Subject: CVS commit: pkgsrc/www/curl
From: Thomas Klausner
Date: 2022-06-27 09:50:13
Message id: 20220627075013.DCAB9FB1A@cvs.NetBSD.org

Log Message:
curl: update to 7.84.0.

Security fix release.

This release includes the following changes:

 o curl: add --rate to set max request rate per time unit [69]
 o curl: deprecate --random-file and --egd-file [12]
 o curl_version_info: add CURL_VERSION_THREADSAFE [100]
 o CURLINFO_CAPATH/CAINFO: get the default CA paths from libcurl [9]
 o lib: make curl_global_init() threadsafe when possible [101]
 o libssh2: add CURLOPT_SSH_HOSTKEYFUNCTION [78]
 o opts: deprecate RANDOM_FILE and EGDSOCKET [13]
 o socks: support unix sockets for socks proxy [2]

This release includes the following bugfixes:

 o aws-sigv4: fix potentional NULL pointer arithmetic [48]
 o bindlocal: don't use a random port if port number would wrap [14]
 o c-hyper: mark status line as status for Curl_client_write() [58]
 o ci: avoid `cmake -Hpath` [114]
 o CI: bump FreeBSD 13.0 to 13.1 [127]
 o ci: update github actions [36]
 o cmake: add libpsl support [3]
 o cmake: do not add libcurl.rc to the static libcurl library [53]
 o cmake: enable curl.rc for all Windows targets [55]
 o cmake: fix detecting libidn2 [56]
 o cmake: support adding a suffix to the OS value [54]
 o configure: skip libidn2 detection when winidn is used [89]
 o configure: use the SED value to invoke sed [28]
 o configure: warn about rustls being experimental [103]
 o content_encoding: return error on too many compression steps [106]
 o cookie: address secure domain overlay [7]
 o cookie: apply limits [83]
 o copyright.pl: parse and use .reuse/dep5 for skips [105]
 o copyright: make repository REUSE compliant [119]
 o curl.1: add a few see also --tls-max [52]
 o curl.1: mention exit code zero too [44]
 o curl: re-enable --no-remote-name [31]
 o curl_easy_pause.3: remove explanation of progress function [97]
 o curl_getdate.3: document that some illegal dates pass through [34]
 o Curl_parsenetrc: don't access local pwbuf outside of scope [27]
 o curl_url_set.3: clarify by default using known schemes only [120]
 o CURLOPT_ALTSVC.3: document the file format [118]
 o CURLOPT_FILETIME.3: fix the protocols this works with
 o CURLOPT_HTTPHEADER.3: improve comment in example [66]
 o CURLOPT_NETRC.3: document the .netrc file format
 o CURLOPT_PORT.3: We discourage using this option [92]
 o CURLOPT_RANGE.3: remove ranged upload advice [99]
 o digest: added detection of more syntax error in server headers [81]
 o digest: tolerate missing "realm" [80]
 o digest: unquote realm and nonce before processing [82]
 o DISABLED: disable 1021 for hyper again
 o docs/cmdline-opts: add copyright and license identifier to each file [112]
 o docs/CONTRIBUTE.md: document the 'needs-votes' concept [79]
 o docs: clarify data replacement policy for MIME API [16]
 o doh: remove UNITTEST macro definition [67]
 o examples/crawler.c: use the curl license [73]
 o examples: remove fopen.c and rtsp.c [76]
 o FAQ: Clarify Windows double quote usage [42]
 o fopen: add Curl_fopen() for better overwriting of files [72]
 o ftp: restore protocol state after http proxy CONNECT [110]
 o ftp: when failing to do a secure GSSAPI login, fail hard [62]
 o GHA/hyper: enable debug in the build
 o gssapi: improve handling of errors from gss_display_status [45]
 o gssapi: initialize gss_buffer_desc strings
 o headers api: remove EXPERIMENTAL tag [35]
 o http2: always debug print stream id in decimal with %u [46]
 o http2: reject overly many push-promise headers [63]
 o http: restore header folding behavior [64]
 o hyper: use 'alt-used' [71]
 o krb5: return error properly on decode errors [107]
 o lib: make more protocol specific struct fields #ifdefed [84]
 o libcurl-security.3: add "Secrets in memory" [30]
 o libcurl-security.3: document CRLF header injection [98]
 o libssh: skip the fake-close when libssh does the right thing [102]
 o links: update dead links to the curl-wiki [21]
 o log2changes: do not indent empty lines [ci skip] [37]
 o macos9: remove partial support [22]
 o Makefile.am: fix portability issues [1]
 o Makefile.m32: delete obsolete options, improve -On [ci skip] [65]
 o Makefile.m32: delete two obsolete OpenSSL options [ci skip] [39]
 o Makefile.m32: stop forcing XP target with ipv6 enabled [ci skip] [116]
 o max-time.d: clarify max-time sets max transfer time [70]
 o mprintf: ignore clang non-literal format string [19]
 o netrc: check %USERPROFILE% as well on Windows [77]
 o netrc: support quoted strings [33]
 o ngtcp2: allow curl to send larger UDP datagrams [29]
 o ngtcp2: correct use of ngtcp2 and nghttp3 signed integer types [25]
 o ngtcp2: enable Linux GSO [91]
 o ngtcp2: extend QUIC transport parameters buffer [4]
 o ngtcp2: fix alert_read_func return value [26]
 o ngtcp2: fix typo in preprocessor condition [121]
 o ngtcp2: handle error from ngtcp2_conn_submit_crypto_data [5]
 o ngtcp2: send appropriate connection close error code [6]
 o ngtcp2: support boringssl crypto backend [17]
 o ngtcp2: use helper funcs to simplify TLS handshake integration [68]
 o ntlm: provide a fixed fake host name [32]
 o projects: fix third-party SSL library build paths for Visual Studio [125]
 o quic: add Curl_quic_idle [18]
 o quiche: support ca-fallback [49]
 o rand: stop detecting /dev/urandom in cross-builds [113]
 o remote-name.d: mention --output-dir [88]
 o runtests.pl: add the --repeat parameter to the --help output [43]
 o runtests: fix skipping tests not done event-based [95]
 o runtests: skip starting the ssh server if user name is lacking [104]
 o scripts/copyright.pl: fix the exclusion to not ignore man pages [75]
 o sectransp: check for a function defined when __BLOCKS__ is undefined [20]
 o select: return error from "lethal" poll/select errors [93]
 o server/sws: support spaces in the HTTP request path
 o speed-limit/time.d: mention these affect transfers in either direction [74]
 o strcase: some optimisations [8]
 o test 2081: add a valid reply for the second request [60]
 o test 675: add missing CR so the test passes when run through Privoxy [61]
 o test414: add the '--resolve' keyword [23]
 o test681: verify --no-remote-name [90]
 o tests 266, 116 and 1540: add a small write delay
 o tests/data/test1501: kill ftp server after slow LIST response [59]
 o tests/getpart: fix getpartattr to work with "data" and "data2"
 o tests/server/sws.c: change the HTTP writedelay unit to milliseconds [47]
 o test{440,441,493,977}: add "HTTP proxy" keywords [40]
 o tool_getparam: fix --parallel-max maximum value constraint [51]
 o tool_operate: make sure --fail-with-body works with --retry [24]
 o transfer: fix potential NULL pointer dereference [15]
 o transfer: maintain --path-as-is after redirects [96]
 o transfer: upload performance; avoid tiny send [124]
 o url: free old conn better on reuse [41]
 o url: remove redundant #ifdefs in allocate_conn()
 o url: URL encode the path when extracted, if spaces were set
 o urlapi: make curl_url_set(url, CURLUPART_URL, NULL, 0) clear all parts [126]
 o urlapi: support CURLU_URLENCODE for curl_url_get()
 o urldata: reduce size of a few struct fields [86]
 o urldata: remove three unused booleans from struct UserDefined [87]
 o urldata: store tcp_keepidle and tcp_keepintvl as ints [85]
 o version: allow stricmp() for sorting the feature list [57]
 o vtls: make curl_global_sslset thread-safe [94]
 o wolfssh.h: removed [10]
 o wolfssl: correct the failf() message when a handle can't be made [38]
 o wolfSSL: explicitly use compatibility layer [11]
 o x509asn1: mark msnprintf return as unchecked [50]

Files:
RevisionActionfile
1.258modifypkgsrc/www/curl/Makefile
1.90modifypkgsrc/www/curl/PLIST
1.183modifypkgsrc/www/curl/distinfo