travis: build with clang sanitizers
 o travis: remove curl before a normal build
 o url: a short host name + port is not a scheme
 o url: fix IPv6 numeral address parser
 o urlapi: only skip encoding the first '=' with APPENDQUERY set

This release includes the following known bugs:

 o see docs/KNOWN_BUGS (https://curl.haxx.se/docs/knownbugs.html)

This release would not have looked like this without help, code, reports and
advice from friends like these:

  Alessandro Ghedini, Alexey Melnichuk, Antoni Villalonga, Ben Greear,
  bobmitchell1956 on github, Brad King, Brian Carpenter, daboul on github,
  Daniel Gustafsson, Daniel Stenberg, Dave Reisner, David Benjamin,
  Dheeraj Sangamkar, dtmsecurity on github, Elia Tufarolo, Frank Gevaerts,
  Gergely Nagy, Gisle Vanem, Hagai Auro, Han Han, infinnovation-dev on github,
  James Knight, Jérémy Rocher, Jeroen Ooms, Jim Fuller, Johannes Schindelin,
  Kamil Dudka, Konstantin Kushnir, Marcel Raad, Marc Hörsken, Marcos Diazr,
  Michael Kaufmann, NTMan on Github, Patrick Monnerat, Paul Howarth,
  Pavel Pavlov, Peter Wu, Ray Satiro, Rod Widdowson, Romain Fliedel,
  Samuel Surtees, Sevan Janiyan, Stefan Kanthak, Sven Blumenstein, Tim Rühsen,
  Tobias Hintze, Tomas Hoger, tonystz on Github, tpaukrt on github,
  Viktor Szakats, Yasuhiro Matsumoto,
  (51 contributors)

        Thanks! (and sorry if I forgot to mention someone)
   2018-11-28 02:32:25 by Sevan Janiyan | Files touched by this commit (1)
Log message:
Need pthread support, make sure a substitue is present if OS lacks support
natively, e.g Minix at present.
   2018-11-28 02:31:45 by Sevan Janiyan | Files touched by this commit (3)
Log message:
Support Minix
   2018-10-31 09:06:24 by Leonardo Taccari | Files touched by this commit (3) | Package updated
Log message:
curl: Update www/curl to 7.62.0

This release includes the following changes:

 o multiplex: enable by default
 o url: default to CURL_HTTP_VERSION_2TLS if built h2-enabled
 o setopt: add CURLOPT_DOH_URL
 o curl: --doh-url added
 o setopt: add CURLOPT_UPLOAD_BUFFERSIZE: set upload buffer size
 o imap: change from "FETCH" to "UID FETCH"
 o configure: add option to disable automatic OpenSSL config loading
 o upkeep: add a connection upkeep API: curl_easy_upkeep()
 o URL-API: added five new functions
 o vtls: MesaLink is a new TLS backend

This release includes the following bugfixes:

 o CVE-2018-16839: SASL password overflow via integer overflow
 o CVE-2018-16840: use-after-free in handle close
 o CVE-2018-16842: warning message out-of-buffer read
 o Curl_dedotdotify(): always nul terminate returned string
 o Curl_follow: Always free the passed new URL
 o Curl_http2_done: fix memleak in error path
 o Curl_retry_request: fix memory leak
 o Curl_saferealloc: Fixed typo in docblock
 o GnutTLS: TLS 1.3 support
 o SECURITY-PROCESS: mention the bountygraph program
 o VS projects: add USE_IPV6:
 o Windows: fixes for MinGW targeting Windows Vista
 o anyauthput: fix compiler warning on 64-bit Windows
 o appveyor: add WinSSL builds
 o appveyor: run test suite (on Windows!)
 o certs: generate tests certs with sha256 digest algorithm
 o checksrc: enable strict mode and warnings
 o checksrc: handle zero scoped ignore commands
 o cmake: Backport to work with CMake 3.0 again
 o cmake: Improve config installation
 o cmake: add support for transitive ZLIB target
 o cmake: disable -Wpedantic-ms-format
 o cmake: don't require OpenSSL if USE_OPENSSL=OFF
 o cmake: fixed path used in generation of docs/tests
 o cmake: remove unused *SOCKLEN_T variables
 o cmake: suppress MSVC warning C4127 for libtest
 o cmake: test and set missed defines during configuration
 o comment: Fix multiple typos in function parameters
 o config: Remove unused SIZEOF_VOIDP
 o config_win32: enable LDAPS
 o configure: force-use -lpthreads on HPUX
 o configure: remove CURL_CONFIGURE_CURL_SOCKLEN_T
 o cookies: Remove redundant expired check
 o cookies: fix leak when writing cookies to file
 o curl-config.in: remove dependency on bc
 o curl.1: --ipv6 mutexes ipv4 (fixed typo)
 o curl: enabled Windows VT Support and UTF-8 output
 o curl: update the documentation of --tlsv1.0
 o curl_multi_wait: call getsock before figuring out timeout
 o curl_ntlm_wb: check aprintf() return codes
 o curl_threads: fix classic MinGW compile break
 o darwinssl: Fix realloc memleak
 o darwinssl: more specific and unified error codes
 o data-binary.d: clarify default content-type is x-www-form-urlencoded
 o docs/BUG-BOUNTY: explain the bounty program
 o docs/CIPHERS: Mention the options used to set TLS 1.3 ciphers
 o docs/CIPHERS: fix the TLS 1.3 cipher names
 o docs/CIPHERS: mention the colon separation for OpenSSL
 o docs/examples: URL updates
 o docs: add "see also" links for SSL options
 o example/asiohiper: insert warning comment about its status
 o example/htmltidy: fix include paths of tidy libraries
 o examples/Makefile.m32: sync with core
 o examples/http2-pushinmemory: receive HTTP/2 pushed files in memory
 o examples/parseurl.c: show off the URL API
 o examples: Fix memory leaks from realloc errors
 o examples: do not wait when no transfers are running
 o ftp: include command in Curl_ftpsend sendbuffer
 o gskit: make sure to terminate version string
 o gtls: Values stored to but never read
 o hostip: fix check on Curl_shuffle_addr return value
 o http2: fix memory leaks on error-path
 o http: fix memleak in rewind error path
 o krb5: fix memory leak in krb_auth
 o ldap: show precise LDAP call in error message on Windows
 o lib: fix gcc8 warning on Windows
 o memory: add missing curl_printf header
 o memory: ensure to check allocation results
 o multi: Fix error handling in the SENDPROTOCONNECT state
 o multi: fix memory leak in content encoding related error path
 o multi: make the closure handle "inherit" CURLOPT_NOSIGNAL
 o netrc: free temporary strings if memory allocation fails
 o nss: fix nssckbi module loading on Windows
 o nss: try to connect even if libnssckbi.so fails to load
 o ntlm_wb: Fix memory leaks in ntlm_wb_response
 o ntlm_wb: bail out if the response gets overly large
 o openssl: assume engine support in 0.9.8 or later
 o openssl: enable TLS 1.3 post-handshake auth
 o openssl: fix gcc8 warning
 o openssl: load built-in engines too
 o openssl: make 'done' a proper boolean
 o openssl: output the correct cipher list on TLS 1.3 error
 o openssl: return CURLE_PEER_FAILED_VERIFICATION on failure to parse issuer
 o openssl: show "proper" version number for libressl builds
 o pipelining: deprecated
 o rand: add comment to skip a clang-tidy false positive
 o rtmp: fix for compiling with lwIP
 o runtests: ignore disabled even when ranges are given
 o runtests: skip ld_preload tests on macOS
 o runtests: use Windows paths for Windows curl
 o schannel: unified error code handling
 o sendf: Fix whitespace in infof/failf concatenation
 o ssh: free the session on init failures
 o ssl: deprecate CURLE_SSL_CACERT in favour of a unified error code
 o system.h: use proper setting with Sun C++ as well
 o test1299: use single quotes around asterisk
 o test1452: mark as flaky
 o test1651: unit test Curl_extract_certinfo()
 o test320: strip out more HTML when comparing
 o tests/negtelnetserver.py: fix Python2-ism in neg TELNET server
 o tests: add unit tests for url.c
 o timeval: fix use of weak symbol clock_gettime() on Apple platforms
 o tool_cb_hdr: handle failure of rename()
 o travis: add a "make tidy" build that runs clang-tidy
 o travis: add build for "configure --disable-verbose"
 o travis: bump the Secure Transport build to use xcode
 o travis: make distcheck scan for BOM markers
 o unit1300: fix stack-use-after-scope AddressSanitizer warning
 o urldata: Fix "connecting" comment
 o urlglob: improve error message on bad globs
 o vtls: fix ssl version "or later" behavior change for many backends
 o x509asn1: Fix SAN IP address verification
 o x509asn1: always check return code from getASN1Element()
 o x509asn1: return CURLE_PEER_FAILED_VERIFICATION on failure to parse cert
 o x509asn1: suppress left shift on signed value
   2018-09-05 08:49:26 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
curl: update to 7.61.1.

This release includes the following bugfixes:

 o security advisory (CVE-2018-14618): NTLM password overflow via integer \ 
overflow [73]
 o CURLINFO_SIZE_UPLOAD: fix missing counter update [46]
 o CURLOPT_ACCEPT_ENCODING.3: list them comma-separated
 o CURLOPT_SSL_CTX_FUNCTION.3: might cause accidental connection reuse [72]
 o Curl_getoff_all_pipelines: improved for multiplexed [3]
 o DEPRECATE: remove release date from 7.62.0
 o HTTP: Don't attempt to needlessly decompress redirect body [30]
 o INTERNALS: require GnuTLS >= 2.11.3 [62]
 o README.md: add LGTM.com code quality grade for C/C++ [42]
 o SSLCERTS: improve the openssl command line
 o Silence GCC 8 cast-function-type warnings [47]
 o ares: check for NULL in completed-callback [3]
 o asyn-thread: Remove unused macro [40]
 o auth: only pick CURLAUTH_BEARER if we *have* a Bearer token [15]
 o auth: pick Bearer authentication whenever a token is available [15]
 o cmake: CMake config files are defining CURL_STATICLIB for static builds [54]
 o cmake: Respect BUILD_SHARED_LIBS [35]
 o cmake: Update scripts to use consistent style [9]
 o cmake: bumped minimum version to 3.4 [34]
 o cmake: link curl to the OpenSSL targets instead of lib absolute paths [34]
 o configure: conditionally enable pedantic-errors [64]
 o configure: fix for -lpthread detection with OpenSSL and pkg-config [38]
 o conn: remove the boolean 'inuse' field [3]
 o content_encoding: accept up to 4 unknown trailer bytes after raw deflate data [5]
 o cookie tests: treat files as text
 o cookies: support creation-time attribute for cookies [75]
 o curl: Fix segfault when -H @headerfile is empty [23]
 o curl: add http code 408 to transient list for --retry [78]
 o curl: fix time-of-check, time-of-use race in dir creation [71]
 o curl: use Content-Disposition before the "URL end" for -OJ [29]
 o curl: warn the user if a given file name looks like an option [56]
 o curl_threads: silence bad-function-cast warning [69]
 o darwinssl: add support for ALPN negotiation [7]
 o docs/CURLOPT_URL: fix indentation [20]
 o docs/CURLOPT_WRITEFUNCTION: size is always 1 [19]
 o docs/SECURITY-PROCESS: mention bounty, drop pre-notify
 o docs/examples: add hiperfifo example using linux epoll/timerfd [21]
 o docs: add disallow-username-in-url.d and haproxy-protocol.d to dist [50]
 o docs: clarify NO_PROXY env variable functionality [70]
 o docs: improved the manual pages of some callbacks [48]
 o docs: mention NULL is fine input to several functions [43]
 o formdata: Remove unused macro HTTPPOST_CONTENTTYPE_DEFAULT [40]
 o gopher: Do not translate `?' to `%09' [67]
 o header output: switch off all styles, not just unbold [8]
 o hostip: fix unused variable warning
 o http2: Use correct format identifier for stream_id [77]
 o http2: abort the send_callback if not setup yet [63]
 o http2: avoid set_stream_user_data() before stream is assigned [61]
 o http2: check nghttp2_session_set_stream_user_data return code [55]
 o http2: clear the drain counter in Curl_http2_done [27]
 o http2: make sure to send after RST_STREAM [58]
 o http2: separate easy handle from connections better [12]
 o http: fix for tiny "HTTP/0.9" response [51]
 o http_proxy: Remove unused macro SELECT_TIMEOUT [40]
 o lib/Makefile: only do symbol hiding if told to [32]
 o lib1502: fix memory leak in torture test [44]
 o lib1522: fix curl_easy_setopt argument type
 o libcurl-thread.3: expand somewhat on the NO_SIGNAL motivation [66]
 o mime: check Curl_rand_hex's return code [22]
 o multi: always do the COMPLETED procedure/state [3]
 o openssl: assume engine support in 1.0.0 or later [2]
 o openssl: fix debug messages [39]
 o projects: Improve Windows perl detection in batch scripts [49]
 o retry: return error if rewind was necessary but didn't happen [28]
 o reuse_conn(): memory leak - free old_conn->options [17]
 o schannel: client certificate store opening fix [68]
 o schannel: enable CALG_TLS1PRF for w32api >= 5.1
 o schannel: fix MinGW compile break [1]
 o sftp: don't send post-qoute sequence when retrying a connection [79]
 o smb: fix memory leak on early failure [26]
 o smb: fix memory-leak in URL parse error path [4]
 o smb_getsock: always wait for write socket too [11]
 o ssh-libssh: fix infinite connect loop on invalid private key [53]
 o ssh-libssh: reduce excessive verbose output about pubkey auth [53]
 o ssh-libssh: use FALLTHROUGH to silence gcc8 [76]
 o ssl: set engine implicitly when a PKCS#11 URI is provided [36]
 o sws: handle EINTR when calling select() [24]
 o system_win32: fix version checking [16]
 o telnet: Remove unused macros TELOPTS and TELCMDS [40]
 o test1143: disable MSYS2's POSIX path conversion [10]
 o test1148: disable if decimal separator is not point [65]
 o test1307: (fnmatch testing) disabled [31]
 o test1422: add required file feature [6]
 o test1531: Add timeout [41]
 o test1540: Remove unused macro TEST_HANG_TIMEOUT [40]
 o test214: disable MSYS2's POSIX path conversion for URL
 o test320: treat curl320.out file as binary [14]
 o tests/http_pipe.py: Use /usr/bin/env to find python
 o tests: Don't use Windows path %PWD for SSH tests [74]
 o tests: fixes for Windows line endlings [13]
 o tool_operate: Fix setting proxy TLS 1.3 ciphers
 o travis: build darwinssl on macos 10.12 to fix linker errors [33]
 o travis: execute "set -eo pipefail" for coverage build [45]
 o travis: run a 'make checksrc' too [25]
 o travis: update to GCC-8 [52]
 o travis: verify that man pages can be regenerated [50]
 o upload: allocate upload buffer on-demand [60]
 o upload: change default UPLOAD_BUFSIZE to 64KB [60]
 o urldata: remove unused pipe_broke struct field [57]
 o vtls: reinstantiate engine on duplicated handles [59]
 o windows: implement send buffer tuning [37]
 o wolfSSL/CyaSSL: Fix memory leak in Curl_cyassl_random [18]