|
|
@@ -1,191 +1,147 @@
|
|
|
-curl and libcurl 7.82.0
|
|
|
+curl and libcurl 7.83.0
|
|
|
|
|
|
- Public curl releases: 206
|
|
|
- Command line options: 245
|
|
|
+ Public curl releases: 207
|
|
|
+ Command line options: 247
|
|
|
curl_easy_setopt() options: 295
|
|
|
- Public functions in libcurl: 86
|
|
|
- Contributors: 2597
|
|
|
+ Public functions in libcurl: 88
|
|
|
+ Contributors: 2625
|
|
|
|
|
|
This release includes the following changes:
|
|
|
|
|
|
- o curl: add --json [67]
|
|
|
- o mesalink: remove support [23]
|
|
|
+ o curl: add %header{name} experimental support in -w handling
|
|
|
+ o curl: add %{header_json} experimental support in -w handling
|
|
|
+ o curl: add --no-clobber [28]
|
|
|
+ o curl: add --remove-on-error [11]
|
|
|
+ o header api: add curl_easy_header and curl_easy_nextheader [56]
|
|
|
+ o msh3: add support for QUIC and HTTP/3 using msh3 [84]
|
|
|
|
|
|
This release includes the following bugfixes:
|
|
|
|
|
|
- o appveyor: update images from VS 2019 to 2022
|
|
|
- o appveyor: use VS 2017 image for the autotools builds
|
|
|
- o azure-pipelines: add a build on Windows with libssh [154]
|
|
|
- o bearssl: fix connect error on expired cert and no verify [132]
|
|
|
- o bearssl: fix EXC_BAD_ACCESS on incomplete CA cert [131]
|
|
|
- o bearssl: fix session resumption (session id) [133]
|
|
|
- o build: enable -Warith-conversion
|
|
|
- o build: fix -Wenum-conversion handling
|
|
|
- o build: fix ngtcp2 crypto library detection [63]
|
|
|
- o checkprefix: remove strlen calls [128]
|
|
|
- o checksrc: fix typo in comment [34]
|
|
|
- o CI: move 'distcheck' job from zuul to azure pipelines [60]
|
|
|
- o CI: move scan-build job from Zuul to Azure Pipelines [59]
|
|
|
- o CI: move the NSS job from zuul to GHA [84]
|
|
|
- o ci: move the OpenSSL + c-ares job from Zuul to Circle CI [75]
|
|
|
- o CI: move the rustls CI job to GHA from Zuul [8]
|
|
|
- o CI: move two jobs from Zuul to Circle CI [73]
|
|
|
- o CI: test building wolfssl with --enable-opensslextra [42]
|
|
|
- o CI: workflows/wolfssl: install impacket [47]
|
|
|
- o circleci: add a job using libssh [121]
|
|
|
- o cirlceci: also run a c-ares job on arm with debug enabled [74]
|
|
|
- o cmake: fix iOS CMake project generation error [13]
|
|
|
- o cmdline-opts/gen.pl: fix option matching to improve references [50]
|
|
|
- o config.d: Clarify _curlrc filename is still valid on Windows [95]
|
|
|
- o configure.ac: use user-specified gssapi dir when using pkg-config [136]
|
|
|
- o configure: change output for cross-compiled alt-svc support [140]
|
|
|
- o configure: fix '--enable-code-coverage' typo [110]
|
|
|
- o configure: remove support for "embedded ares" [82]
|
|
|
- o configure: requires --with-nss-deprecated to build with NSS [114]
|
|
|
- o configure: set CURL_LIBRARY_PATH for nghttp2 [58]
|
|
|
- o configure: support specification of a nghttp2 library path [101]
|
|
|
- o configure: use correct CFLAGS for threaded resolver with xlC on AIX [54]
|
|
|
- o curl tool: erase some more sensitive command line arguments [22]
|
|
|
- o curl-functions.m4: fix LIBRARY_PATH adjustment to avoid eval [5]
|
|
|
- o curl-functions.m4: revert DYLD_LIBRARY_PATH tricks in CURL_RUN_IFELSE [9]
|
|
|
- o curl-openssl: fix SRP check for OpenSSL 3.0 [86]
|
|
|
- o curl-openssl: remove the OpenSSL headers and library versions check [35]
|
|
|
- o curl.h: fix typo [129]
|
|
|
- o curl: remove "separators" (when using globbed URLs) [32]
|
|
|
- o curl_getdate.3: remove pointless .PP line [68]
|
|
|
- o curl_multi_socket.3: remove callback and typical usage descriptions [7]
|
|
|
- o curl_url_set.3: mention when CURLU_ALLOW_SPACE was added
|
|
|
- o CURLMOPT_TIMERFUNCTION/DATA.3: fix the examples [27]
|
|
|
- o CURLOPT_PROGRESSFUNCTION.3: fix example struct assignment [147]
|
|
|
- o CURLOPT_RESOLVE.3: change example port to 443
|
|
|
- o CURLOPT_XFERINFOFUNCTION.3: fix example struct assignment [153]
|
|
|
- o CURLOPT_XFERINFOFUNCTION.3: fix typo in example [81]
|
|
|
- o CURLSHOPT_LOCKFUNC.3: fix typo "relased" -> "released" [71]
|
|
|
- o des: fix compile break for OpenSSL without DES [141]
|
|
|
- o docs/cmdline-opts: add "mutexed" options for more http versions [25]
|
|
|
- o docs/DEPRECATE: remove NPN support in August 2022 [64]
|
|
|
- o docs: capitalize the name 'Netscape' [77]
|
|
|
- o docs: document HTTP/2 not insisting on TLS 1.2 [49]
|
|
|
- o docs: fix mandoc -T lint formatting complaints [2]
|
|
|
- o docs: update IETF links to use datatracker [41]
|
|
|
- o examples/curlx: support building with OpenSSL 1.1.0+ [148]
|
|
|
- o examples/multi-app.c: call curl_multi_remove_handle as well [19]
|
|
|
- o formdata: avoid size_t => long typecast overflows [37]
|
|
|
- o ftp: provide error message for control bytes in path [66]
|
|
|
- o gen.pl: terminate "example" sections better [4]
|
|
|
- o gha: add a macOS CI job with libssh [142]
|
|
|
- o gskit: Convert to using Curl_poll [111]
|
|
|
- o gskit: Fix errors from Curl_strerror refactor [113]
|
|
|
- o gskit: Fix initialization of Curl_ssl_gskit struct [112]
|
|
|
- o h2/h3: allow CURLOPT_HTTPHEADER change ":scheme" [88]
|
|
|
- o hostcheck: fixed to not touch used input strings [38]
|
|
|
- o hostcheck: reduce strlen calls on chained certificates [92]
|
|
|
- o hostip: avoid unused parameter error in Curl_resolv_check [144]
|
|
|
- o http2: move two infof calls to debug-h2-only [145]
|
|
|
- o http: make Curl_compareheader() take string length arguments too [87]
|
|
|
- o if2ip: make Curl_ipv6_scope a blank macro when IPv6-disabled [104]
|
|
|
- o KNOWN_BUGS: fix typo "libpsl"
|
|
|
- o ldap: return CURLE_URL_MALFORMAT for bad URL [24]
|
|
|
- o lib: remove support for CURL_DOES_CONVERSIONS [96]
|
|
|
- o libssh2: don't typecast socket to int for libssh2_session_handshake [151]
|
|
|
- o libssh: fix include files and defines use for Windows builds [156]
|
|
|
- o Makefile.am: Generate VS 2022 projects
|
|
|
- o maketgz: return error if 'make dist' fails [79]
|
|
|
- o mbedtls: enable use of mbedtls without CRL support [57]
|
|
|
- o mbedtls: enable use of mbedtls without filesystem functions support [100]
|
|
|
- o mbedtls: fix CURLOPT_SSLCERT_BLOB (again)
|
|
|
- o mbedtls: fix ssl_init error with mbedTLS 3.1.0+ [12]
|
|
|
- o mbedtls: remove #include <mbedtls/certs.h> [56]
|
|
|
- o mbedtls: return CURLcode result instead of a mbedtls error code [1]
|
|
|
- o md5: check md5_init_func return value
|
|
|
- o mime: use a define instead of the magic number 24 [89]
|
|
|
- o misc: allow curl to build with wolfssl --enable-opensslextra [43]
|
|
|
- o misc: remove BeOS code and references [30]
|
|
|
- o misc: remove the final watcom references [29]
|
|
|
- o misc: remove unused data when IPv6 is not supported [80]
|
|
|
- o mqtt: free 'sendleftovers' in disconnect [115]
|
|
|
- o mqtt: free any send leftover data when done [36]
|
|
|
- o multi: allow user callbacks to call curl_multi_assign [126]
|
|
|
- o multi: grammar fix in comment [69]
|
|
|
- o multi: remember connection_id before returning connection to pool [76]
|
|
|
- o multi: set in_callback for multi interface callbacks [28]
|
|
|
- o netware: remove support [72]
|
|
|
- o next.d. remove .fi/.nf as they are handled by gen.pl [3]
|
|
|
- o ngtcp2: adapt to changed end of headers callback proto [39]
|
|
|
- o ngtcp2: fix declaration of ‘result’ shadows a previous local [14]
|
|
|
- o ngtcp2: Reset dynbuf when it is fully drained [143]
|
|
|
- o nss: handshake callback during shutdown has no conn->bundle [55]
|
|
|
- o ntlm: remove unused feature defines [117]
|
|
|
- o openldap: fix compiler warning when built without SSL support [70]
|
|
|
- o openldap: implement SASL authentication [16]
|
|
|
- o openldap: pass string length arguments to client_write() [116]
|
|
|
- o openssl.h: avoid including OpenSSL headers here [15]
|
|
|
- o openssl: check if sessionid flag is enabled before retrieving session [125]
|
|
|
- o openssl: check SSL_get_ex_data to prevent potential NULL dereference [40]
|
|
|
- o openssl: check the return value of BIO_new_mem_buf() [18]
|
|
|
- o openssl: fix `ctx_option_t` for OpenSSL v3+
|
|
|
- o openssl: fix build for version < 1.1.0 [134]
|
|
|
- o openssl: return error if TLS 1.3 is requested when not supported [45]
|
|
|
- o os400: Add function wrapper for system command [138]
|
|
|
- o os400: Add link to QADRT devkit to README.OS400 [137]
|
|
|
- o os400: Default build to target current release [139]
|
|
|
- o OS400: fix typos in rpg include file [149]
|
|
|
- o projects: add support for Visual Studio 17 (2022) [124]
|
|
|
- o projects: fix Visual Studio wolfSSL configurations
|
|
|
- o projects: remove support for MSVC before VC10 (Visual Studio 2010) [123]
|
|
|
- o quiche: after leaving h3_recving state, poll again [108]
|
|
|
- o quiche: change qlog file extension to `.sqlog` [44]
|
|
|
- o quiche: fix upload for bigger content-length [146]
|
|
|
- o quiche: handle stream reset [83]
|
|
|
- o quiche: remove two leftover debug infof() outputs
|
|
|
- o quiche: verify the server cert on connect [33]
|
|
|
- o quiche: when *recv_body() returns data, drain it before polling again [109]
|
|
|
- o README.md: fix links [118]
|
|
|
- o remote-header-name.d: clarify [10]
|
|
|
- o runtests.pl: disable debuginfod [51]
|
|
|
- o runtests.pl: properly print the test if it contains binary zeros
|
|
|
- o runtests.pl: support the nonewline attribute for the data part [21]
|
|
|
- o runtests.pl: tolerate test directories without Makefile.inc [98]
|
|
|
- o runtests: allow client/file to specify multiple directories
|
|
|
- o runtests: make 'rustls' a testable feature
|
|
|
- o runtests: make 'wolfssl' a testable feature [6]
|
|
|
- o runtests: set 'oldlibssh' for libssh versions before 0.9.5 [122]
|
|
|
- o rustls: add CURLOPT_CAINFO_BLOB support [26]
|
|
|
- o schannel: move the algIds array out of schannel.h [135]
|
|
|
- o scripts/cijobs.pl: output data about all currect CI jobs [78]
|
|
|
- o scripts/completion.pl: improve zsh completion [46]
|
|
|
- o scripts/copyright.pl: support many provided file names on the cmdline
|
|
|
- o scripts/delta: check the file delta for current branch
|
|
|
- o sectransp: mark a 3DES cipher as weak [130]
|
|
|
- o setopt: do bounds-check before strdup [99]
|
|
|
- o setopt: fix the TLSAUTH #ifdefs for proxy-disabled builds [53]
|
|
|
- o sha256: Fix minimum OpenSSL version [102]
|
|
|
- o smb: pass socket for writing and reading data instead of FIRSTSOCKET [90]
|
|
|
- o ssl: reduce allocated space for ssl backend when FTP is disabled [127]
|
|
|
- o test3021: disable all msys2 path transformation
|
|
|
- o test374: gif data without new line at the end [20]
|
|
|
- o tests/disable-scan.pl: properly detect multiple symbols per line [94]
|
|
|
- o tests/unit/Makefile.am: add NSS_LIBS to build with NSS fine [85]
|
|
|
- o tool_findfile: check ~/.config/curlrc too [17]
|
|
|
- o tool_getparam: DNS options that need c-ares now fail without it [31]
|
|
|
- o TPF: drop support [97]
|
|
|
- o unit1610: init SSL library before calling SHA256 functions [152]
|
|
|
- o url: exclude zonefrom_url when no ipv6 is available [103]
|
|
|
- o url: given a user in the URL, find pwd for that user in netrc [11]
|
|
|
- o url: keep trailing dot in host name [62]
|
|
|
- o url: make Curl_disconnect return void [48]
|
|
|
- o urlapi: handle "redirects" smarter [119]
|
|
|
- o urldata: CONN_IS_PROXIED replaces bits.proxy when proxy can be disabled [52]
|
|
|
- o urldata: remove conn->bits.user_passwd [105]
|
|
|
- o version_win32: fix warning for `CURL_WINDOWS_APP` [93]
|
|
|
- o vtls: fix socket check conditions [150]
|
|
|
- o vtls: pass on the right SNI name [61]
|
|
|
- o vxworks: drop support [65]
|
|
|
- o winbuild: add parameter WITH_SSH [120]
|
|
|
- o wolfssl: return CURLE_AGAIN for the SSL_ERROR_NONE case [106]
|
|
|
- o wolfssl: when SSL_read() returns zero, check the error [107]
|
|
|
- o write-out.d: Fix num_headers formatting
|
|
|
- o x509asn1: toggle off functions not needed for diff tls backends [91]
|
|
|
+ o appveyor: add Cygwin build [77]
|
|
|
+ o appveyor: only add MSYS2 to PATH where required [78]
|
|
|
+ o BearSSL: add CURLOPT_SSL_CIPHER_LIST support [27]
|
|
|
+ o BearSSL: add CURLOPT_SSL_CTX_FUNCTION support [26]
|
|
|
+ o BINDINGS.md: add Hollywood binding [34]
|
|
|
+ o CI: Do not use buildconf. Instead, just use: autoreconf -fi [42]
|
|
|
+ o CI: install Python package impacket to run SMB test 1451 [5]
|
|
|
+ o configure.ac: move -pthread CFLAGS setting back where it used to be [14]
|
|
|
+ o configure: bump the copyright year range int the generated output
|
|
|
+ o conncache: include the zone id in the "bundle" hashkey [112]
|
|
|
+ o connecache: remove duplicate connc->closure_handle check [90]
|
|
|
+ o connect: make Curl_getconnectinfo work with conn cache from share handle [22]
|
|
|
+ o connect: use TCP_KEEPALIVE only if TCP_KEEPIDLE is not defined [6]
|
|
|
+ o cookie.d: clarify when cookies are sent
|
|
|
+ o cookies: improve errorhandling for reading cookiefile [123]
|
|
|
+ o curl/system.h: update ifdef condition for MCST-LCC compiler [4]
|
|
|
+ o curl: error out if -T and -d are used for the same URL [99]
|
|
|
+ o curl: error out when options need features not present in libcurl [18]
|
|
|
+ o curl: escape '?' in generated --libcurl code [117]
|
|
|
+ o curl: fix segmentation fault for empty output file names. [60]
|
|
|
+ o curl_easy_header: fix typos in documentation [74]
|
|
|
+ o CURLINFO_PRIMARY_PORT.3: clarify which port this is [126]
|
|
|
+ o CURLOPT*TLSAUTH.3: they only work with OpenSSL or GnuTLS [105]
|
|
|
+ o CURLOPT_DISALLOW_USERNAME_IN_URL.3: use uppercase URL
|
|
|
+ o CURLOPT_PREQUOTE.3: only works for FTP file transfers, not dirs [79]
|
|
|
+ o CURLOPT_PROGRESSFUNCTION.3: fix typo in example [63]
|
|
|
+ o CURLOPT_UNRESTRICTED_AUTH.3: extended explanation [127]
|
|
|
+ o CURLSHOPT_UNLOCKFUNC.3: fix the callback prototype [9]
|
|
|
+ o docs/HYPER.md: updated to reflect current hyper build needs
|
|
|
+ o docs/opts: Mention Schannel client cert type is P12 [50]
|
|
|
+ o docs: Fix missing semicolon in example code [102]
|
|
|
+ o docs: lots of minor language polish [51]
|
|
|
+ o English: use American spelling consistently [95]
|
|
|
+ o fail.d: tweak the description [101]
|
|
|
+ o firefox-db2pem.sh: make the shell script safer [47]
|
|
|
+ o ftp: fix error message for partial file upload [61]
|
|
|
+ o gen.pl: change wording for mutexed options [98]
|
|
|
+ o GHA: add openssl3 jobs moved over from zuul [88]
|
|
|
+ o GHA: build hyper with nightly rustc [7]
|
|
|
+ o GHA: move bearssl jobs over from zuul [85]
|
|
|
+ o gha: move the event-based test over from Zuul [59]
|
|
|
+ o gtls: fix build for disabled TLS-SRP [48]
|
|
|
+ o http2: handle DONE called for the paused stream [69]
|
|
|
+ o http2: RST the stream if we stop it on our own will [67]
|
|
|
+ o http: avoid auth/cookie on redirects same host diff port [110]
|
|
|
+ o http: close the stream (not connection) on time condition abort [68]
|
|
|
+ o http: reject header contents with nul bytes [41]
|
|
|
+ o http: return error on colon-less HTTP headers [31]
|
|
|
+ o http: streamclose "already downloaded" [57]
|
|
|
+ o hyper: fix status_line() return code [13]
|
|
|
+ o hyper: fix tests 580 and 581 for hyper [107]
|
|
|
+ o hyper: no h2c support [33]
|
|
|
+ o infof: consistent capitalization of warning messages [103]
|
|
|
+ o ipv4/6.d: clarify that they are about using IP addresses [3]
|
|
|
+ o json.d: fix typo (overriden -> overridden) [24]
|
|
|
+ o keepalive-time.d: It takes many probes to detect brokenness [29]
|
|
|
+ o lib/warnless.[ch]: only check for WIN32 and ignore _WIN32 [45]
|
|
|
+ o lib670: avoid double check result [71]
|
|
|
+ o lib: #ifdef on USE_HTTP2 better [65]
|
|
|
+ o lib: fix some misuse of curlx_convert_wchar_to_UTF8 [38]
|
|
|
+ o lib: remove exclamation marks [100]
|
|
|
+ o libssh2: compare sha256 strings case sensitively [114]
|
|
|
+ o libssh2: make the md5 comparison fail if wrong length [111]
|
|
|
+ o libssh: fix build with old libssh versions [12]
|
|
|
+ o libssh: fix double close [124]
|
|
|
+ o libssh: Improve fix for missing SSH_S_ stat macros [10]
|
|
|
+ o libssh: unstick SFTP transfers when done event-based [58]
|
|
|
+ o macos: set .plist version in autoconf [122]
|
|
|
+ o mbedtls: remove 'protocols' array from backend when ALPN is not used [66]
|
|
|
+ o mbedtls: remove server_fd from backend [91]
|
|
|
+ o mk-ca-bundle.pl: Use stricter logic to process the certificates [39]
|
|
|
+ o mk-ca-bundle.vbs: delete this script in favor of mk-ca-bundle.pl [8]
|
|
|
+ o mlc_config.json: add file to ignore known troublesome URLs [35]
|
|
|
+ o mqtt: better handling of TCP disconnect mid-message [55]
|
|
|
+ o ngtcp2: add client certificate authentication for OpenSSL [15]
|
|
|
+ o ngtcp2: avoid busy loop in low CWND situation [119]
|
|
|
+ o ngtcp2: deal with sub-millisecond timeout [116]
|
|
|
+ o ngtcp2: disconnect the QUIC connection proper [19]
|
|
|
+ o ngtcp2: enlarge H3_SEND_SIZE [82]
|
|
|
+ o ngtcp2: fix HTTP/3 upload stall and avoid busy loop [83]
|
|
|
+ o ngtcp2: fix memory leak [80]
|
|
|
+ o ngtcp2: fix QUIC_IDLE_TIMEOUT [94]
|
|
|
+ o ngtcp2: make curl 1ms faster [93]
|
|
|
+ o ngtcp2: remove remote_addr which is not used in a meaningful way [81]
|
|
|
+ o ngtcp2: update to work after recent ngtcp2 updates [62]
|
|
|
+ o ngtcp2: use token when detecting :status header field [92]
|
|
|
+ o nonblock: restore setsockopt method to curlx_nonblock [20]
|
|
|
+ o openssl: check SSL_get_peer_cert_chain return value [1]
|
|
|
+ o openssl: enable CURLOPT_SSL_EC_CURVES with BoringSSL [23]
|
|
|
+ o openssl: fix CN check error code [21]
|
|
|
+ o options: remove mistaken space before paren in prototype
|
|
|
+ o perl: removed a double semicolon at end of line [64]
|
|
|
+ o pop3/smtp: return *WEIRD_SERVER_REPLY when not understood [43]
|
|
|
+ o projects/README: converted to markdown [76]
|
|
|
+ o projects: Update VC version names for VS2017, VS2022 [52]
|
|
|
+ o rtsp: don't let CSeq error override earlier errors [37]
|
|
|
+ o runtests: add 'bearssl' as testable feature [87]
|
|
|
+ o runtests: make 'oldlibssh' be before 0.9.4 [2]
|
|
|
+ o schannel: remove dead code that will never run [89]
|
|
|
+ o scripts/copyright.pl: ignore the new mlc_config.json file
|
|
|
+ o scripts: move three scripts from lib/ to scripts/ [44]
|
|
|
+ o test1135: sync with recent API updates [54]
|
|
|
+ o test1459: disable for oldlibssh [53]
|
|
|
+ o test375: fix line endings on Windows [40]
|
|
|
+ o test386: Fix an incorrect test markup tag
|
|
|
+ o test718: edited slightly to return better HTTP [32]
|
|
|
+ o tests/server/util.h: align WIN32 condition with util.c [46]
|
|
|
+ o tests: refactor server/socksd.c to support --unix-socket [96]
|
|
|
+ o timediff.[ch]: add curlx helper functions for timeval conversions [86]
|
|
|
+ o tls: make mbedtls and NSS check for h2, not nghttp2 [70]
|
|
|
+ o tool and tests: force flush of all buffers at end of program [17]
|
|
|
+ o tool_cb_hdr: Turn the Location: into a terminal hyperlink [30]
|
|
|
+ o tool_getparam: error out on missing -K file [115]
|
|
|
+ o tool_listhelp.c: uppercase URL
|
|
|
+ o tool_operate: fix a scan-build warning [16]
|
|
|
+ o tool_paramhlp: use feof(3) to identify EOF correctly when using fread(3) [97]
|
|
|
+ o transfer: redirects to other protocols or ports clear auth [109]
|
|
|
+ o unit1620: call global_init before calling Curl_open [125]
|
|
|
+ o url: check sasl additional parameters for connection reuse. [113]
|
|
|
+ o vtls: provide a unified APLN-disagree string for all backends [75]
|
|
|
+ o vtls: use a backend standard message for "ALPN: offers %s" [73]
|
|
|
+ o vtls: use a generic "ALPN, server accepted" message [72]
|
|
|
+ o winbuild/README.md: fixup dead link [36]
|
|
|
+ o winbuild: Add a Visual Studio example to the README [49]
|
|
|
+ o wolfssl: fix compiler error without IPv6 [25]
|
|
|
|
|
|
This release includes the following known bugs:
|
|
|
|
|
|
@@ -194,179 +150,143 @@ This release includes the following known bugs:
|
|
|
This release would not have looked like this without help, code, reports and
|
|
|
advice from friends like these:
|
|
|
|
|
|
- 1337vt on github, Alejandro R. Sedeño, Alessandro Ghedini, Antoine Pietri,
|
|
|
- Bernhard Walle, Bjarni Ingi Gislason, Cameron Will, Charles Cazabon,
|
|
|
- coralw on github, Dan Fandrich, Daniel Stenberg, Davide Cassioli,
|
|
|
- Eric Musser, Fabian Keil, Fabian Yamaguchi, Farzin on github, Filip Lundgren,
|
|
|
- gaoxingwang on github, Harry Sarson, Henrik Holst, Ikko Ashimine,
|
|
|
- illusory-dream on github, Jan Ehrhardt, Jan-Piet Mens, Jan Venekamp,
|
|
|
- Jean-Philippe Menil, jhoyla on github, Jim Beveridge, Joel Depooter,
|
|
|
- John H. Ayad, jonny112 on github, Kantanat Wannapaka, Kevin Adler,
|
|
|
- Kushal Das, Leah Neukirchen, Lucas Pardue, luminixinc on github,
|
|
|
- Manfred Schwarb, Marcel Raad, Melroy van den Berg, Michael Kaufmann,
|
|
|
- Michael Wallner, Michał Antoniak, Neal McBurnett, neutric on github,
|
|
|
- Niels Martignène, Patrick Monnerat, pheiduck on github, Ray Satiro,
|
|
|
- Rob Boeckermann, Ryan Schmidt, Samuel Henrique, Sandro Jaeckel,
|
|
|
- Satadru Pramanik, Sebastian Sterk, siddharthchhabrap on github, Stav Nir,
|
|
|
- Stefan Eissing, Stephen Boost, Stephen M. Coakley, Stewart Gebbie,
|
|
|
- Tatsuhiro Tsujikawa, updatede on github, Viktor Szakats, vl409 on github,
|
|
|
- Xiaoke Wang, 梦终无痕
|
|
|
- (67 contributors)
|
|
|
+ Alejandro R. Sedeño, Andreas Falkenhahn, Andrey Alifanov,
|
|
|
+ anon00000000 on github, Balakrishnan Balasubramanian, Boris Verkhovskiy,
|
|
|
+ Brad Spencer, Christian Schmitz, Christopher Degawa, Colin Leroy,
|
|
|
+ Dan Fandrich, Daniel Gustafsson, Daniel Stenberg, Daniel Valenzuela,
|
|
|
+ Don J Olmstead, Emanuele Torre, Evangelos Foutras, Francisco Olarte,
|
|
|
+ Frank Meier, Gisle Vanem, Harry Sintonen, Ian Blanes, Jan Venekamp,
|
|
|
+ Jay Dommaschk, Jean-Philippe Menil, Jenny Heino, Joseph Chen,
|
|
|
+ jurisuk on github, Kristoffer Gleditsch, Kushal Das, Leandro Coutinho,
|
|
|
+ Liam Warfield, Marcel Raad, Marc Hörsken, Matteo Baccan,
|
|
|
+ Median Median Stride, mehatzri on github, Michael Kaufmann, Michał Antoniak,
|
|
|
+ Nick Banks, Nick Coghlan, Nick Zitzmann, Patrick Monnerat, Paul Howarth,
|
|
|
+ Paweł Kowalski, Peter Korsgaard, pheiduck on github, r-a-sattarov on github,
|
|
|
+ Ray Satiro, Rianov Viacheslav, Robert Brose, Robert Charles Muir,
|
|
|
+ Robin A. Meade, Samuel Henrique, Sascha Zengler, Taras Kushnir,
|
|
|
+ Tatsuhiro Tsujikawa, Timothe Litt, Viktor Szakats, HexTheDragon
|
|
|
+ (60 contributors)
|
|
|
|
|
|
References to bug reports and discussions on issues:
|
|
|
|
|
|
- [1] = https://curl.se/bug/?i=8266
|
|
|
- [2] = https://curl.se/bug/?i=8228
|
|
|
- [3] = https://curl.se/bug/?i=8228
|
|
|
- [4] = https://curl.se/bug/?i=8228
|
|
|
- [5] = https://curl.se/bug/?i=8229
|
|
|
- [6] = https://curl.se/bug/?i=8252
|
|
|
- [7] = https://curl.se/bug/?i=8262
|
|
|
- [8] = https://curl.se/bug/?i=8251
|
|
|
- [9] = https://curl.se/bug/?i=8229
|
|
|
- [10] = https://curl.se/bug/?i=8249
|
|
|
- [11] = https://curl.se/bug/?i=8241
|
|
|
- [12] = https://curl.se/bug/?i=8238
|
|
|
- [13] = https://curl.se/bug/?i=8244
|
|
|
- [14] = https://curl.se/bug/?i=8245
|
|
|
- [15] = https://curl.se/bug/?i=8240
|
|
|
- [16] = https://curl.se/bug/?i=8152
|
|
|
- [17] = https://curl.se/bug/?i=8208
|
|
|
- [18] = https://curl.se/bug/?i=8233
|
|
|
- [19] = https://curl.se/bug/?i=8234
|
|
|
- [20] = https://curl.se/bug/?i=8239
|
|
|
- [21] = https://curl.se/bug/?i=8239
|
|
|
- [22] = https://curl.se/bug/?i=7964
|
|
|
- [23] = https://curl.se/bug/?i=8188
|
|
|
- [24] = https://curl.se/bug/?i=8170
|
|
|
- [25] = https://curl.se/bug/?i=8254
|
|
|
- [26] = https://curl.se/bug/?i=8255
|
|
|
- [27] = https://curl.se/bug/?i=8286
|
|
|
- [28] = https://curl.se/bug/?i=8282
|
|
|
- [29] = https://curl.se/bug/?i=8287
|
|
|
- [30] = https://curl.se/bug/?i=8288
|
|
|
- [31] = https://curl.se/bug/?i=8285
|
|
|
- [32] = https://curl.se/bug/?i=8278
|
|
|
- [33] = https://curl.se/bug/?i=8173
|
|
|
- [34] = https://curl.se/bug/?i=8281
|
|
|
- [35] = https://curl.se/bug/?i=8279
|
|
|
- [36] = https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43515
|
|
|
- [37] = https://hackerone.com/reports/1444539
|
|
|
- [38] = https://curl.se/bug/?i=8321
|
|
|
- [39] = https://curl.se/bug/?i=8322
|
|
|
- [40] = https://curl.se/bug/?i=8268
|
|
|
- [41] = https://curl.se/bug/?i=8317
|
|
|
- [42] = https://curl.se/bug/?i=8315
|
|
|
- [43] = https://curl.se/bug/?i=8292
|
|
|
- [44] = https://curl.se/bug/?i=8316
|
|
|
- [45] = https://curl.se/bug/?i=8309
|
|
|
- [46] = https://curl.se/bug/?i=8363
|
|
|
- [47] = https://curl.se/bug/?i=8307
|
|
|
- [48] = https://curl.se/bug/?i=8303
|
|
|
- [49] = https://curl.se/bug/?i=8235
|
|
|
- [50] = https://curl.se/bug/?i=8299
|
|
|
- [51] = https://curl.se/bug/?i=8291
|
|
|
- [52] = https://curl.se/bug/?i=8350
|
|
|
- [53] = https://curl.se/bug/?i=8350
|
|
|
- [54] = https://curl.se/bug/?i=8276
|
|
|
- [55] = https://curl.se/bug/?i=8341
|
|
|
- [56] = https://curl.se/bug/?i=8343
|
|
|
- [57] = https://curl.se/bug/?i=8344
|
|
|
- [58] = https://curl.se/bug/?i=8340
|
|
|
- [59] = https://curl.se/bug/?i=8338
|
|
|
- [60] = https://curl.se/bug/?i=8334
|
|
|
- [61] = https://curl.se/bug/?i=8320
|
|
|
- [62] = https://curl.se/bug/?i=8290
|
|
|
- [63] = https://curl.se/bug/?i=8372
|
|
|
- [64] = https://curl.se/bug/?i=8458
|
|
|
- [65] = https://curl.se/bug/?i=8362
|
|
|
- [66] = https://curl.se/bug/?i=8460
|
|
|
- [67] = https://curl.se/bug/?i=8314
|
|
|
- [68] = https://curl.se/bug/?i=8365
|
|
|
- [69] = https://curl.se/bug/?i=8368
|
|
|
- [70] = https://curl.se/bug/?i=8367
|
|
|
- [71] = https://curl.se/bug/?i=8364
|
|
|
- [72] = https://curl.se/bug/?i=8358
|
|
|
- [73] = https://curl.se/bug/?i=8359
|
|
|
- [74] = https://curl.se/bug/?i=8357
|
|
|
- [75] = https://curl.se/bug/?i=8357
|
|
|
- [76] = https://hackerone.com/reports/1463013
|
|
|
- [77] = https://curl.se/bug/?i=8354
|
|
|
- [78] = https://curl.se/bug/?i=8408
|
|
|
- [79] = https://curl.se/mail/lib-2022-02/0070.html
|
|
|
- [80] = https://curl.se/bug/?i=8430
|
|
|
- [81] = https://curl.se/bug/?i=8487
|
|
|
- [82] = https://curl.se/bug/?i=8397
|
|
|
- [83] = https://curl.se/bug/?i=8437
|
|
|
- [84] = https://curl.se/bug/?i=8396
|
|
|
- [85] = https://curl.se/bug/?i=8396
|
|
|
- [86] = https://curl.se/bug/?i=8394
|
|
|
- [87] = https://curl.se/bug/?i=8391
|
|
|
- [88] = https://curl.se/bug/?i=8381
|
|
|
- [89] = https://curl.se/bug/?i=8441
|
|
|
- [90] = https://curl.se/bug/?i=8383
|
|
|
- [91] = https://curl.se/bug/?i=8386
|
|
|
- [92] = https://curl.se/bug/?i=8428
|
|
|
- [93] = https://curl.se/bug/?i=8385
|
|
|
- [94] = https://curl.se/bug/?i=8384
|
|
|
- [95] = https://curl.se/bug/?i=8382
|
|
|
- [96] = https://curl.se/bug/?i=8378
|
|
|
- [97] = https://curl.se/bug/?i=8378
|
|
|
- [98] = https://curl.se/bug/?i=8379
|
|
|
- [99] = https://curl.se/bug/?i=8377
|
|
|
- [100] = https://curl.se/bug/?i=8376
|
|
|
- [101] = https://curl.se/bug/?i=8375
|
|
|
- [102] = https://curl.se/bug/?i=8464
|
|
|
- [103] = https://curl.se/bug/?i=8439
|
|
|
- [104] = https://curl.se/bug/?i=8439
|
|
|
- [105] = https://curl.se/bug/?i=8449
|
|
|
- [106] = https://curl.se/bug/?i=8431
|
|
|
- [107] = https://curl.se/bug/?i=8431
|
|
|
- [108] = https://curl.se/bug/?i=8436
|
|
|
- [109] = https://curl.se/bug/?i=8429
|
|
|
- [110] = https://curl.se/bug/?i=8425
|
|
|
- [111] = https://curl.se/bug/?i=8454
|
|
|
- [112] = https://curl.se/bug/?i=8454
|
|
|
- [113] = https://curl.se/bug/?i=8454
|
|
|
- [114] = https://curl.se/bug/?i=8395
|
|
|
- [115] = https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43646
|
|
|
- [116] = https://curl.se/bug/?i=8404
|
|
|
- [117] = https://curl.se/bug/?i=8453
|
|
|
- [118] = https://curl.se/bug/?i=8448
|
|
|
- [119] = https://curl.se/bug/?i=8450
|
|
|
- [120] = https://curl.se/bug/?i=8514
|
|
|
- [121] = https://curl.se/bug/?i=8444
|
|
|
- [122] = https://curl.se/bug/?i=8444
|
|
|
- [123] = https://curl.se/bug/?i=8442
|
|
|
- [124] = https://curl.se/bug/?i=8438
|
|
|
- [125] = https://curl.se/bug/?i=8472
|
|
|
- [126] = https://curl.se/bug/?i=8480
|
|
|
- [127] = https://curl.se/bug/?i=8471
|
|
|
- [128] = https://curl.se/bug/?i=8481
|
|
|
- [129] = https://curl.se/bug/?i=8482
|
|
|
- [130] = https://curl.se/bug/?i=8479
|
|
|
- [131] = https://curl.se/bug/?i=8476
|
|
|
- [132] = https://curl.se/bug/?i=8475
|
|
|
- [133] = https://curl.se/bug/?i=8474
|
|
|
- [134] = https://curl.se/bug/?i=8470
|
|
|
- [135] = https://curl.se/bug/?i=8469
|
|
|
- [136] = https://curl.se/bug/?i=8289
|
|
|
- [137] = https://curl.se/bug/?i=8455
|
|
|
- [138] = https://curl.se/bug/?i=8455
|
|
|
- [139] = https://curl.se/bug/?i=8455
|
|
|
- [140] = https://curl.se/bug/?i=8512
|
|
|
- [141] = https://curl.se/bug/?i=8459
|
|
|
- [142] = https://curl.se/bug/?i=8513
|
|
|
- [143] = https://curl.se/bug/?i=7351
|
|
|
- [144] = https://curl.se/bug/?i=8505
|
|
|
- [145] = https://curl.se/bug/?i=8502
|
|
|
- [146] = https://curl.se/bug/?i=8421
|
|
|
- [147] = https://curl.se/bug/?i=8500
|
|
|
- [148] = https://curl.se/bug/?i=8529
|
|
|
- [149] = https://curl.se/bug/?i=8494
|
|
|
- [150] = https://curl.se/bug/?i=8493
|
|
|
- [151] = https://curl.se/bug/?i=8492
|
|
|
- [152] = https://curl.se/bug/?i=8538
|
|
|
- [153] = https://curl.se/bug/?i=8519
|
|
|
- [154] = https://curl.se/bug/?i=8511
|
|
|
- [156] = https://curl.se/mail/lib-2022-02/0131.html
|
|
|
+ [1] = https://curl.se/bug/?i=8579
|
|
|
+ [2] = https://curl.se/bug/?i=8548
|
|
|
+ [3] = https://curl.se/bug/?i=8543
|
|
|
+ [4] = https://curl.se/bug/?i=8546
|
|
|
+ [5] = https://curl.se/bug/?i=8544
|
|
|
+ [6] = https://curl.se/bug/?i=8539
|
|
|
+ [7] = https://curl.se/bug/?i=8545
|
|
|
+ [8] = https://curl.se/bug/?i=8412
|
|
|
+ [9] = https://curl.se/bug/?i=8573
|
|
|
+ [10] = https://curl.se/bug/?i=8588
|
|
|
+ [11] = https://curl.se/bug/?i=8503
|
|
|
+ [12] = https://curl.se/bug/?i=8574
|
|
|
+ [13] = https://curl.se/bug/?i=8572
|
|
|
+ [14] = https://curl.se/bug/?i=8541
|
|
|
+ [15] = https://curl.se/bug/?i=8522
|
|
|
+ [16] = https://curl.se/bug/?i=8565
|
|
|
+ [17] = https://curl.se/bug/?i=8516
|
|
|
+ [18] = https://curl.se/bug/?i=8565
|
|
|
+ [19] = https://curl.se/bug/?i=8534
|
|
|
+ [20] = https://curl.se/bug/?i=8562
|
|
|
+ [21] = https://curl.se/bug/?i=8559
|
|
|
+ [22] = https://curl.se/bug/?i=8524
|
|
|
+ [23] = https://curl.se/bug/?i=8553
|
|
|
+ [24] = https://curl.se/bug/?i=8557
|
|
|
+ [25] = https://curl.se/bug/?i=8550
|
|
|
+ [26] = https://curl.se/bug/?i=8478
|
|
|
+ [27] = https://curl.se/bug/?i=8477
|
|
|
+ [28] = https://curl.se/bug/?i=7708
|
|
|
+ [29] = https://curl.se/bug/?i=8570
|
|
|
+ [30] = https://curl.se/bug/?i=7963
|
|
|
+ [31] = https://curl.se/bug/?i=8610
|
|
|
+ [32] = https://github.com/hyperium/hyper/issues/2783
|
|
|
+ [33] = https://curl.se/bug/?i=8605
|
|
|
+ [34] = https://curl.se/bug/?i=8609
|
|
|
+ [35] = https://curl.se/bug/?i=8597
|
|
|
+ [36] = https://curl.se/bug/?i=8597
|
|
|
+ [37] = https://curl.se/bug/?i=8525
|
|
|
+ [38] = https://curl.se/bug/?i=8521
|
|
|
+ [39] = https://curl.se/bug/?i=8411
|
|
|
+ [40] = https://curl.se/bug/?i=8599
|
|
|
+ [41] = https://curl.se/bug/?i=8601
|
|
|
+ [42] = https://curl.se/bug/?i=8596
|
|
|
+ [43] = https://curl.se/bug/?i=8506
|
|
|
+ [44] = https://curl.se/bug/?i=8625
|
|
|
+ [45] = https://curl.se/bug/?i=8594
|
|
|
+ [46] = https://curl.se/bug/?i=8594
|
|
|
+ [47] = https://curl.se/bug/?i=8616
|
|
|
+ [48] = https://curl.se/mail/lib-2022-03/0046.html
|
|
|
+ [49] = https://curl.se/bug/?i=8592
|
|
|
+ [50] = https://curl.se/bug/?i=8587
|
|
|
+ [51] = https://curl.se/bug/?i=8646
|
|
|
+ [52] = https://curl.se/bug/?i=8447
|
|
|
+ [53] = https://curl.se/bug/?i=8622
|
|
|
+ [54] = https://curl.se/bug/?i=8620
|
|
|
+ [55] = https://hackerone.com/reports/1521610
|
|
|
+ [56] = https://curl.se/bug/?i=8593
|
|
|
+ [57] = https://curl.se/bug/?i=8665
|
|
|
+ [58] = https://curl.se/bug/?i=8490
|
|
|
+ [59] = https://curl.se/bug/?i=8490
|
|
|
+ [60] = https://curl.se/bug/?i=8606
|
|
|
+ [61] = https://curl.se/bug/?i=8637
|
|
|
+ [62] = https://curl.se/bug/?i=8638
|
|
|
+ [63] = https://curl.se/bug/?i=8636
|
|
|
+ [64] = https://curl.se/bug/?i=8709
|
|
|
+ [65] = https://curl.se/bug/?i=8661
|
|
|
+ [66] = https://curl.se/bug/?i=8663
|
|
|
+ [67] = https://curl.se/bug/?i=8664
|
|
|
+ [68] = https://curl.se/bug/?i=8664
|
|
|
+ [69] = https://curl.se/bug/?i=8626
|
|
|
+ [70] = https://curl.se/bug/?i=8656
|
|
|
+ [71] = https://curl.se/bug/?i=8660
|
|
|
+ [72] = https://curl.se/bug/?i=8657
|
|
|
+ [73] = https://curl.se/bug/?i=8657
|
|
|
+ [74] = https://curl.se/bug/?i=8694
|
|
|
+ [75] = https://curl.se/bug/?i=8643
|
|
|
+ [76] = https://curl.se/bug/?i=8652
|
|
|
+ [77] = https://curl.se/bug/?i=8693
|
|
|
+ [78] = https://curl.se/bug/?i=8693
|
|
|
+ [79] = https://curl.se/bug/?i=8602
|
|
|
+ [80] = https://curl.se/bug/?i=8691
|
|
|
+ [81] = https://curl.se/bug/?i=8689
|
|
|
+ [82] = https://curl.se/bug/?i=8690
|
|
|
+ [83] = https://curl.se/bug/?i=8688
|
|
|
+ [84] = https://curl.se/bug/?i=8517
|
|
|
+ [85] = https://curl.se/bug/?i=8684
|
|
|
+ [86] = https://curl.se/bug/?i=8595
|
|
|
+ [87] = https://curl.se/bug/?i=8684
|
|
|
+ [88] = https://curl.se/bug/?i=8683
|
|
|
+ [89] = https://curl.se/bug/?i=8677
|
|
|
+ [90] = https://curl.se/bug/?i=8676
|
|
|
+ [91] = https://curl.se/bug/?i=8682
|
|
|
+ [92] = https://curl.se/bug/?i=8679
|
|
|
+ [93] = https://curl.se/bug/?i=8678
|
|
|
+ [94] = https://curl.se/bug/?i=8678
|
|
|
+ [95] = https://curl.se/bug/?i=8673
|
|
|
+ [96] = https://curl.se/bug/?i=8687
|
|
|
+ [97] = https://curl.se/bug/?i=8701
|
|
|
+ [98] = https://curl.se/bug/?i=8716
|
|
|
+ [99] = https://curl.se/bug/?i=8704
|
|
|
+ [100] = https://curl.se/bug/?i=8713
|
|
|
+ [101] = https://curl.se/bug/?i=8714
|
|
|
+ [102] = https://curl.se/bug/?i=8697
|
|
|
+ [103] = https://curl.se/bug/?i=8711
|
|
|
+ [105] = https://curl.se/bug/?i=8753
|
|
|
+ [107] = https://curl.se/bug/?i=8707
|
|
|
+ [109] = https://curl.se/docs/CVE-2022-27774.html
|
|
|
+ [110] = https://curl.se/docs/CVE-2022-27776.html
|
|
|
+ [111] = https://hackerone.com/reports/1549461
|
|
|
+ [112] = https://curl.se/docs/CVE-2022-27775.html
|
|
|
+ [113] = https://curl.se/docs/CVE-2022-22576.html
|
|
|
+ [114] = https://hackerone.com/reports/1549435
|
|
|
+ [115] = https://hackerone.com/reports/1542881
|
|
|
+ [116] = https://curl.se/bug/?i=8738
|
|
|
+ [117] = https://hackerone.com/reports/1548535
|
|
|
+ [119] = https://curl.se/bug/?i=8739
|
|
|
+ [122] = https://curl.se/bug/?i=8692
|
|
|
+ [123] = https://curl.se/bug/?i=8699
|
|
|
+ [124] = https://curl.se/bug/?i=8708
|
|
|
+ [125] = https://curl.se/bug/?i=8719
|
|
|
+ [126] = https://curl.se/bug/?i=8725
|
|
|
+ [127] = https://curl.se/bug/?i=8724
|
robot-contrib