From fc76886d578107490e5eb9588cd0b1260484011b0675589d0515292c9db623ed Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tom=C3=A1=C5=A1=20Chv=C3=A1tal?= Date: Thu, 10 Aug 2017 16:25:31 +0000 Subject: [PATCH] Accepting request 515937 from home:pmonrealgonzalez:branches:devel:libraries:c_c++ - Upstream fix to build libcurl man3 pages * Added patch curl-man3.patch - Disabled test1425 that fails in i586 architecture * Added patch curl-disable-test1427-i586.patch - Update to 7.55.0 Changes: * curl: allow --header and --proxy-header read from file * getinfo: provide sizes as curl_off_t * curl: prevent binary output spewed to terminal * curl: added --request-target * curl: added --socks5-{basic,gssapi}: control socks5 auth * libcurl: added CURLOPT_REQUEST_TARGET * libcurl: added CURLOPT_SOCKS5_AUTH Bugfixes: * Security Fixes: - glob: do not parse after a strtoul() overflow range (CVE-2017-1000101, bsc#1051643) - tftp: reject file name lengths that don't fit (CVE-2017-1000100, bsc#1051644) - file: output the correct buffer to the user (CVE-2017-1000099, bsc#1051645) * includes: remove curl/curlbuild.h and curl/curlrules.h * dist: make the hugehelp.c not get regenerated unnecessarily * timers: store internal time stamps as time_t instead of doubles * progress: let "current speed" be UL + DL speeds combined * http-proxy: do the HTTP CONNECT process entirely non-blocking * lib/curl_setup.h: remove CURL_WANTS_CA_BUNDLE_ENV * fuzz: bring oss-fuzz initial code converted to C89 OBS-URL: https://build.opensuse.org/request/show/515937 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=201 --- curl-7.54.1.tar.lzma | 3 - curl-7.54.1.tar.lzma.asc | 11 --- curl-7.55.0.tar.gz | 3 + curl-7.55.0.tar.gz.asc | 11 +++ curl-disable-test1427-i586.patch | 60 +++++++++++++++ curl-invalid-free.patch | 91 ---------------------- curl-man3.patch | 31 ++++++++ curl-mini.changes | 125 +++++++++++++++++++++++++++++++ curl-mini.spec | 14 ++-- curl.changes | 125 +++++++++++++++++++++++++++++++ curl.spec | 14 ++-- 11 files changed, 373 insertions(+), 115 deletions(-) delete mode 100644 curl-7.54.1.tar.lzma delete mode 100644 curl-7.54.1.tar.lzma.asc create mode 100644 curl-7.55.0.tar.gz create mode 100644 curl-7.55.0.tar.gz.asc create mode 100644 curl-disable-test1427-i586.patch delete mode 100644 curl-invalid-free.patch create mode 100644 curl-man3.patch diff --git a/curl-7.54.1.tar.lzma b/curl-7.54.1.tar.lzma deleted file mode 100644 index 67724a2..0000000 --- a/curl-7.54.1.tar.lzma +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:2b7af34d4900887e0b4e0a9f545b9511ff774d07151ae4976485060d3e1bdb6e -size 2101798 diff --git a/curl-7.54.1.tar.lzma.asc b/curl-7.54.1.tar.lzma.asc deleted file mode 100644 index 2f8307d..0000000 --- a/curl-7.54.1.tar.lzma.asc +++ /dev/null @@ -1,11 +0,0 @@ ------BEGIN PGP SIGNATURE----- - -iQEzBAABCgAdFiEEJ+3q8i86vOtQ25oSXMkI/bceEsIFAllA1CcACgkQXMkI/bce -EsIvtQf8CSC7sFHaJzQY0JqrGQwbtO6DT5OShv1lEHlzg/2KC8/yp94n/U9eBkdt -7/EPnFJ6hY+CVCMSv+LvpEyNTbkqBjwtshlDQTgDiPkSt265Z3qxayITN8fdDZnJ -ylnDb9c1InprXuqLlhbtWILC25ZcC39dQFWIJcsmfd3ylml4VK7Z9tEhEN8W71MR -OaQyqSu9jjO5nTof7dVu2aAhG50EoqjuCKUuYfWIJcEM2Lo4RDnicZNrZaOyxuu2 -EKeE9lmnNejgUzPN1WZ2ySocDdZzdA5CTjAbaRwAXBT840OZSUEqktrR4C2ECrTq -rbhBlEwUKuPNvGpkGymaHf6vQFAqGQ== -=gmuC ------END PGP SIGNATURE----- diff --git a/curl-7.55.0.tar.gz b/curl-7.55.0.tar.gz new file mode 100644 index 0000000..a954742 --- /dev/null +++ b/curl-7.55.0.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:dae1b1be34f5983e8d46917f2bdbb2335aecd0e57f777f4c32213da6a8050a80 +size 3730165 diff --git a/curl-7.55.0.tar.gz.asc b/curl-7.55.0.tar.gz.asc new file mode 100644 index 0000000..8a72569 --- /dev/null +++ b/curl-7.55.0.tar.gz.asc @@ -0,0 +1,11 @@ +-----BEGIN PGP SIGNATURE----- + +iQEzBAABCgAdFiEEJ+3q8i86vOtQ25oSXMkI/bceEsIFAlmKoysACgkQXMkI/bce +EsIG/QgAsyzFSQJiIFEOwxdA9BTWAzy79gXLr6kVOU2d51lJMC7Nm9HBMlUVlBn9 +RhX7kxYRjNDIpAZ1zB0L0zNhPUnv00CngjAFXg5byJ7Xu3lIZKyhGVAbvGbk0E5X +KuISWQgPo9euV54EmeYg3gdJBtXrfCAgzagjQaAT/Rs0pDlVP/gwFKvUVzYhmqVN +XUr6RS1MT9bJf5cOpzdXmv4bbutHnehb97lsqIbtB1qrsT6/doafJttz6imMPUFW +v19XDi4ByW3yzyrjV1cOleVJQbduG6EDcdp+IPkZuQWn/7oJBoV2WLniO4/v4aNq +RZF4zARHIeSkTbwYA/Hiqo5afY9dTQ== +=mthc +-----END PGP SIGNATURE----- diff --git a/curl-disable-test1427-i586.patch b/curl-disable-test1427-i586.patch new file mode 100644 index 0000000..b7fe32c --- /dev/null +++ b/curl-disable-test1427-i586.patch @@ -0,0 +1,60 @@ +From 581011a3d2bb7d2c6f74e4f4dea9f8c12e7cc382 Mon Sep 17 00:00:00 2001 +From: Daniel Stenberg +Date: Sun, 6 Aug 2017 21:33:25 +0200 +Subject: [PATCH] test1427: verify command line parser integer overflow + detection + +--- + tests/data/Makefile.inc | 2 +- + tests/data/test1427 | 29 +++++++++++++++++++++++++++++ + 2 files changed, 30 insertions(+), 1 deletion(-) + create mode 100644 tests/data/test1427 + +diff --git a/tests/data/Makefile.inc b/tests/data/Makefile.inc +index 59f692e8f4..1c637f8f0e 100644 +--- a/tests/data/Makefile.inc ++++ b/tests/data/Makefile.inc +@@ -151,7 +151,7 @@ test1396 test1397 test1398 test1399 \ + test1400 test1401 test1402 test1403 test1404 test1405 test1406 test1407 \ + test1408 test1409 test1410 test1411 test1412 test1413 test1414 test1415 \ + test1416 test1417 test1418 test1419 test1420 test1421 test1422 test1423 \ +-test1424 test1425 test1426 \ ++test1424 test1425 test1426 test1427 \ + test1428 test1429 test1430 test1431 test1432 test1433 test1434 test1435 \ + test1436 test1437 test1438 test1439 test1440 test1441 test1442 test1443 \ + test1444 test1445 test1446 test1450 test1451 \ +diff --git a/tests/data/test1427 b/tests/data/test1427 +new file mode 100644 +index 0000000000..03cab4b93b +--- /dev/null ++++ b/tests/data/test1427 +@@ -0,0 +1,29 @@ ++ ++ ++ ++integer overflow ++ ++ ++ ++# ++# Client-side ++ ++ ++none ++ ++ ++too large -m timeout value ++ ++ ++http://%HOSTIP:%HTTPPORT/1427 -m 184467440737095510 ++ ++ ++ ++# ++# Verify data after the test has been "shot" ++ ++ ++2 ++ ++ ++ diff --git a/curl-invalid-free.patch b/curl-invalid-free.patch deleted file mode 100644 index a7e34d6..0000000 --- a/curl-invalid-free.patch +++ /dev/null @@ -1,91 +0,0 @@ -From 19e775b499c5c3cc7ec717af7c1e764f42817369 Mon Sep 17 00:00:00 2001 -From: Daniel Stenberg -Date: Sun, 18 Jun 2017 17:54:55 +0200 -Subject: [PATCH] PIPELINING_SERVER_BL: cleanup the internal list use - -The list was freed incorrectly since the llist refactor of -cbae73e1dd959. Aded test 1550 to verify that it works and avoid future -regressions. - -Reported-by: Pascal Terjan - -Fixes #1584 ---- - lib/pipeline.c | 37 +++++++++++++++---------------------- - tests/data/Makefile.inc | 1 + - tests/data/test1550 | 29 +++++++++++++++++++++++++++++ - tests/libtest/Makefile.inc | 8 ++++++++ - tests/libtest/lib1550.c | 39 +++++++++++++++++++++++++++++++++++++++ - 5 files changed, 92 insertions(+), 22 deletions(-) - create mode 100644 tests/data/test1550 - create mode 100644 tests/libtest/lib1550.c - -diff --git a/lib/pipeline.c b/lib/pipeline.c -index b8d2037452..4d41b04139 100644 ---- a/lib/pipeline.c -+++ b/lib/pipeline.c -@@ -230,28 +230,27 @@ CURLMcode Curl_pipeline_set_site_blacklist(char **sites, - return CURLM_OK; - } - -+struct blacklist_node { -+ struct curl_llist_element list; -+ char server_name[1]; -+}; -+ - bool Curl_pipeline_server_blacklisted(struct Curl_easy *handle, - char *server_name) - { - if(handle->multi && server_name) { -- struct curl_llist *blacklist = -+ struct curl_llist *list = - Curl_multi_pipelining_server_bl(handle->multi); - -- if(blacklist) { -- struct curl_llist_element *curr; -- -- curr = blacklist->head; -- while(curr) { -- char *bl_server_name; -- -- bl_server_name = curr->ptr; -- if(strncasecompare(bl_server_name, server_name, -- strlen(bl_server_name))) { -- infof(handle, "Server %s is blacklisted\n", server_name); -- return TRUE; -- } -- curr = curr->next; -+ struct curl_llist_element *e = list->head; -+ while(e) { -+ struct blacklist_node *bl = (struct blacklist_node *)e; -+ if(strncasecompare(bl->server_name, server_name, -+ strlen(bl->server_name))) { -+ infof(handle, "Server %s is blacklisted\n", server_name); -+ return TRUE; - } -+ e = e->next; - } - - DEBUGF(infof(handle, "Server %s is not blacklisted\n", server_name)); -@@ -259,11 +258,6 @@ bool Curl_pipeline_server_blacklisted(struct Curl_easy *handle, - return FALSE; - } - --struct blacklist_node { -- struct curl_llist_element list; -- char server_name[1]; --}; -- - CURLMcode Curl_pipeline_set_server_blacklist(char **servers, - struct curl_llist *list) - { -@@ -286,8 +280,7 @@ CURLMcode Curl_pipeline_set_server_blacklist(char **servers, - } - strcpy(n->server_name, *servers); - -- Curl_llist_insert_next(list, list->tail, n->server_name, -- &n->list); -+ Curl_llist_insert_next(list, list->tail, n, &n->list); - servers++; - } - } diff --git a/curl-man3.patch b/curl-man3.patch new file mode 100644 index 0000000..b54035a --- /dev/null +++ b/curl-man3.patch @@ -0,0 +1,31 @@ +From f864bd8c880d5a916379aa4f26f1c45fe370b282 Mon Sep 17 00:00:00 2001 +From: Daniel Stenberg +Date: Wed, 9 Aug 2017 10:28:06 +0200 +Subject: [PATCH] build: fix 'make install' with configure, install + docs/libcurl/* too + +Broken since d24838d4da9faa + +Reported-by: Bernard Spil +--- + Makefile.am | 2 ++ + 1 file changed, 2 insertions(+) + +Index: curl-7.55.0/Makefile.am +=================================================================== +--- curl-7.55.0.orig/Makefile.am ++++ curl-7.55.0/Makefile.am +@@ -276,11 +276,13 @@ cygwinbin: + install-data-hook: + cd include && $(MAKE) install + cd docs && $(MAKE) install ++ cd docs/libcurl && $(MAKE) install + + # We extend the standard uninstall with a custom hook: + uninstall-hook: + cd include && $(MAKE) uninstall + cd docs && $(MAKE) uninstall ++ cd docs/libcurl && $(MAKE) uninstall + + ca-bundle: lib/mk-ca-bundle.pl + @echo "generating a fresh ca-bundle.crt" diff --git a/curl-mini.changes b/curl-mini.changes index 83a0afa..30dd1c5 100644 --- a/curl-mini.changes +++ b/curl-mini.changes @@ -1,3 +1,128 @@ +------------------------------------------------------------------- +Thu Aug 10 11:08:46 UTC 2017 - pmonrealgonzalez@suse.com + +- Upstream fix to build libcurl man3 pages + * Added patch curl-man3.patch + +------------------------------------------------------------------- +Thu Aug 10 10:53:23 UTC 2017 - pmonrealgonzalez@suse.com + +- Disabled test1425 that fails in i586 architecture + * Added patch curl-disable-test1427-i586.patch + +------------------------------------------------------------------- +Wed Aug 9 09:34:25 UTC 2017 - pmonrealgonzalez@suse.com + +- Update to 7.55.0 + Changes: + * curl: allow --header and --proxy-header read from file + * getinfo: provide sizes as curl_off_t + * curl: prevent binary output spewed to terminal + * curl: added --request-target + * curl: added --socks5-{basic,gssapi}: control socks5 auth + * libcurl: added CURLOPT_REQUEST_TARGET + * libcurl: added CURLOPT_SOCKS5_AUTH + Bugfixes: + * Security Fixes: + - glob: do not parse after a strtoul() overflow range + (CVE-2017-1000101, bsc#1051643) + - tftp: reject file name lengths that don't fit + (CVE-2017-1000100, bsc#1051644) + - file: output the correct buffer to the user + (CVE-2017-1000099, bsc#1051645) + * includes: remove curl/curlbuild.h and curl/curlrules.h + * dist: make the hugehelp.c not get regenerated unnecessarily + * timers: store internal time stamps as time_t instead of doubles + * progress: let "current speed" be UL + DL speeds combined + * http-proxy: do the HTTP CONNECT process entirely non-blocking + * lib/curl_setup.h: remove CURL_WANTS_CA_BUNDLE_ENV + * fuzz: bring oss-fuzz initial code converted to C89 + * configure: disable nghttp2 too if HTTP has been disabled + * mk-ca-bundle.pl: Check curl's exit code after certdata download + * test1148: verify the -# progressbar + * tests: stabilize test 2032 and 2033 + * HTTPS-Proxy: don't offer h2 for https proxy connections + * http-proxy: only attempt FTP over HTTP proxy + * curl-compilers.m4: enable vla warning for clang + * curl-compilers.m4: enable double-promotion warning + * curl-compilers.m4: enable missing-variable-declarations clang + warning + * curl-compilers.m4: enable comma clang warning + * CURLOPT_PREQUOTE: not supported for SFTP + * http2: fix OOM crash + * PIPELINING_SERVER_BL: cleanup the internal list use + * mkhelp.pl: fix script name in usage text + * lib1521: add curl_easy_getinfo calls to the test set + * travis: do the distcheck test build out-of-tree as well + * if2ip: fix compiler warning in ISO C90 mode + * lib: fix the djgpp build + * typecheck-gcc: add support for CURLINFO_OFF_T + * travis: enable typecheck-gcc warnings + * maketgz: switch to xz instead of lzma + * CURLINFO_REDIRECT_URL.3: mention the CURLOPT_MAXREDIRS case + * curl/system.h: add check for XTENSA for 32bit gcc + * test1537: fixed memory leak on OOM + * test1521: fix compiler warnings + * curl: fix memory leak on test 1147 OOM + * libtest/make: generate lib1521.c dynamically at build-time + * curl_strequal.3: fix typo in SYNOPSIS + * progress: prevent resetting t_starttransfer + * openssl: improve fallback seed of PRNG with a time based hash + * http2: improved PING frame handling + * test1450: add simple testing for DICT + * make: build the docs subdir only from within src + * gtls: fix build when sizeof(long) < sizeof(void *) + * url: make the original string get used on subsequent transfers + * timeval.c: Use long long constant type for timeval assignment + * tool_sleep: typecast to avoid macos compiler warning + * travis.yml: use --enable-werror on debug builds + * test1451: add SMB support to the testbed + * configure: remove checks for 5 functions never used + * configure: try ldap/lber in reversed order first + * smb: fix build for djgpp/MSDOS + * travis: install nghttp2 on linux builds + * smb: add support for CURLOPT_FILETIME + * select.h: avoid macro redefinition harder + * runtests: support "threaded-resolver" as a feature + * test506: skip if threaded-resolver + * cmake: remove spurious "-l" from linker flags + * cmake: add CURL_WERROR for enabling "warning as errors" + * memdebug: don't setbuf() if the file open failed + * curl_easy_escape.3: mention the (lack of) encoding + * test1452: add telnet negotiation + * CURLOPT_POSTFIELDS.3: explain the 100-continue magic better + * cmake: offer CMAKE_DEBUG_POSTFIX when building with MSVC + * tests/valgrind.supp: supress OpenSSL false positive seen on + travis + * curl_setup_once: Remove ERRNO/SET_ERRNO macros + * rtspd: fix MSVC level 4 warning + * sockfilt: suppress conversion warning with explicit cast + * libtest: fix MSVC warning C4706 + * tests/server/resolve.c: fix deprecation warning + * nss: fix a possible use-after-free in SelectClientCert() + * checksrc: escape open brace in regex + * multi: mention integer overflow risk if using > 500 million + sockets + * timeval: struct curltime is a struct timeval replacement + * curl_rtmp: fix a compiler warning + * include.d: clarify that it concerns the response headers + * cmake: support make uninstall + * include.d: clarify --include is only for response headers + * libcurl: Stop using error codes defined under CURL_NO_OLDIES + * http: fix response code parser to avoid integer overflow + * configure: fix the check for IdnToUnicode + * multi: fix request timer management + * curl_threads: fix MSVC compiler warning + * cmake: set MSVC warning level to 4 + * netrc: skip lines starting with '#' + * FTP: skip unnecessary CWD when in nocwd mode + * gssapi: fix memory leak of output token in multi round context + * getparameter: avoid returning uninitialized 'usedarg' + * curl (debug build) easy_events: make event data static + * curl: detect and bail out early on parameter integer overflows + +- Removed patch curl-invalid-free.patch + ------------------------------------------------------------------- Wed Jun 28 13:50:08 UTC 2017 - dimstar@opensuse.org diff --git a/curl-mini.spec b/curl-mini.spec index eec41ee..145303b 100644 --- a/curl-mini.spec +++ b/curl-mini.spec @@ -32,20 +32,23 @@ %endif Name: curl-mini -Version: 7.54.1 +Version: 7.55.0 Release: 0 Summary: A Tool for Transferring Data from URLs License: curl Group: Productivity/Networking/Web/Utilities Url: https://curl.haxx.se/ -Source: https://curl.haxx.se/download/curl-%{version}.tar.lzma -Source2: https://curl.haxx.se/download/curl-%{version}.tar.lzma.asc +Source: https://curl.haxx.se/download/curl-%{version}.tar.gz +Source2: https://curl.haxx.se/download/curl-%{version}.tar.gz.asc Source3: baselibs.conf Source4: https://daniel.haxx.se/mykey.asc#/curl.keyring Patch0: libcurl-ocloexec.patch Patch1: dont-mess-with-rpmoptflags.diff Patch2: curl-secure-getenv.patch -Patch3: curl-invalid-free.patch +# PATCH-FIX-OPENSUSE curl-disable-test1427-i586.patch - Disabled test1425 that fails in i586 architecture +Patch3: curl-disable-test1427-i586.patch +# PATCH-FIX-UPSTREAM curl-man3.patch - Fix to build libcurl man3 pages +Patch4: curl-man3.patch BuildRequires: libtool BuildRequires: pkgconfig %if !0%{?bootstrap} @@ -126,7 +129,8 @@ user interaction or any kind of interactivity. %patch0 %patch1 %patch2 -%patch3 -p1 +%patch3 -p1 -R +%patch4 -p1 %build # curl complains if macro definition is contained in CFLAGS diff --git a/curl.changes b/curl.changes index 83a0afa..30dd1c5 100644 --- a/curl.changes +++ b/curl.changes @@ -1,3 +1,128 @@ +------------------------------------------------------------------- +Thu Aug 10 11:08:46 UTC 2017 - pmonrealgonzalez@suse.com + +- Upstream fix to build libcurl man3 pages + * Added patch curl-man3.patch + +------------------------------------------------------------------- +Thu Aug 10 10:53:23 UTC 2017 - pmonrealgonzalez@suse.com + +- Disabled test1425 that fails in i586 architecture + * Added patch curl-disable-test1427-i586.patch + +------------------------------------------------------------------- +Wed Aug 9 09:34:25 UTC 2017 - pmonrealgonzalez@suse.com + +- Update to 7.55.0 + Changes: + * curl: allow --header and --proxy-header read from file + * getinfo: provide sizes as curl_off_t + * curl: prevent binary output spewed to terminal + * curl: added --request-target + * curl: added --socks5-{basic,gssapi}: control socks5 auth + * libcurl: added CURLOPT_REQUEST_TARGET + * libcurl: added CURLOPT_SOCKS5_AUTH + Bugfixes: + * Security Fixes: + - glob: do not parse after a strtoul() overflow range + (CVE-2017-1000101, bsc#1051643) + - tftp: reject file name lengths that don't fit + (CVE-2017-1000100, bsc#1051644) + - file: output the correct buffer to the user + (CVE-2017-1000099, bsc#1051645) + * includes: remove curl/curlbuild.h and curl/curlrules.h + * dist: make the hugehelp.c not get regenerated unnecessarily + * timers: store internal time stamps as time_t instead of doubles + * progress: let "current speed" be UL + DL speeds combined + * http-proxy: do the HTTP CONNECT process entirely non-blocking + * lib/curl_setup.h: remove CURL_WANTS_CA_BUNDLE_ENV + * fuzz: bring oss-fuzz initial code converted to C89 + * configure: disable nghttp2 too if HTTP has been disabled + * mk-ca-bundle.pl: Check curl's exit code after certdata download + * test1148: verify the -# progressbar + * tests: stabilize test 2032 and 2033 + * HTTPS-Proxy: don't offer h2 for https proxy connections + * http-proxy: only attempt FTP over HTTP proxy + * curl-compilers.m4: enable vla warning for clang + * curl-compilers.m4: enable double-promotion warning + * curl-compilers.m4: enable missing-variable-declarations clang + warning + * curl-compilers.m4: enable comma clang warning + * CURLOPT_PREQUOTE: not supported for SFTP + * http2: fix OOM crash + * PIPELINING_SERVER_BL: cleanup the internal list use + * mkhelp.pl: fix script name in usage text + * lib1521: add curl_easy_getinfo calls to the test set + * travis: do the distcheck test build out-of-tree as well + * if2ip: fix compiler warning in ISO C90 mode + * lib: fix the djgpp build + * typecheck-gcc: add support for CURLINFO_OFF_T + * travis: enable typecheck-gcc warnings + * maketgz: switch to xz instead of lzma + * CURLINFO_REDIRECT_URL.3: mention the CURLOPT_MAXREDIRS case + * curl/system.h: add check for XTENSA for 32bit gcc + * test1537: fixed memory leak on OOM + * test1521: fix compiler warnings + * curl: fix memory leak on test 1147 OOM + * libtest/make: generate lib1521.c dynamically at build-time + * curl_strequal.3: fix typo in SYNOPSIS + * progress: prevent resetting t_starttransfer + * openssl: improve fallback seed of PRNG with a time based hash + * http2: improved PING frame handling + * test1450: add simple testing for DICT + * make: build the docs subdir only from within src + * gtls: fix build when sizeof(long) < sizeof(void *) + * url: make the original string get used on subsequent transfers + * timeval.c: Use long long constant type for timeval assignment + * tool_sleep: typecast to avoid macos compiler warning + * travis.yml: use --enable-werror on debug builds + * test1451: add SMB support to the testbed + * configure: remove checks for 5 functions never used + * configure: try ldap/lber in reversed order first + * smb: fix build for djgpp/MSDOS + * travis: install nghttp2 on linux builds + * smb: add support for CURLOPT_FILETIME + * select.h: avoid macro redefinition harder + * runtests: support "threaded-resolver" as a feature + * test506: skip if threaded-resolver + * cmake: remove spurious "-l" from linker flags + * cmake: add CURL_WERROR for enabling "warning as errors" + * memdebug: don't setbuf() if the file open failed + * curl_easy_escape.3: mention the (lack of) encoding + * test1452: add telnet negotiation + * CURLOPT_POSTFIELDS.3: explain the 100-continue magic better + * cmake: offer CMAKE_DEBUG_POSTFIX when building with MSVC + * tests/valgrind.supp: supress OpenSSL false positive seen on + travis + * curl_setup_once: Remove ERRNO/SET_ERRNO macros + * rtspd: fix MSVC level 4 warning + * sockfilt: suppress conversion warning with explicit cast + * libtest: fix MSVC warning C4706 + * tests/server/resolve.c: fix deprecation warning + * nss: fix a possible use-after-free in SelectClientCert() + * checksrc: escape open brace in regex + * multi: mention integer overflow risk if using > 500 million + sockets + * timeval: struct curltime is a struct timeval replacement + * curl_rtmp: fix a compiler warning + * include.d: clarify that it concerns the response headers + * cmake: support make uninstall + * include.d: clarify --include is only for response headers + * libcurl: Stop using error codes defined under CURL_NO_OLDIES + * http: fix response code parser to avoid integer overflow + * configure: fix the check for IdnToUnicode + * multi: fix request timer management + * curl_threads: fix MSVC compiler warning + * cmake: set MSVC warning level to 4 + * netrc: skip lines starting with '#' + * FTP: skip unnecessary CWD when in nocwd mode + * gssapi: fix memory leak of output token in multi round context + * getparameter: avoid returning uninitialized 'usedarg' + * curl (debug build) easy_events: make event data static + * curl: detect and bail out early on parameter integer overflows + +- Removed patch curl-invalid-free.patch + ------------------------------------------------------------------- Wed Jun 28 13:50:08 UTC 2017 - dimstar@opensuse.org diff --git a/curl.spec b/curl.spec index 7208665..fd3eb5c 100644 --- a/curl.spec +++ b/curl.spec @@ -30,20 +30,23 @@ %endif Name: curl -Version: 7.54.1 +Version: 7.55.0 Release: 0 Summary: A Tool for Transferring Data from URLs License: curl Group: Productivity/Networking/Web/Utilities Url: https://curl.haxx.se/ -Source: https://curl.haxx.se/download/curl-%{version}.tar.lzma -Source2: https://curl.haxx.se/download/curl-%{version}.tar.lzma.asc +Source: https://curl.haxx.se/download/curl-%{version}.tar.gz +Source2: https://curl.haxx.se/download/curl-%{version}.tar.gz.asc Source3: baselibs.conf Source4: https://daniel.haxx.se/mykey.asc#/curl.keyring Patch0: libcurl-ocloexec.patch Patch1: dont-mess-with-rpmoptflags.diff Patch2: curl-secure-getenv.patch -Patch3: curl-invalid-free.patch +# PATCH-FIX-OPENSUSE curl-disable-test1427-i586.patch - Disabled test1425 that fails in i586 architecture +Patch3: curl-disable-test1427-i586.patch +# PATCH-FIX-UPSTREAM curl-man3.patch - Fix to build libcurl man3 pages +Patch4: curl-man3.patch BuildRequires: libtool BuildRequires: pkgconfig %if !0%{?bootstrap} @@ -124,7 +127,8 @@ user interaction or any kind of interactivity. %patch0 %patch1 %patch2 -%patch3 -p1 +%patch3 -p1 -R +%patch4 -p1 %build # curl complains if macro definition is contained in CFLAGS