./www/curl, Client that groks URLs

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 7.45.0, Package name: curl-7.45.0, Maintainer: pkgsrc-users

Curl is a command line tool for transferring files with URL syntax, supporting
HTTPS certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload,
proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate,
kerberos...), file transfer resume, proxy tunneling and a busload of other
useful tricks.

Required to run:

Package options: gssapi, inet6, libidn

Master sites: (Expand)

SHA1: ea2e8ef812972202be9ffb2220ef07f7f8ae5b30
RMD160: 3be0355ef398ac83b716cbf4fe69854b63dfa7f8
Filesize: 3392.219 KB

Version history: (Expand)

CVS history: (Expand)

   2015-10-15 12:59:52 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
Update curl to 7.45.0:

Fixed in 7.45.0 - October 7 2015


    added new tool option --proto-default
    getinfo: added CURLINFO_ACTIVESOCKET
    turned CURLINFO_* option docs as stand-alone man pages
    curl: point out unnecessary uses of -X in verbose mode


    curl_global_init_mem.3: Stronger thread safety warning
    buildconf.bat: Fixed issues when ran in directories with special chars
    cmake: Fix CurlTests check for gethostbyname_r with 5 arguments
    generate.bat: Fixed issues when ran in directories with special chars
    generate.bat: Only call buildconf.bat if it exists
    generate.bat: Added support for generating only the prerequisite files
    curl.1: Document weaknesses in SSLv2 and SSLv3
    CURLOPT_HTTP_VERSION.3: connection re-use goes before version
    docs: Update the redirect protocols disabled by default
    inet_pton.c: Fix MSVC run-time check failure
    CURLMOPT_PUSHFUNCTION.3: fix argument types
    rtsp: support basic/digest authentication
    rtsp: stop reading empty DESCRIBE responses
    travis: Upgrading to container based build
    travis.yml: Add OS X testbot
    FTP: make state machine not get stuck in state
    openssl: handle lack of server cert when strict checking disabled
    configure: change functions to detect openssl (clones)
    configure: detect latest boringssl
    runtests: Allow for spaces in server-verify curl custom path
    http2: on_frame_recv: get a proper 'conn' for the debug logging
    ntlm: mark deliberate switch case fall-through
    http2: remove dead code
    curl_easy_{escape,unescape}.3: "char *" vs. "const char *"
    curl: point out the conflicting HTTP methods if used
    cmake: added Windows SSL support
    curl_easy_{escape,setopt}.3: fix example
    curl_easy_escape.3: escape '\n'
    libcurl.m4: Put braces around empty if body
    buildconf.bat: Fixed double blank line in 'curl manual' warning output
    sasl: Only define Curl_sasl_digest_get_pair() when CRYPTO_AUTH enabled
    inet_pton.c: Fix MSVC run-time check failure
    CURLOPT_FOLLOWLOCATION.3: mention methods for redirects
    http2: don't pass on Connection: headers
    nss: do not directly access SSL_ImplementedCiphers
    docs: numerous cleanups and spelling fixes
    FTP: do_more: add check for wait_data_conn in upload case
    parse_proxy: reject illegal port numbers
    cmake: IPv6 : disable Unix header check on Windows platform
    winbuild: run buildconf.bat if necessary
    buildconf.bat: fix syntax error
    curl_sspi: fix possibly undefined CRYPT_E_REVOKED
    nss: prevent NSS from incorrectly re-using a session
    libcurl-errors.3: add two missing error codes
    openssl: fix build with < 0.9.8
    openssl: refactor certificate parsing to use OpenSSL memory BIO
    openldap: only part of LDAP query results received
    ssl: add server cert's "sha256//" hash to verbose
    NTLM: Reset auth-done when using a fresh connection
    curl: generate easysrc only on --libcurl
    tests: disable 1801 until fixed
    CURLINFO_TLS_SESSION: always return backend info
    gnutls: Support CURLOPT_KEYPASSWD
    gnutls: Report actual GnuTLS error message for certificate errors
    tests: disable 1510 due to CI-problems on github
    cmake: Put "winsock2.h" before "windows.h" during \ 
configure checks
    cmake: Ensure discovered include dirs are considered
    configure: Add missing ')' for CURL_CHECK_OPTION_RT
    build: fix failures with -Wcast-align and -Werror
    FTP: fix uploading ASCII with unknown size
    readwrite_data: set a max number of loops
    http2: avoid superfluous Curl_expire() calls
    http2: set TCP_NODELAY unconditionally
    docs: fix unescaped '\n' in man pages
    openssl: Fix algorithm init to make (gost) engines work
    win32: make recent Borland compilers use long long
    runtests: Fix pid check in checkdied
    gopher: don't send NUL byte
    tool_setopt: fix c_escape truncated octal
    hiperfifo: fix the pointer passed to WRITEDATA
    getinfo: Fix return code for unknown CURLINFO options
   2015-08-17 17:43:27 by Thomas Klausner | Files touched by this commit (6) | Package updated
Log message:
Update to 7.44.0:

Curl and libcurl 7.44.0

 Public curl releases:         148
 Command line options:         176
 curl_easy_setopt() options:   219
 Public functions in libcurl:  58
 Contributors:                 1291

This release includes the following changes:

 o examples: added http2-serverpush.c [7]
 o http2: added curl_pushheader_byname() and curl_pushheader_bynum()
 o docs: added CODE_OF_CONDUCT.md [8]
 o curl: Add --ssl-no-revoke to disable certificate revocation checks [5]
 o makefile: Added support for VC14
 o build: Added Visual Studio 2015 (VC14) project files
 o build: Added wolfSSL configurations to VC10+ project files [18]

This release includes the following bugfixes:

 o FTP: fix HTTP CONNECT logic regression [1]
 o openssl: Fix build with openssl < ~ 0.9.8f
 o openssl: fix build with BoringSSL
 o curl_easy_setopt.3: option order doesn't matter
 o openssl: fix use of uninitialized buffer [2]
 o RTSP: removed dead code
 o Makefile.m32: add support for CURL_LDFLAG_EXTRAS
 o curl: always provide negotiate/kerberos options
 o cookie: Fix bug in export if any-domain cookie is present
 o curl_easy_setopt.3: mention CURLOPT_PIPEWAIT
 o INSTALL: Advise use of non-native SSL for Windows <= XP
 o tool_help: fix --tlsv1 help text to use >= for TLSv1
 o HTTP: POSTFIELDSIZE set after added to multi handle [3]
 o SSL-PROBLEMS: mention WinSSL problems in WinXP
 o setup-vms.h: Symbol case fixups
 o SSL: Pinned public key hash support
 o libtest: call PR_Cleanup() on exit if NSPR is used
 o ntlm_wb: Fix theoretical memory leak
 o runtests: Allow for spaces in curl custom path
 o http2: add stream != NULL checks for reliability
 o schannel: Replace deprecated GetVersion with VerifyVersionInfo
 o http2: verify success of strchr() in http2_send()
 o configure: add --disable-rt option
 o openssl: work around MSVC warning
 o HTTP: ignore "Content-Encoding: compress"
 o configure: check if OpenSSL linking wants -ldl
 o build-openssl.bat: Show syntax if required args are missing
 o test1902: attempt to make the test more reliable
 o libcurl-thread.3: Consolidate thread safety info
 o maketgz: Fixed some VC makefiles missing from the release tarball
 o libcurl-multi.3: mention curl_multi_wait [10]
 o ABI doc: use secure URL
 o http: move HTTP/2 cleanup code off http_disconnect() [11]
 o libcurl-thread.3: Warn memory functions must be thread safe [12]
 o curl_global_init_mem.3: Warn threaded resolver needs thread safe funcs [13]
 o docs: formpost needs the full size at start of upload [14]
 o curl_gssapi: remove 'const' to fix compiler warnings
 o SSH: three state machine fixups [15]
 o libcurl.3: fix a single typo [16]
 o generate.bat: Only clean prerequisite files when in ALL mode
 o curl_slist_append.3: add error checking to the example
 o buildconf.bat: Added support for file clean-up via -clean
 o generate.bat: Use buildconf.bat for prerequisite file clean-up
 o NTLM: handle auth for only a single request [17]
 o curl_multi_remove_handle.3: fix formatting [19]
 o checksrc.bat: Fixed error when [directory] isn't a curl source directory
 o checksrc.bat: Fixed error when missing *.c and *.h files
 o CURLOPT_RESOLVE.3: Note removal support was added in 7.42 [20]
 o test46: update cookie expire time
 o SFTP: fix range request off-by-one in size check [21]
 o CMake: fix GSSAPI builds [22]
 o build: refer to fixed libidn versions [4]
 o http2: discard frames with no SessionHandle [23]
 o curl_easy_recv.3: fix formatting
 o libcurl-tutorial.3: fix formatting [24]
 o curl_formget.3: correct return code [25]
   2015-08-08 04:44:16 by S.P.Zeidler | Files touched by this commit (9)
Log message:
reanimate curl-7.43.0 and add the upstream fix for
http://curl.haxx.se/mail/lib-2015-06/0122.html found in
https://github.com/bagder/curl/commit/9 … 642214b094
   2015-07-01 01:00:21 by S.P.Zeidler | Files touched by this commit (7)
Log message:
rollback to previous version of curl. See
http://mail-index.netbsd.org/tech-pkg/2 … 15105.html
   2015-06-30 07:46:56 by S.P.Zeidler | Files touched by this commit (7) | Package updated
Log message:
update of curl to version 7.43.0. Upstream RELEASE_NOTES:

Curl and libcurl 7.43.0

 Public curl releases:         147
 Command line options:         176
 curl_easy_setopt() options:   219
 Public functions in libcurl:  58
 Contributors:                 1291

This release includes the following changes:

 o New curl option: --proxy-service-name[13]
 o Mew curl option: --service-name [14]
 o New curl option: --data-raw [5]
 o Added support for multiplexing transfers using HTTP/2, enable this
 o HTTP/2: requires nghttp2 1.0.0 or later
 o scripts: add zsh.pl for generating zsh completion
 o curl.h: add CURL_HTTP_VERSION_2

This release includes the following bugfixes:

 o CVE-2015-3236: lingering HTTP credentials in connection re-use [30]
 o CVE-2015-3237: SMB send off unrelated memory contents [31]
 o nss: fix compilation failure with old versions of NSS [1]
 o curl_easy_getinfo.3: document 'internals' in CURLINFO_TLS_SESSION
 o schannel.c: Fix possible SEC_E_BUFFER_TOO_SMALL error
 o Curl_ossl_init: load builtin modules [2]
 o configure: follow-up fix for krb5-config [3]
 o sasl_sspi: Populate domain from the realm in the challenge [4]
 o netrc: support 'default' token
 o README: convert to UTF-8
 o cyassl: Implement public key pinning
 o nss: implement public key pinning for NSS backend
 o mingw build: add arch -m32/-m64 to LDFLAGS
 o schannel: Fix out of bounds array [6]
 o configure: remove autogenerated files by autoconf
 o configure: remove --automake from libtoolize call
 o acinclude.m4: fix shell test for default CA cert bundle/path
 o schannel: fix regression in schannel_recv [7]
 o openssl: skip trace outputs for ssl_ver == 0 [8]
 o gnutls: properly retrieve certificate status
 o netrc: Read in text mode when cygwin [9]
 o winbuild: Document the option used to statically link the CRT [10]
 o FTP: Make EPSV use the control IP address rather than the original host
 o FTP: fix dangling conn->ip_addr dereference on verbose EPSV
 o conncache: keep bundles on host+port bases, not only host names
 o runtests.pl: use 'h2c' now, no -14 anymore
 o curlver: introducing new version number (checking) macros
 o openssl: boringssl build brekage, use SSL_CTX_set_msg_callback [17]
 o CURLOPT_POSTFIELDS.3: correct variable names [18]
 o curl_easy_unescape.3: update RFC reference [19]
 o gnutls: don't fail on non-fatal alerts during handshake
 o testcurl.pl: allow source to be in an arbitrary directory
 o CURLOPT_HTTPPROXYTUNNEL.3: only works with a HTTP proxy
 o SSPI-error: Change SEC_E_ILLEGAL_MESSAGE description [20]
 o parse_proxy: switch off tunneling if non-HTTP proxy [21]
 o share_init: fix OOM crash
 o perl: remove subdir, not touched in 9 years
 o CURLOPT_COOKIELIST.3: Add example
 o CURLOPT_COOKIE.3: Explain that the cookies won't be modified [22]
 o CURLOPT_COOKIELIST.3: Explain Set-Cookie without a domain [23]
 o FAQ: How do I port libcurl to my OS?
 o openssl: Use TLS_client_method for OpenSSL 1.1.0+
 o HTTP-NTLM: fail auth on connection close instead of looping [24]
 o curl_setup: Add macros for FOPEN_READTEXT, FOPEN_WRITETEXT [25]
 o curl_getdate.3: update RFC reference
 o curl_multi_info_read.3: added example
 o curl_multi_perform.3: added example
 o curl_multi_timeout.3: added example
 o cookie: Stop exporting any-domain cookies [26]
 o openssl: remove dummy callback use from SSL_CTX_set_verify()
 o openssl: remove SSL_get_session()-using code
 o openssl: removed USERDATA_IN_PWD_CALLBACK kludge
 o openssl: removed error string #ifdef
 o openssl: Fix verification of server-sent legacy intermediates [27]
 o docs: man page indentation and syntax fixes
 o docs: Spelling fixes
 o fopen.c: fix a few compiler warnings
 o CURLOPT_OPENSOCKETFUNCTION: return error at once [28]
 o schannel: Add support for optional client certificates
 o build: Properly detect OpenSSL 1.0.2 when using configure
 o urldata: store POST size in state.infilesize too [29]
 o security:choose_mech remove dead code
 o rtsp_do: remove dead code
 o docs: many HTTP URIs changed to HTTPS
 o schannel: schannel_recv overhaul [32]

This release includes the following known bugs:

 o see docs/KNOWN_BUGS (http://curl.haxx.se/docs/knownbugs.html)

This release would not have looked like this without help, code, reports and
advice from friends like these:

  Alessandro Ghedini, Alexander Dyagilev, Anders Bakken, Anthony Avina,
  Ashish Shukla, Bert Huijben, Brian Chrisman, Brian Prodoehl, Chris Araman,
  Dagobert Michelsen, Dan Fandrich, Daniel Melani, Daniel Stenberg,
  Dmitry Eremin-Solenikov, Drake Arconis, Egon Eckert, Frank Meier, Fred Stluka,
  Gisle Vanem, Grant Pannell, Isaac Boukris, Jens Rantil, Joel Depooter,
  Kamil Dudka, Linus Nielsen Feltzing, Linus Nielsen Feltzing Feltzing,
  Liviu Chircu, Marc Hoersken, Michael Osipov, Oren Souroujon, Orgad Shaneh,
  Patrick Monnerat, Patrick Rapin, Paul Howarth, Paul Oliver, Rafayel Mkrtchyan,
  Ray Satiro, Sean Boudreau, Tatsuhiro Tsujikawa, Tomas Tomecek, Viktor Szakáts,
  Ville Skyttä, Yehezkel Horowitz,
  (43 contributors)

        Thanks! (and sorry if I forgot to mention someone)

References to bug reports and discussions on issues:

 [1] = http://curl.haxx.se/mail/lib-2015-04/0095.html
 [2] = https://github.com/bagder/curl/pull/206
 [3] = \ 
https://github.com/bagder/curl/commit/5 … t-10473445
 [4] = https://github.com/bagder/curl/pull/141
 [5] = https://github.com/bagder/curl/issues/198
 [6] = http://curl.haxx.se/mail/lib-2015-04/0199.html
 [7] = https://github.com/bagder/curl/issues/244
 [8] = https://github.com/bagder/curl/issues/219
 [9] = https://github.com/bagder/curl/pull/258
 [10] = https://github.com/bagder/curl/issues/254
 [11] = http://curl.haxx.se/libcurl/c/CURLOPT_P … _NAME.html
 [12] = http://curl.haxx.se/libcurl/c/CURLOPT_SERVICE_NAME.html
 [13] = http://curl.haxx.se/docs/manpage.html#- … rvice-name
 [14] = http://curl.haxx.se/docs/manpage.html#--service-name
 [15] = http://curl.haxx.se/libcurl/c/CURLOPT_PIPEWAIT.html
 [16] = http://curl.haxx.se/libcurl/c/CURLMOPT_PIPELINING.html
 [17] = https://github.com/bagder/curl/issues/275
 [18] = https://github.com/bagder/curl/issues/281
 [19] = https://github.com/bagder/curl/issues/282
 [20] = https://github.com/bagder/curl/issues/267
 [21] = http://curl.haxx.se/mail/lib-2015-05/0056.html
 [22] = http://curl.haxx.se/mail/lib-2015-05/0115.html
 [23] = http://curl.haxx.se/mail/lib-2015-05/0137.html
 [24] = https://github.com/bagder/curl/issues/256
 [25] = https://github.com/bagder/curl/pull/258 … -107093055
 [26] = https://github.com/bagder/curl/issues/292
 [27] = \ 
https://rt.openssl.org/Ticket/Display.h … pass=guest
 [28] = http://curl.haxx.se/mail/lib-2015-06/0047.html
 [29] = http://curl.haxx.se/mail/lib-2015-06/0019.html
 [30] = http://curl.haxx.se/docs/adv_20150617A.html
 [31] = http://curl.haxx.se/docs/adv_20150617B.html
 [32] = https://github.com/bagder/curl/issues/244
   2015-06-12 12:52:19 by Thomas Klausner | Files touched by this commit (3152)
Log message:
Recursive PKGREVISION bump for all packages mentioning 'perl',
having a PKGNAME of p5-*, or depending such a package,
for perl-5.22.0.
   2015-06-03 14:00:06 by Filip Hajny | Files touched by this commit (4) | Package updated
Log message:
Add optional support for HTTP/2 via www/nghttp2. Patch nghttp2 support
until the curl interface is updated in 7.43. Bump PKGREVISION.
   2015-05-03 12:11:55 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
Update to 7.42.1:

Version 7.42.1 (28 Apr 2015)

Daniel Stenberg (28 Apr 2015)
- RELEASE-NOTES: 7.42.1 ready

- CURLOPT_HEADEROPT: default to separate

  Make the HTTP headers separated by default for improved security and
  reduced risk for information leakage.

  Bug: http://curl.haxx.se/docs/adv_20150429.html
  Reported-by: Yehezkel Horowitz, Oren Souroujon

- RELEASE-NOTES: synced with a6e0270e

- sws: init http2 state properly

  It would otherwise cause problems when running tests after 1801 etc.

- curl_easy_getinfo.3: document 'internals' in CURLINFO_TLS_SESSION

  ... as it was previouly undocumented what the pointer was.

- openssl: fix serial number output

  The code extracting the cert serial number was broken and didn't display
  it properly.

  Bug: https://github.com/bagder/curl/issues/235
  Reported-by: dkjjr89

- [Alessandro Ghedini brought this change]

  curl.1: fix typo

- RELEASE-NOTES: toward 7.42.1, synced with 097460a

- [Kamil Dudka brought this change]

  curl -z: do not write empty file on unmet condition

  This commit fixes a regression introduced in curl-7_41_0-186-g261a0fe.
  It also introduces a regression test 1424 based on tests 78 and 1423.

  Reported-by: Viktor Szakats
  Bug: https://github.com/bagder/curl/issues/237

- [Kamil Dudka brought this change]

  docs: distribute the CURLOPT_PINNEDPUBLICKEY(3) man page, too

- connectionexists: follow-up to fd9d3a1ef1f

  PROTOPT_CREDSPERREQUEST still needs to be checked even when NTLM is not

  Mistake-caught-by: Kamil Dudka

- connectionexists: fix build without NTLM

  Do not access NTLM-specific struct fields when built without NTLM

  bug: http://curl.haxx.se/?i=231
  Reported-by: Patrick Rapin

- dist: include {src,lib}/checksrc.whitelist