Log message:
curl: updated to 8.2.1

8.2.1

Bugfixes:

amigaos: fix sys/mbuf.h m_len macro clash
amissl: add missing signal.h include
amissl: fix AmiSSL v5 detection
cfilters: rename close/connect functions to avoid clashes
ciphers.d: put URL in first column
cmake: add `libcurlu`/`libcurltool` for unit tests
cmake: update ngtcp2 detection
configure: check for nghttp2_session_get_stream_local_window_size
CONTRIBUTE: drop mention of copyright year ranges
CONTRIBUTE: fix syntax in commit message description
curl_multi_wait.3: fix arg quoting to doc macro .BR
docs: mark two TLS options for TLS, not SSL
docs: provide more see also for cipher options
hostip: return IPv6 first for localhost resolves
http2: fix regression on upload EOF handling
http: VLH, very large header test and fixes
libcurl-errors.3: add CURLUE_OK
os400: correct EXPECTED_STRING_LASTZEROTERMINATED
quiche: fix lookup of transfer at multi
quiche: fix segfault and other things
rustls: update rustls-ffi 0.10.0
socks: print ipv6 address within brackets
src/mkhelp: strip off escape sequences
tool: fix tool_seek_cb build when SIZEOF_CURL_OFF_T > SIZEOF_OFF_T
transfer: do not clear the credentials on redirect to absolute URL
unittest: remove unneeded *_LDADD
websocket: rename arguments/variables to match docs

Log message:
curl, libcurl-gnutls: update to 8.2.0

This release includes the following changes:

 o curl: add --ca-native and --proxy-ca-native [24]
 o curl: add --trace-ids [53]
 o CURLOPT_MAIL_RCPT_ALLOWFAILS: replace CURLOPT_MAIL_RCPT_ALLLOWFAILS [5]
 o haproxy: add --haproxy-clientip flag to set client IPs [23]
 o lib: add CURLINFO_CONN_ID and CURLINFO_XFER_ID [54]

This release includes the following bugfixes:

 o bufq: make write/pass methods more robust [21]
 o build: drop unused/redundant `HAVE_WINLDAP_H` [25]
 o cf-socket: don't bypass fclosesocket callback if cancelled before connect [114]
 o cf-socket: move ctx declaration under HAVE_GETPEERNAME [91]
 o cf-socket: skip getpeername()/getsockname for TFTP [65]
 o checksrc: modernise perl file open [87]
 o checksrc: quote the file name to work with "funny" letters [93]
 o CI: brew fix for openssl in default path [116]
 o CI: don't install impacket if tests are not run
 o CI: enable parallel make in more builds
 o circleci: install impacket & wolfssl 5.6.0 [1]
 o cmake: add support for "unity" builds [13]
 o cmake: make use of snprintf [102]
 o cmake: stop CMake from quietly ignoring missing Brotli [81]
 o configure: add check for ldap_init_fd [80]
 o configure: fix run-compiler for old /bin/sh [4]
 o configure: the --without forms of the options are also gone [79]
 o connect-timeout.d: mention that the DNS lookup is included [85]
 o curl.h: include <sys/select.h> for vxworks [78]
 o curl: count uploaded data to stop at the originally given size [14]
 o curl: return error when asked to use an unsupported HTTP version [113]
 o curl_easy_nextheader.3: add missing open parenthesis examples [74]
 o curl_log: evaluate log statement only when transfer is verbose [8]
 o curl_mprintf.3: minor fix of the example
 o curl_pushheader_byname/bynum.3: document in their own man pages [37]
 o curl_url_set: enforce the max string length check for all parts [38]
 o CURLOPT_AWS_SIGV4.3: remove unused variable from example [11]
 o CURLOPT_INFILESIZE.3: mention -1 triggers chunked [55]
 o CURLOPT_MIMEPOST.3: clarify what setting to NULL means [95]
 o CURLOPT_SSH_PRIVATE_KEYFILE.3: expand on the file search [31]
 o docs/libcurl/libcurl.3: cleanups and improvements [46]
 o docs: add more .IP after .RE to fix indentation of generate paragraphs [82]
 o docs: fix missing parameter names in examples [41]
 o docs: update CURLOPT_UPLOAD.3 [63]
 o docs: update HTTP3.md for newer ngtcp2 and nghttp3 [28]
 o docs: use a space after RFC when spelling out RFC numbers [105]
 o example/connect-to: show CURLOPT_CONNECT_TO [47]
 o example/crawler: also set CURLOPT_AUTOREFERER [35]
 o example/crawler: make it use a few more options
 o example/default-scheme: set the default scheme for schemeless URLs [67]
 o example/hsts-preload: show one way to HSTS preload [68]
 o example/http2-download: set CURLOPT_BUFFERSIZE [34]
 o example/ipv6: feature CURLOPT_ADDRESS_SCOPE in use [27]
 o example/maxconnects: set maxconnect example [98]
 o example/opensslthreadlock: remove [59]
 o examples/ftpuploadresume.c: add use of CURLOPT_ACCEPTTIMEOUT_MS [39]
 o examples/http-options: show how to send "OPTIONS *" [69]
 o examples/https.c: use CURLOPT_CA_CACHE_TIMEOUT [19]
 o examples/multi-debugcallback.c: avoid the bool typedef [29]
 o examples/smtp-mime: use CURLOPT_MAIL_RCPT_ALLOWFAILS [71]
 o examples/unixsocket.c: example using CURLOPT_UNIX_SOCKET_PATH [40]
 o examples/websocket.c: websocket example using CONNECT_ONLY [17]
 o examples: make use of CURLOPT_(REDIR_|)PROTOCOLS_STR [70]
 o fopen: fix conversion warning on 32-bit Android [49]
 o fopen: optimize [101]
 o hostip.c: Move macOS-specific calls into global init call [104]
 o HTTP/2: upload handling fixes [56]
 o http2: better support for --limit-rate [7]
 o http2: error stream resets with code CURLE_HTTP2_STREAM [84]
 o http2: fix crash in handling stream weights [76]
 o http2: fix variable type [50]
 o http2: h2 and h2-PROXY connection alive check fixes [83]
 o http2: raise header limitations above and beyond [73]
 o http2: send HEADER & DATA together if possible [99]
 o http2: treat initial SETTINGS as a WINDOW_UPDATE [100]
 o HTTP3.md: update openssl version [57]
 o http3/ngtcp2: upload EAGAIN handling [108]
 o http: rectify the outgoing Cookie: header field size check [72]
 o hyper: fix EOF handling on input [66]
 o hyper: unslow [51]
 o imap-append.c: update to make it more likely to work [106]
 o imap: Provide method to disable SASL if it is advertised [75]
 o krb5: add typecast to please Coverity
 o libcurl-url.3: also mention CURLUPART_ZONEID
 o libcurl-ws.3. WebSocket API overview [48]
 o libssh2: provide error message when setting host key type fails [9]
 o libssh2: use custom memory functions [12]
 o ngtcp2: assigning timeout, but value is overwritten before used [103]
 o ngtcp2: build with 0.17.0 and nghttp3 0.13.0 [96]
 o ngtcp2: use ever increasing timestamp in io [32]
 o quiche: avoid NULL deref in debug logging [97]
 o quiche: fix defects found in latest coverity report [94]
 o quote.d: fix indentation of generated paragraphs [86]
 o runtests: abort test run after failure without -a [3]
 o runtests: better handle ^C during slow tests
 o runtests: consistently write the test check summary block
 o runtests: create multiple test runners when requested [20]
 o runtests: include missing valgrind package [89]
 o runtests: make test file directories in log/N [44]
 o runtests: rename server command file
 o runtests: use more consistent failure lines
 o runtests: work around a perl without SIGUSR1 [88]
 o runtests; give each server a unique log lock file [43]
 o scripts: Fix GHA matrix job detection in cijobs.pl
 o sectransp: fix EOF handling [92]
 o system.h: remove __IBMC__/__IBMCPP__ guards and apply to all z/OS compiles [10]
 o test2600: fix the description [90]
 o test427: verify sending more cookies than fit in a 8190 bytes line [61]
 o tests/http: Add mod_h2 directive `H2ProxyRequests` [77]
 o tests/servers.pm: pick unused port number with a server socket [16]
 o tests/servers: generate temp names in /tmp for unix domain sockets [6]
 o tests: fix error messages & handling around sockets [30]
 o tests: improve reliability of TFTP tests
 o testutil: allow multiple %-operators on the same line [62]
 o timeval: use CLOCK_MONOTONIC_RAW if available [52]
 o tls13-ciphers.d: include Schannel [36]
 o tool: remove exclamation marks from error/warning messages
 o tool: remove newlines from all helpf/notef/warnf/errorf calls [15]
 o tool_easysrc.h: correct `easysrc_perform` for `CURL_DISABLE_LIBCURL_OPTION` [109]
 o tool_getparam: fix comment [22]
 o tool_operate: allow cookie lines up to 8200 bytes [60]
 o tool_parsecfg: accept line lengths up to 10M [115]
 o tool_urlglob: use curl_off_t instead of longs [2]
 o tool_writeout_json: fix encoding of control characters [107]
 o transfer: clear credentials when redirecting to absolute URL [64]
 o urlapi: have *set(PATH) prepend a slash if one is missing [42]
 o urlapi: scheme must start with alpha [26]
 o vtls: avoid memory leak if sha256 call fails [58]
 o websocket-cb: example doing WebSocket download using callback [18]
 o wolfssl: detect when TLS 1.2 support is not built into wolfssl [111]
 o wolfssl: support setting CA certificates as blob [110]
 o ws: make the curl_ws_meta() return pointer a const [45]

Log message:
www/curl: Need Perl only for running tests.

Log message:
libcurl-gnutls: update to version 8.1.2, use Makefile fragment

Log message:
curl: create Makefile.common, to be used by curl and libcurl-gnutls

Log message:
curl: updated to 8.1.2

curl and libcurl 8.1.2

This release includes the following bugfixes:

 o configure: quote the assignments for run-compiler [1]
 o configure: without pkg-config and no custom path, use -lnghttp2 [8]
 o curl: cache the --trace-time value for a second [9]
 o http2: fix EOF handling on uploads with auth negotiation [7]
 o http3: send EOF indicator early as possible [11]
 o lib1560: verify more scheme guessing [5]
 o lib: remove unused functions, make single-use static [3]
 o libcurl.m4: remove trailing 'dnl' that causes this to break autoconf [10]
 o libssh: when keyboard-interactive auth fails, try password [4]
 o misc: fix spelling mistakes [2]
 o page-header: mention curl version and how to figure out current release [13]
 o page-header: minor wording polish in the URL segment [12]
 o scripts/singleuse.pl: add more API calls
 o urlapi: remove superfluous host name check [6]

Log message:
curl: updated to 8.1.1

curl and libcurl 8.1.1

This release includes the following bugfixes:

 o cf-socket: completely remove the disabled USE_RECV_BEFORE_SEND_WORKAROUND [12]
 o checksrc: disallow spaces before labels [16]
 o cmake: avoid `list(PREPEND)` for compatibility [24]
 o cmake: repair cross compiling [10]
 o configure: fix --help alignment [9]
 o configure: generate a script to run the compiler [11]
 o curl_easy_getinfo: clarify on return data types [15]
 o docs: document that curl_url_cleanup(NULL) is a safe no-op [4]
 o hostip: move easy_lock.h include above curl_memory.h [14]
 o http2: double http request parser max line length [8]
 o http2: increase stream window size to 10 MB [22]
 o http2: upload improvements [21]
 o lib: fix conversion warnings with gcc on macOS
 o lib: rename struct 'http_req' to 'httpreq' [23]
 o ngtcp2: fix compiler warning about possible null-deref [3]
 o ngtcp2: proper handling of uint64_t when adjusting send buffer [1]
 o os400: update chkstrings.c [2]
 o runtests: handle interrupted reads from IPC pipes
 o runtests: use the correct fd after select [20]
 o sectransp.c: make the code c89 compatible [17]
 o select: avoid returning an error on EINTR from select() or poll() [5]
 o test425: fix the log directory for the upload
 o url: provide better error message when URLs fail to parse [18]
 o urlapi: allow numerical parts in the host name [7]
 o vquic.c: make recvfrom_packets static, avoid compiler warning [6]

Log message:
curl: update to 8.1.0.

This release includes the following changes:

 o curl: add --proxy-http2 [62]
 o CURLPROXY_HTTPS2: for HTTPS proxy that may speak HTTP/2 [57]
 o hostip: refuse to resolve the .onion TLD [19]
 o tool_writeout: add URL component variables [41]

This release includes the following bugfixes:

 o amiga: Fix CA certificate paths for AmiSSL and MorphOS [150]
 o autotools: sync up clang picky warnings with cmake [114]
 o aws-sigv4.d: fix region identifier in example [168]
 o bufq: simplify since expression is always true [72]
 o cf-h1-proxy: skip an extra NULL assign [80]
 o cf-h2-proxy: fix processing ingress to stop too early [76]
 o cf-socket: add socket recv buffering for most tcp cases [90]
 o cf-socket: Disable socket receive buffer by default [75]
 o cf-socket: remove dead code discovered by PVS [82]
 o cf-socket: turn off IPV6_V6ONLY on Windows if it is supported [123]
 o checksrc: check for spaces before the colon of switch labels [160]
 o checksrc: find bad indentation in conditions without open brace [152]
 o checksrc: fix SPACEBEFOREPAREN for conditions starting with "*" [115]
 o ci: `-Wno-vla` no longer necessary [158]
 o CI: fix brew retries on GHA
 o CI: Set minimal permissions on workflow ngtcp2-quictls.yml [153]
 o CI: skip Azure for commits which change only GHA
 o CI: use another glob syntax for matching files on Appveyor
 o cmake: bring in the network library on Haiku [9]
 o cmake: do not add zlib headers for openssl [49]
 o CMake: make config version 8 compatible with 7 [28]
 o cmake: picky-linker fixes for openssl, ZLIB, H3 and more [31]
 o cmake: set SONAME for SunOS too [3]
 o cmake: speed up and extend picky clang/gcc options [116]
 o CMakeLists.txt: fix typo for Haiku detection [95]
 o compressed.d: clarify the words on "not notifying headers" [163]
 o config-dos.h: fix SIZEOF_CURL_OFF_T for MS-DOS/DJGPP [52]
 o configure: don't set HAVE_WRITABLE_ARGV on Windows [64]
 o configure: fix detection of apxs (for httpd) [157]
 o configure: make quiche require quiche_conn_send_ack_eliciting [46]
 o connect: fix https connection setup to treat ssl_mode correctly [94]
 o content_encoding: only do transfer-encoding compression if asked to [61]
 o cookie: address PVS nits [74]
 o cookie: clarify that init with data set to NULL reads no file [99]
 o curl: do NOT append file name to path for upload when there's a query [58]
 o curl_easy_getinfo.3: typo fix (duplicated "from the") [43]
 o curl_easy_unescape.3: rename the argument [113]
 o curl_path: bring back support for SFTP path ending in /~ [130]
 o curl_url_set.3: mention that users can set content rather freely [105]
 o CURLOPT_IPRESOLVE.3: this for host names, not IP addresses [165]
 o data.d: emphasize no conversion [5]
 o digest: clear target buffer [8]
 o doc: curl_mime_init() strong easy binding was relaxed in 7.87.0 [26]
 o docs/cmdline-opts: document the dotless config path [1]
 o docs/examples/protofeats.c: outputs all protocols and features [110]
 o docs/libcurl/curl_*escape.3: rename "url" argument to \ 
"input"/"string" [131]
 o docs/SECURITY-ADVISORY.md: how to write a curl security advisory [128]
 o docs: bump the minimum perl version to 5.6
 o docs: clarify that more backends have HTTPS proxy support [127]
 o dynbuf: never allocate larger than "toobig" [17]
 o easy_cleanup: require a "good" handle to act [149]
 o ftp: fix 'portsock' variable was assigned the same value [78]
 o ftp: remove dead code [79]
 o ftplistparser: move out private data from public struct [20]
 o ftplistparser: replace realloc with dynbuf [18]
 o gen.pl: error on duplicated See-Also fields [102]
 o getpart: better handle case of file not found
 o GHA-linux: add an address-sanitizer build [15]
 o GHA: add a memory-sanitizer job [2]
 o GHA: run all linux test jobs with valgrind [14]
 o GHA: suppress git clone output [89]
 o GIT-INFO: add --with-openssl [171]
 o gskit: various compile errors in OS400 [12]
 o h2/h3: replace `state.drain` counter with `state.dselect_bits` [141]
 o hash: fix assigning same value [73]
 o headers: clear (possibly) lingering pointer in init [167]
 o hostcheck: fix host name wildcard checking [134]
 o hostip: add locks around use of global buffer for alarm() [129]
 o hostip: enforce a maximum DNS cache size independent of timeout value [166]
 o HTTP-COOKIES.md: mention the #HttpOnly_ prefix [16]
 o http2: always EXPIRE_RUN_NOW unpaused http/2 transfers [139]
 o http2: do flow window accounting for cancelled streams [155]
 o http2: enlarge the connection window [101]
 o http2: flow control and buffer improvements [54]
 o http2: move HTTP/2 stream vars into local context [67]
 o http2: pass `stream` to http2_handle_stream_close to avoid NULL checks [140]
 o http2: remove unused Curl_http2_strerror function declaration [108]
 o HTTP3/quiche: terminate h1 response header when no body is sent [112]
 o http3: check stream_ctx more thoroughly in all backends [77]
 o HTTP3: document the ngtcp2/nghttp3 versions to use for building curl [143]
 o http3: expire unpaused transfers in all HTTP/3 backends [138]
 o http3: improvements across backends [51]
 o http: free the url before storing a new copy [162]
 o http: skip a double NULL assign [83]
 o ipv4.d/ipv6.d: they are "mutex", not "boolean" [122]
 o KNOWN_BUGS: remove fixed or outdated issues, move non-bugs [65]
 o lib/cmake: add HAVE_WRITABLE_ARGV check [63]
 o lib/sha256.c: typo fix in comment (duplicated "is available") [40]
 o lib1560: verify that more bad host names are rejected [104]
 o lib: add `bufq` and `dynhds` [34]
 o lib: remove CURLX_NO_MEMORY_CALLBACKS [55]
 o lib: unify the upload/method handling [144]
 o lib: use correct printf flags for sockets and timediffs [36]
 o libssh2: fix crash in keyboard callback [126]
 o libssh2: free fingerprint better [164]
 o libssh: tell it to use SFTP non-blocking [59]
 o man pages: simplify the .TH sections [133]
 o MANUAL.md: add dict example for looking up a single definition [132]
 o md(4|5): don't use deprecated iOS functions [21]
 o md4: only build when used [68]
 o mime: skip NULL assigns after Curl_safefree() [84]
 o multi: add handle asserts in DEBUG builds [11]
 o multi: add multi-ignore logic to multi_socket_action [154]
 o multi: free up more data earleier in DONE [118]
 o multi: remove a few superfluous assigns [97]
 o multi: remove PENDING + MSGSENT handles from the main linked list [23]
 o ngtcp2: adapted to 0.15.0 [151]
 o ngtcp2: adjust config and code checks for ngtcp2 without nghttp3 [4]
 o noproxy: pointer to local array 'hostip' is stored outside scope [93]
 o ntlm: clear lm and nt response buffers before use [7]
 o openssl: interop with AWS-LC [30]
 o OS400: fix and complete ILE/RPG binding [96]
 o OS400: implement EBCDIC support for recent features [100]
 o OS400: improve vararg emulation [92]
 o OS400: provide ILE/RPG usage examples [81]
 o pingpong: fix compiler warning "assigning an enum to unsigned char" \ 
[156]
 o pytest: improvements for suitable curl and error output [35]
 o quiche: disable pacing while pacing is not actually performed [148]
 o quiche: Enable IDLE egress handling [109]
 o RELEASE-PROCEDURE: update to new schedule [25]
 o rtsp: convert mallocs to dynbuf for RTP buffering [37]
 o rtsp: skip malformed RTSP interleaved frame data [33]
 o rtsp: skip NULL assigns after Curl_safefree() [85]
 o runtests: die if curl version can be found [10]
 o runtests: don't start servers if -l is given
 o runtests: fix -c option when run with valgrind [145]
 o runtests: fix quoting in Appveyor and Azure test integration [117]
 o runtests: lots of refactoring
 o runtests: refactor into more packages [60]
 o runtests: show error message if file can't be written
 o runtests: spawn a new process for the test runner [146]
 o rustls: fix error in recv handling [50]
 o schannel: add clarifying comment [98]
 o server/getpart: clear target buffer before load [6]
 o smb: remove double assign [86]
 o smbserver: remove temporary files before exit [135]
 o socketpair: verify with a random value [142]
 o ssh: Add support for libssh2 read timeout [170]
 o telnet: simplify the implementation of str_is_nonascii() [42]
 o test1169: fix so it works properly everywhere [106]
 o test1592: add flaky keyword [39]
 o test1960: point to the correct path for the precheck tool
 o test303: kill server after test
 o tests/http: add timeout to running curl in test cases [24]
 o tests/http: fix log formatting on wrong exit code [27]
 o tests/http: fix out-of-tree builds [121]
 o tests/http: improved httpd detection [45]
 o tests/http: more tests with specific clients [125]
 o tests/http: relax connection check in test_07_02 [53]
 o tests/keywords.pl: remove [111]
 o tests/libtest/lib1900.c: remove
 o tests/sshserver.pl: Define AddressFamily earlier [103]
 o tests: 1078 1288 1297 use valid IPv4 addresses
 o tests: document that the unittest keyword is special
 o tests: increase sws timeout for more robust testing [66]
 o tests: log a too-long Unix socket path in sws and socksd
 o tests: make test_12_01 a bit more forgiving on connection counts
 o tests: move pidfiles and portfiles under the log directory [48]
 o tests: move server config files under the pid dir [47]
 o tests: silence some Perl::Critic warnings in test suite [56]
 o tests: stop using strndup(), which isn't portable
 o tests: switch to 3-argument open in test suite
 o tests: turn perl modules into full packages
 o tests: use %LOGDIR to refer to the log directory
 o tool_cb_hdr: Fix 'Location:' formatting for early VTE terminals [147]
 o tool_operate: pass a long as CURLOPT_HEADEROPT argument [13]
 o tool_operate: refuse (--data or --form) and --continue-at combo [119]
 o transfer: refuse POSTFIELDS + RESUME_FROM combo [120]
 o transfer: skip extra assign [87]
 o url: fix null dispname for --connect-to option [161]
 o url: fix PVS nits [71]
 o url: remove call to Curl_llist_destroy in Curl_close [22]
 o urlapi: cleanups and improvements [91]
 o urlapi: detect and error on illegal IPv4 addresses [70]
 o urlapi: prevent setting invalid schemes with *url_set() [107]
 o urlapi: skip a pointless assign [88]
 o urlapi: URL encoding for the URL missed the fragment [29]
 o urldata: copy CURLOPT_AWS_SIGV4 value on handle duplication [137]
 o urldata: shrink *select_bits int => unsigned char [124]
 o vlts: use full buffer size when receiving data if possible [32]
 o vtls and h2 improvements [69]
 o Websocket: enhanced en-/decoding [136]
 o wolfssl.yml: bump to version 5.6.0 [44]
 o write-out.d: Use response_code in example [159]
 o ws: handle reads before EAGAIN better [38]

Log message:
revbump after textproc/icu update

Log message:
curl: Update to 8.0.1

Changes:
8.0.1
-----
 o Revert "multi: remove PENDING + MSGSENT handles"

This is a bugfix release only with that change and pretty critical
regression that should be okay during the freeze.

Thanks to bch for privately pinging and sharing that!