./www/curl, Client that groks URLs

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 7.36.0, Package name: curl-7.36.0, Maintainer: pkgsrc-users

Curl is a command line tool for transferring files with URL syntax, supporting
HTTPS certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload,
proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate,
kerberos...), file transfer resume, proxy tunneling and a busload of other
useful tricks.

Required to run:

Package options: gssapi, inet6, libidn

Master sites: (Expand)

SHA1: c39b120585a8a8d64ef14459d6d5f22831d4a7c4
RMD160: 864f0fe3a15f016cf79bf47172a2ae6a54e0cce4
Filesize: 2743.424 KB

Version history: (Expand)

CVS history: (Expand)

   2014-03-31 10:45:21 by Thomas Klausner | Files touched by this commit (2)
Log message:
Add missing header for DragonflyBSD.
PR 48691 by David Shao.
   2014-03-30 14:57:54 by S.P.Zeidler | Files touched by this commit (4) | Package updated
Log message:
Upstream release notes:

Fixed in 7.36.0 - March 26 2014
Release contains security-related bug fixes


    ntlm: Added support for NTLMv2
    tool: Added support for URL specific options
    openssl: add ALPN support
    gtls: add ALPN support
    nss: add ALPN and NPN support
    tool: add --no-alpn and --no-npn
    winssl: enable TLSv1.1 and TLSv1.2 by default
    winssl: TLSv1.2 disables certificate signatures using MD5 hash
    winssl: enable hostname verification of IP address using SAN or CN
    darwinssl: Don't omit CN verification when an IP address is used
    http2: build with current nghttp2 version
    polarssl: dropped support for PolarSSL < 1.3.0
    openssl: info message with SSL version used


    SECURITY ADVISORY: wrong re-use of connections
    SECURITY ADVISORY: IP address wildcard certificate validation
    SECURITY ADVISORY: not verifying certs for TLS to IP address / Darwinssl
    SECURITY ADVISORY: not verifying certs for TLS to IP address / Winssl
    nss: allow to use ECC ciphers if NSS implements them
    netrc: Fixed a memory leak in an OOM condition
    ftp: fixed a memory leak on wildcard error path
    pipeline: Fixed a NULL pointer dereference on OOM
    nss: prefer highest available TLS version
    100-continue: fix timeout condition
    ssh: Fixed a NULL pointer dereference on OOM condition
    formpost: use semicolon in multipart/mixaed
    --help: add missing --tlsv1.x options
    formdata: Fixed memory leak on OOM condition
    ConnectionExists: reusing possible HTTP+NTLM connections better
    mingw32: fix compilation
    chunked decoder: track overflows correctly
    curl_easy_setopt.3: add CURL_HTTP_VERSION_2_0
    dict: fix memory leak in OOM exit path
    valgrind: added suppression on optimized code
    curl: output protocol headers using binary mode
    tool: Added URL index to password prompt for multiple operations
    ConnectionExists: re-use non-NTLM connections better
    axtls: call ssl_read repeatedly
    multi: make MAXCONNECTS default 4 x number of easy handles function
    configure: Fix the --disable-crypto-auth option
    multi: ignore SIGPIPE internally
    curl.1: update the description of --tlsv1
    SFTP: skip reading the dir when NOBODY=1
    easy: Fixed a memory leak on OOM condition
    tool: Fixed incorrect return code when setting HTTP request fails
    configure: Tiny fix to honor POSIX
    tool: Do not output libcurl source for the information only parameters
    Rework Open Watcom make files to use standard Wmake features
    x509asn: moved out Curl_verifyhost from NSS builds
    configure: call it GSS-API
    hostcheck: Curl_cert_hostcheck is not used by NSS builds
    multi_runsingle: move timestamp into INIT
    remote_port: allow connect to port 0
    parse_remote_port: error out on illegal port numbers better
    ssh: Pass errors from libssh2_sftp_read up the stack
    docs: remove documentation on setting up krb4 support
    polarssl: build fixes to work with PolarSSL 1.3.x
    polarssl: fix possible handshake timeout issue in multi
    nss: allow to enable/disable cipher-suites better
    ssh: prevent a logic error that could result in an infinite loop
    http2: free resources on disconnect
    polarssl: avoid extra newlines in debug messages
    rtsp: parse "Session:" header properly
    trynextip: don't store 'ai' on failed connects
    Curl_cert_hostcheck: strip trailing dots in host name and wildcard
   2014-02-13 00:18:57 by Matthias Scheler | Files touched by this commit (1568)
Log message:
Recursive PKGREVISION bump for OpenSSL API version bump.
   2014-02-01 12:07:14 by Adam Ciarcinski | Files touched by this commit (3) | Package updated
Log message:
Changes 7.35.0:
imap/pop3/smtp: Added support for SASL authentication downgrades
imap/pop3/smtp: Extended the login options to support multiple auth mechanisms
TheArtOfHttpScripting: major update, converted layout and more
mprintf: Added support for I, I32 and I64 size specifiers
makefile: Added support for VC7, VC11 and VC12

SECURITY ADVISORY: re-use of wrong HTTP NTLM connection
curl_easy_setopt: Fixed OAuth 2.0 Bearer option name
pop3: Fixed APOP being determined by CAPA response rather than by timestamp
Curl_pp_readresp: zero terminate line
docs: mention CURLOPT_MAX_RECV/SEND_SPEED_LARGE don't work for FILE://
pop3: Fixed auth preference not being honored when CAPA not supported
imap: Fixed auth preference not being honored when CAPABILITY not supported
threaded resolver: Use pthread_t * for curl_thread_t
FILE: we don't support paused transfers using this protocol
connect: Try all addresses in first connection attempt
curl_easy_setopt.3: Added SMTP information to CURLOPT_INFILESIZE_LARGE
OpenSSL: Fix forcing SSLv3 connections
openssl: allow explicit sslv2 selection
FTP parselist: fix "total" parser
conncache: fix possible dereference of null pointer
multi.c: fix possible dereference of null pointer
mk-ca-bundle: introduces -d and warns about using this script
ConnectionExists: fix NTLM check for new connection
trynextip: fix build for non-IPV6 capable systems
Curl_updateconninfo: don't do anything for UDP "connections"
darwinssl: un-break Leopard build after PKCS-12 change
threaded-resolver: never use NULL hints with getaddrinf
multi_socket: remind app if timeout didn't run
OpenSSL: deselect weak ciphers by default
error message: Sensible message on timeout when transfer size unknown
curl_easy_setopt.3: mention how to unset CURLOPT_INFILESIZE*
win32: Fixed use of deprecated function 'GetVersionInfoEx' for VC12
configure: fix gssapi linking on HP-UX
chunked-parser: abort on overflows, allow 64 bit chunks
chunked parsing: relax the CR strictness
cookie: max-age fixes
progress bar: always update when at 100%
progress bar: increase update frequency to 10Hz
tool: Fixed incorrect return code if command line parser runs out of memory
tool: Fixed incorrect return code if password prompting runs out of memory
HTTP POST: omit Content-Length if data size is unknown
GnuTLS: disable insecure ciphers
GnuTLS: honor --slv2 and the --tlsv1[.N] switches
multi: Fixed a memory leak on OOM condition
netrc: Fixed a memory and file descriptor leak on OOM
getpass: fix password parsing from console
TFTP: fix crash on time-out
hostip: don't remove DNS entries that are in use
tests: lots of tests fixed to pass the OOM torture tests
   2013-12-31 12:48:03 by Adam Ciarcinski | Files touched by this commit (3) | Package updated
Log message:
Changes 7.34.0:
SSL: protocol version can be specified more precisely
imap/pop3/smtp: Added graceful cancellation of SASL authentication
Add "Happy Eyeballs" for IPv4/IPv6 dual connect attempts
base64: Added validation of base64 input strings when decoding
curl_easy_setopt: Added the ability to set the login options separately
smtp: Added support for additional SMTP commands
curl_easy_getinfo: Added CURLINFO_TLS_SESSION for accessing TLS internals
nss: allow to use TLS > 1.0 if built against recent NSS
SECURITY: added this document to describe our security processes
parseconfig: warn if unquoted white spaces are detected

SECURITY VULNERABILITY: libcurl cert name check ignore with GnuTLS
darwinssl: un-break iOS build after PKCS/12 feature added
tool: use XFERFUNCTION to save some casts
usercertinmem: fix memory leaks
ssh: Handle successful SSH_USERAUTH_NONE
NSS: acknowledge the --no-sessionid/CURLOPT_SSL_SESSIONID_CACHE option
test906: Fixed failing test on some platforms
sasl: initialize NSS before using NTLM crypto
sasl: Fixed memory leak in OAUTH2 message creation
imap/pop3/smtp: Fixed QUIT / LOGOUT being sent when SSL connect fails
cmake: unbreak for non-Windows platforms
ssh: initialize per-handle data in ssh_connect()
glob: fix broken URLs
configure: check for long long when building with cyassl
CURLOPT_RESOLVE: mention they don't time-out
docs/examples/httpput.c: fix build for MSVC
FTP: make the data connection work when going through proxy
NSS: support for CERTINFO feature
curl_multi_wait: accept 0 from multi_timeout() as valid timeout
glob_range: pass the closing bracket for a-z ranges
tool_help: Updated --list-only description to include POP3
Curl_ssl_push_certinfo_len: don't %.*s non-zero-terminated string
cmake: fix Windows build with IPv6 support
ares: Fixed compilation under Visual Studio 2012
curl_easy_setopt.3: clarify CURLOPT_SSL_VERIFYHOST documentation
curl.1: mention that -O does no URL decoding
darwinssl: PKCS/12 import feature now requires Lion or later
darwinssl: check for SSLSetSessionOption() presence when toggling BEAST
configure: Fix test with -Werror=implicit-function-declaration
sigpipe: factor out sigpipe_reset from easy.c
curl_multi_cleanup: ignore SIGPIPE
globbing: curl glob counter mismatch with {} list use
parseconfig: dash options can't specified with colon or equals
curl.h: for OpenBSD
darwinssl: Fix #if 10.6.0 for SecKeychainSearch
TFTP: fix return codes for connect timeout
login options: remove the ;[options] support from CURLOPT_USERPWD
imap: Fixed incorrect fallback to clear text authentication
parsedate: avoid integer overflow
curl.1: document -J doesn't %-decode
multi: add timer inaccuracy margin to timeout/connecttimeout
   2013-10-17 09:56:36 by Adam Ciarcinski | Files touched by this commit (4)
Log message:
Changes 7.33.0:
* test code for testing the event based API
* CURLM_ADDED_ALREADY: new error code
* test TFTP server: support "writedelay" within
* krb4 support has been removed
* imap/pop3/smtp: added basic SASL XOAUTH2 support
* darwinssl: add support for PKCS12 files for client authentication
* darwinssl: enable BEAST workaround on iOS 7 & later
* Pass password to OpenSSL engine by user interface
* c-ares: Add support for various DNS binding options
* cookies: add expiration
* curl: added --oauth2-bearer option
   2013-10-12 06:31:48 by Richard PALO | Files touched by this commit (2) | Package updated
Log message:
update builtin solaris gssapi/mit-krb5 support for curl
   2013-08-13 19:07:32 by Adam Ciarcinski | Files touched by this commit (3) | Package updated
Log message:
Changes 7.32.0:
curl: allow timeouts to accept decimal values
OS400: add slist and certinfo EBCDIC support
OS400: new SSL backend GSKit
CURLOPT_XFERINFOFUNCTION: introducing a new progress callback
LIBCURL-STRUCTS: new document

dotdot: introducing dot file path cleanup
docs: fix typo in curl_easy_getinfo manpage
test1230: avoid using hard-wired port number
test1396: invoke the correct test tool
SIGPIPE: ignored while inside the library
darwinssl: fix crash that started happening in Lion
OpenSSL: check for read errors, don't assume
c-ares: improve error message on failed resolve
printf: make sure %x are treated unsigned
formpost: better random boundaries
url: restore the functionality of 'curl -u :'
curl.1: fix typo in --xattr description
digest: improve nonce generation
configure: automake 1.14 compatibility tweak
curl.1: document the --post303 option in the man page
curl.1: document the --sasl-ir option in the man page
setup-vms.h: sk_pop symbol tweak
tool_paramhlp: try harder to catch negatives
cmake: Fix for MSVC2010 project generation
asyn-ares: Don't blank ares servers if none configured
curl_multi_wait: set revents for extra fds
Reinstate "WIN32 MemoryTracking: track wcsdup() _wcsdup() and _tcsdup()
ftp_do_more: consider DO_MORE complete when server connects back
curl_easy_perform: gradually increase the delay time
curl: fix symbolic names for CURLUSESSL_* enum in --libcurl output
curl: fix upload of a zip file in OpenVMS
build: fix linking on Solaris 10
curl_formadd: CURLFORM_FILECONTENT wrongly rejected some option combos
curl_formadd: fix file upload on VMS
curl_easy_pause: on unpause, trigger mulit-socket handling
md5 & metalink: use better build macros on Apple operating systems
darwinssl: fix build error in crypto authentication under Snow Leopard
curl: make --progress-bar update the line less frequently
configure: don't error out on variable confusions (CFLAGS, LDFLAGS etc)
mk-ca-bundle: skip more untrusted certificates
formadd: wrong pointer for file name when CURLFORM_BUFFERPTR used
FTP: when EPSV gets a 229 but fails to connect, retry with PASV
mk-ca-bundle.1: don't install on make install
VMS: lots of updates and fixes of the build procedure
global dns cache: didn't work (regression)
global dns cache: fix memory leak