Path to this page:
Subject: CVS commit: pkgsrc/www/curl
From: Thomas Klausner
Date: 2023-05-17 11:05:18
Message id: 20230517090518.D4095FA87@cvs.NetBSD.org
Log Message:
curl: update to 8.1.0.
This release includes the following changes:
o curl: add --proxy-http2 [62]
o CURLPROXY_HTTPS2: for HTTPS proxy that may speak HTTP/2 [57]
o hostip: refuse to resolve the .onion TLD [19]
o tool_writeout: add URL component variables [41]
This release includes the following bugfixes:
o amiga: Fix CA certificate paths for AmiSSL and MorphOS [150]
o autotools: sync up clang picky warnings with cmake [114]
o aws-sigv4.d: fix region identifier in example [168]
o bufq: simplify since expression is always true [72]
o cf-h1-proxy: skip an extra NULL assign [80]
o cf-h2-proxy: fix processing ingress to stop too early [76]
o cf-socket: add socket recv buffering for most tcp cases [90]
o cf-socket: Disable socket receive buffer by default [75]
o cf-socket: remove dead code discovered by PVS [82]
o cf-socket: turn off IPV6_V6ONLY on Windows if it is supported [123]
o checksrc: check for spaces before the colon of switch labels [160]
o checksrc: find bad indentation in conditions without open brace [152]
o checksrc: fix SPACEBEFOREPAREN for conditions starting with "*" [115]
o ci: `-Wno-vla` no longer necessary [158]
o CI: fix brew retries on GHA
o CI: Set minimal permissions on workflow ngtcp2-quictls.yml [153]
o CI: skip Azure for commits which change only GHA
o CI: use another glob syntax for matching files on Appveyor
o cmake: bring in the network library on Haiku [9]
o cmake: do not add zlib headers for openssl [49]
o CMake: make config version 8 compatible with 7 [28]
o cmake: picky-linker fixes for openssl, ZLIB, H3 and more [31]
o cmake: set SONAME for SunOS too [3]
o cmake: speed up and extend picky clang/gcc options [116]
o CMakeLists.txt: fix typo for Haiku detection [95]
o compressed.d: clarify the words on "not notifying headers" [163]
o config-dos.h: fix SIZEOF_CURL_OFF_T for MS-DOS/DJGPP [52]
o configure: don't set HAVE_WRITABLE_ARGV on Windows [64]
o configure: fix detection of apxs (for httpd) [157]
o configure: make quiche require quiche_conn_send_ack_eliciting [46]
o connect: fix https connection setup to treat ssl_mode correctly [94]
o content_encoding: only do transfer-encoding compression if asked to [61]
o cookie: address PVS nits [74]
o cookie: clarify that init with data set to NULL reads no file [99]
o curl: do NOT append file name to path for upload when there's a query [58]
o curl_easy_getinfo.3: typo fix (duplicated "from the") [43]
o curl_easy_unescape.3: rename the argument [113]
o curl_path: bring back support for SFTP path ending in /~ [130]
o curl_url_set.3: mention that users can set content rather freely [105]
o CURLOPT_IPRESOLVE.3: this for host names, not IP addresses [165]
o data.d: emphasize no conversion [5]
o digest: clear target buffer [8]
o doc: curl_mime_init() strong easy binding was relaxed in 7.87.0 [26]
o docs/cmdline-opts: document the dotless config path [1]
o docs/examples/protofeats.c: outputs all protocols and features [110]
o docs/libcurl/curl_*escape.3: rename "url" argument to \
"input"/"string" [131]
o docs/SECURITY-ADVISORY.md: how to write a curl security advisory [128]
o docs: bump the minimum perl version to 5.6
o docs: clarify that more backends have HTTPS proxy support [127]
o dynbuf: never allocate larger than "toobig" [17]
o easy_cleanup: require a "good" handle to act [149]
o ftp: fix 'portsock' variable was assigned the same value [78]
o ftp: remove dead code [79]
o ftplistparser: move out private data from public struct [20]
o ftplistparser: replace realloc with dynbuf [18]
o gen.pl: error on duplicated See-Also fields [102]
o getpart: better handle case of file not found
o GHA-linux: add an address-sanitizer build [15]
o GHA: add a memory-sanitizer job [2]
o GHA: run all linux test jobs with valgrind [14]
o GHA: suppress git clone output [89]
o GIT-INFO: add --with-openssl [171]
o gskit: various compile errors in OS400 [12]
o h2/h3: replace `state.drain` counter with `state.dselect_bits` [141]
o hash: fix assigning same value [73]
o headers: clear (possibly) lingering pointer in init [167]
o hostcheck: fix host name wildcard checking [134]
o hostip: add locks around use of global buffer for alarm() [129]
o hostip: enforce a maximum DNS cache size independent of timeout value [166]
o HTTP-COOKIES.md: mention the #HttpOnly_ prefix [16]
o http2: always EXPIRE_RUN_NOW unpaused http/2 transfers [139]
o http2: do flow window accounting for cancelled streams [155]
o http2: enlarge the connection window [101]
o http2: flow control and buffer improvements [54]
o http2: move HTTP/2 stream vars into local context [67]
o http2: pass `stream` to http2_handle_stream_close to avoid NULL checks [140]
o http2: remove unused Curl_http2_strerror function declaration [108]
o HTTP3/quiche: terminate h1 response header when no body is sent [112]
o http3: check stream_ctx more thoroughly in all backends [77]
o HTTP3: document the ngtcp2/nghttp3 versions to use for building curl [143]
o http3: expire unpaused transfers in all HTTP/3 backends [138]
o http3: improvements across backends [51]
o http: free the url before storing a new copy [162]
o http: skip a double NULL assign [83]
o ipv4.d/ipv6.d: they are "mutex", not "boolean" [122]
o KNOWN_BUGS: remove fixed or outdated issues, move non-bugs [65]
o lib/cmake: add HAVE_WRITABLE_ARGV check [63]
o lib/sha256.c: typo fix in comment (duplicated "is available") [40]
o lib1560: verify that more bad host names are rejected [104]
o lib: add `bufq` and `dynhds` [34]
o lib: remove CURLX_NO_MEMORY_CALLBACKS [55]
o lib: unify the upload/method handling [144]
o lib: use correct printf flags for sockets and timediffs [36]
o libssh2: fix crash in keyboard callback [126]
o libssh2: free fingerprint better [164]
o libssh: tell it to use SFTP non-blocking [59]
o man pages: simplify the .TH sections [133]
o MANUAL.md: add dict example for looking up a single definition [132]
o md(4|5): don't use deprecated iOS functions [21]
o md4: only build when used [68]
o mime: skip NULL assigns after Curl_safefree() [84]
o multi: add handle asserts in DEBUG builds [11]
o multi: add multi-ignore logic to multi_socket_action [154]
o multi: free up more data earleier in DONE [118]
o multi: remove a few superfluous assigns [97]
o multi: remove PENDING + MSGSENT handles from the main linked list [23]
o ngtcp2: adapted to 0.15.0 [151]
o ngtcp2: adjust config and code checks for ngtcp2 without nghttp3 [4]
o noproxy: pointer to local array 'hostip' is stored outside scope [93]
o ntlm: clear lm and nt response buffers before use [7]
o openssl: interop with AWS-LC [30]
o OS400: fix and complete ILE/RPG binding [96]
o OS400: implement EBCDIC support for recent features [100]
o OS400: improve vararg emulation [92]
o OS400: provide ILE/RPG usage examples [81]
o pingpong: fix compiler warning "assigning an enum to unsigned char" \
[156]
o pytest: improvements for suitable curl and error output [35]
o quiche: disable pacing while pacing is not actually performed [148]
o quiche: Enable IDLE egress handling [109]
o RELEASE-PROCEDURE: update to new schedule [25]
o rtsp: convert mallocs to dynbuf for RTP buffering [37]
o rtsp: skip malformed RTSP interleaved frame data [33]
o rtsp: skip NULL assigns after Curl_safefree() [85]
o runtests: die if curl version can be found [10]
o runtests: don't start servers if -l is given
o runtests: fix -c option when run with valgrind [145]
o runtests: fix quoting in Appveyor and Azure test integration [117]
o runtests: lots of refactoring
o runtests: refactor into more packages [60]
o runtests: show error message if file can't be written
o runtests: spawn a new process for the test runner [146]
o rustls: fix error in recv handling [50]
o schannel: add clarifying comment [98]
o server/getpart: clear target buffer before load [6]
o smb: remove double assign [86]
o smbserver: remove temporary files before exit [135]
o socketpair: verify with a random value [142]
o ssh: Add support for libssh2 read timeout [170]
o telnet: simplify the implementation of str_is_nonascii() [42]
o test1169: fix so it works properly everywhere [106]
o test1592: add flaky keyword [39]
o test1960: point to the correct path for the precheck tool
o test303: kill server after test
o tests/http: add timeout to running curl in test cases [24]
o tests/http: fix log formatting on wrong exit code [27]
o tests/http: fix out-of-tree builds [121]
o tests/http: improved httpd detection [45]
o tests/http: more tests with specific clients [125]
o tests/http: relax connection check in test_07_02 [53]
o tests/keywords.pl: remove [111]
o tests/libtest/lib1900.c: remove
o tests/sshserver.pl: Define AddressFamily earlier [103]
o tests: 1078 1288 1297 use valid IPv4 addresses
o tests: document that the unittest keyword is special
o tests: increase sws timeout for more robust testing [66]
o tests: log a too-long Unix socket path in sws and socksd
o tests: make test_12_01 a bit more forgiving on connection counts
o tests: move pidfiles and portfiles under the log directory [48]
o tests: move server config files under the pid dir [47]
o tests: silence some Perl::Critic warnings in test suite [56]
o tests: stop using strndup(), which isn't portable
o tests: switch to 3-argument open in test suite
o tests: turn perl modules into full packages
o tests: use %LOGDIR to refer to the log directory
o tool_cb_hdr: Fix 'Location:' formatting for early VTE terminals [147]
o tool_operate: pass a long as CURLOPT_HEADEROPT argument [13]
o tool_operate: refuse (--data or --form) and --continue-at combo [119]
o transfer: refuse POSTFIELDS + RESUME_FROM combo [120]
o transfer: skip extra assign [87]
o url: fix null dispname for --connect-to option [161]
o url: fix PVS nits [71]
o url: remove call to Curl_llist_destroy in Curl_close [22]
o urlapi: cleanups and improvements [91]
o urlapi: detect and error on illegal IPv4 addresses [70]
o urlapi: prevent setting invalid schemes with *url_set() [107]
o urlapi: skip a pointless assign [88]
o urlapi: URL encoding for the URL missed the fragment [29]
o urldata: copy CURLOPT_AWS_SIGV4 value on handle duplication [137]
o urldata: shrink *select_bits int => unsigned char [124]
o vlts: use full buffer size when receiving data if possible [32]
o vtls and h2 improvements [69]
o Websocket: enhanced en-/decoding [136]
o wolfssl.yml: bump to version 5.6.0 [44]
o write-out.d: Use response_code in example [159]
o ws: handle reads before EAGAIN better [38]
Files: