Commit Graph

160 Commits

Author SHA256 Message Date
Ismail Dönmez
cb94451b5b - Update to 7.54.1
Changes:
  * curl now shows release date in --version output
  Bugfixes:
  * Fixes CVE-2017-9502: default protocol drive letter buffer overflow
  * openssl: fix memory leak in servercert
  * curl: set a 100K buffer size by default
  * nss: do not leak PKCS #11 slot while loading a key
  * nss: load libnssckbi.so if no other trust is specified
  * curl: use utimes instead of obsolescent utime when available
  * url: fixed a memory leak on OOM while setting CURLOPT_BUFFERSIZE
  * CURLOPT_BUFFERSIZE: 1024 bytes is now the minimum size
  * curl: non-boolean command line args reject --no- prefixes
  * telnet: Write full buffer instead of byte-by-byte
  * curl: remove --environment and tool_writeenv.c
  * curl: generate the --help output
  * curl.1: clarify --config
  * curl.1: mention --oauth2-bearer's argument
  * ssh: fix memory leak in disconnect due to timeout
  * redirect: store the "would redirect to" URL when max redirs is reached
  * file: make speedcheck use current time for checks
  * urlglob: fix division by zero

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=191
2017-06-14 08:46:57 +00:00
Tomáš Chvátal
e8631bf9d1 Accepting request 489260 from home:pmonrealgonzalez:branches:devel:libraries:c_c++
* bsc#1033413

OBS-URL: https://build.opensuse.org/request/show/489260
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=189
2017-04-19 09:22:55 +00:00
Ismail Dönmez
8163a4f5cc - Update to 7.54.0
Changes:
  * Add CURL_SSLVERSION_MAX_* constants to CURLOPT_SSLVERSION
  * Add --max-tls
  * Add CURLOPT_SUPPRESS_CONNECT_HEADERS
  * Add --suppress-connect-headers
  Bugfixes:
  * CVE-2017-7468: switch off SSL session id when client cert is used
  * tests: use consistent environment variables for setting charset
  * proxy: fixed a memory leak on OOM
  * ftp: removed an erroneous free in an OOM path
  * ftp: fixed a NULL pointer dereference on OOM
  * gopher: fixed detection of an error condition from Curl_urldecode
  * url: fix unix-socket support for proxy-disabled builds
  * fix potential use of uninitialized variables
  * ares: return error at once if timed out before name resolve starts
  * URL: return error on malformed URLs with junk after port number
  * http2: Fix assertion error on redirect with CL=0
  * --insecure: clarify that this option is for server connections
  * authneg: clear auth.multi flag at http_done
  * curl_easy_reset: Also reset the authentication state
  * proxy: skip SSL initialization for closed connections
  * http_proxy: ignore TE and CL in CONNECT 2xx responses
  * multi: fix streamclose() crash in debug mode
  * openssl: fall back on SSL_ERROR_* string when no error detail
  * asiohiper: make sure socket is open in event_cb
  * curl: check for end of input in writeout backslash handling
  * openssl: exclude DSA code when OPENSSL_NO_DSA is defined
  * http: Fix proxy connection reuse with basic-auth
  * pause: handle mixed types of data when paused

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=188
2017-04-19 08:28:13 +00:00
Ismail Dönmez
667e492a23 - Update to 7.53.1
Bugfixes:
  * url: Improve CURLOPT_PROXY_CAPATH error handling
  * urldata: include curl_sspi.h when Windows SSPI is enabled
  * formdata: check for EOF when reading from stdin
  * tests: Set CHARSET & LANG to UTF-8 in 1035, 2046 and 2047
  * url: Default the proxy CA bundle location to CURL_CA_BUNDLE
  * rand: added missing #ifdef HAVE_FCNTL_H around fcntl.h header

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=186
2017-02-24 11:53:47 +00:00
Ismail Dönmez
1856c7c477 -
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=185
2017-02-22 13:27:23 +00:00
Ismail Dönmez
bf1e67fa8b - Update to 7.53.0
Changes:
  * unix_socket: added --abstract-unix-socket and
    CURLOPT_ABSTRACT_UNIX_SOCKET
  * CURLOPT_BUFFERSIZE: support enlarging receive buffer
  Bugfixes:
  * CVE-2017-2629: make SSL_VERIFYSTATUS work again
  * gnutls-random: check return code for failed random
  * openssl-random: check return code when asking for random
  * http: remove "Curl_http_done: called premature" message
  * cyassl: use time_t instead of long for timeout
  * build-wolfssl: Sync config with wolfSSL 3.10
  * ftp-gss: check for init before use
  * configure: accept --with-libidn2 instead
  * ftp: failure to resolve proxy should return that error code
  * curl.1: add three more exit codes
  * docs/ciphers: link to our own new page about ciphers
  * vtls: s/SSLEAY/OPENSSL - fixes multi_socket timeouts with openssl
  * darwinssl: fix iOS build
  * darwinssl: fix CFArrayRef leak
  * cmake: use crypt32.lib when building with OpenSSL on windows
  * curl_formadd.3: CURLFORM_CONTENTSLENGTH not needed when chunked
  * digest_sspi: copy terminating NUL as well
  * curl: fix --remote-time incorrect times on Windows
  * curl.1: several updates and corrections
  * content_encoding: change return code on a failure
  * curl.h: CURLE_FUNCTION_NOT_FOUND is no longer in use
  * docs: TCP_KEEPALIVE start and interval default to 60
  * darwinssl: --insecure overrides --cacert if both settings are in use
  * TheArtOfHttpScripting: grammar

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=184
2017-02-22 13:26:22 +00:00
Ismail Dönmez
1002a66bcb Accepting request 454837 from home:AndreasStieger:branches:devel:libraries:c_c++
- build with libidn2 for IDNA2008 support
  FATE#321897 CVE-2016-8625 bsc#1005649
  add curl-7.52.1-idn-fixes.patch to fix test, among other things
- re-enable tests that are no longer failing, 
  remove curl-disable_failing_tests.patch

OBS-URL: https://build.opensuse.org/request/show/454837
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=182
2017-02-06 09:07:18 +00:00
Ismail Dönmez
6af540439e -
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=180
2016-12-23 07:48:39 +00:00
Ismail Dönmez
bd259165c7 - Update to 7.52.1
Bugfixes:
  * CVE-2016-9594: unititialized random bsc#1016738

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=179
2016-12-23 07:39:42 +00:00
Ismail Dönmez
509550b5a8 - Update to 7.52.0
Changes:
  * nss: map CURL_SSLVERSION_DEFAULT to NSS default
  * vtls: support TLS 1.3 via CURL_SSLVERSION_TLSv1_3
  * curl: introduce the --tlsv1.3 option to force TLS 1.3
  * curl: Add --retry-connrefused
  * proxy: Support HTTPS proxy and SOCKS+HTTP(s)
  * add CURLINFO_SCHEME, CURLINFO_PROTOCOL, and %{scheme}
  * curl: add --fail-early 
  Bugfixes:
  * CVE-2016-9586: printf floating point buffer overflow
  * curl -w: added more decimal digits to timing counters
  * easy: Initialize info variables on easy init and duphandle
  * http2: Don't send header fields prohibited by HTTP/2 spec
  * ssh: check md5 fingerprints case insensitively (regression)
  * openssl: initial TLS 1.3 adaptions
  * SPNEGO: Fix memory leak when authentication fails
  * realloc: use Curl_saferealloc to avoid common mistakes
  * openssl: make sure to fail in the unlikely event that PRNG
    seeding fails
  * URL-parser: for file://[host]/ URLs, the [host] must be localhost
  * timeval: prefer time_t to hold seconds instead of long
  * glob: fix [a-c] globbing regression
  * curl.1: Clarify --dump-header only writes received headers
  * http2: Fix address sanitizer memcpy warning
  * http2: Use huge HTTP/2 windows
  * connects: Don't mix unix domain sockets with regular ones
  * url: Fix conn reuse for local ports and interfaces
  * x509: Limit ASN.1 structure sizes to 256K
  * http2: check nghttp2_session_set_local_window_size exists

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=178
2016-12-21 07:25:57 +00:00
Ismail Dönmez
c7dbf5559a - Update to 7.51.0
Changes:
  * nss: additional cipher suites are now accepted by
    CURLOPT_SSL_CIPHER_LIST
  * New option: CURLOPT_KEEP_SENDING_ON_ERROR 
  Bugfixes:
  * CVE-2016-8615: cookie injection for other servers
  * CVE-2016-8616: case insensitive password comparison
  * CVE-2016-8617: OOB write via unchecked multiplication
  * CVE-2016-8618: double-free in curl_maprintf
  * CVE-2016-8619: double-free in krb5 code
  * CVE-2016-8620: glob parser write/read out of bounds
  * CVE-2016-8621: curl_getdate read out of bounds
  * CVE-2016-8622: URL unescape heap overflow via integer truncation
  * CVE-2016-8623: Use-after-free via shared cookies
  * CVE-2016-8624: invalid URL parsing with '#'
  * CVE-2016-8625: IDNA 2003 makes curl use wrong host
  * openssl: fix per-thread memory leak using 1.0.1 or 1.0.2
  * http: accept "Transfer-Encoding: chunked" for HTTP/2 as well
  * LICENSE-MIXING.md: update with mbedTLS dual licensing
  * examples/imap-append: Set size of data to be uploaded
  * test2048: fix url
  * darwinssl: disable RC4 cipher-suite support
  * CURLOPT_PINNEDPUBLICKEY.3: fix the AVAILABILITY formatting
  * openssl: don’t call CRYTPO_cleanup_all_ex_data
  * libressl: fix version output
  * easy: Reset all statistical session info in curl_easy_reset
  * curl_global_cleanup.3: don't unload the lib with sub threads running
  * dist: add CurlSymbolHiding.cmake to the tarball
  * docs: Remove that --proto is just used for initial retrieval

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=176
2016-11-02 08:22:48 +00:00
Ismail Dönmez
bde7f7c470 - update to 7.50.3
Bugfixes:
   * CVE-2016-7167: escape and unescape integer overflows
   * mk-ca-bundle.pl: use SHA256 instead of SHA1
   * checksrc: detect strtok() use
   * errors: new alias CURLE_WEIRD_SERVER_REPLY
   * http2: support > 64bit sized uploads
   * openssl: fix bad memory free (regression)
   * CMake: hide private library symbols
   * http: refuse to pass on response body when NO_NODY is set
   * cmake: fix curl-config --static-libs
   * mbedtls: switch off NTLM in build if md4 isn't available
   * curl: --create-dirs on windows groks both forward and
     backward slashes

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=174
2016-09-14 07:41:51 +00:00
Ismail Dönmez
2204f88cb5 -
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=172
2016-09-08 08:56:16 +00:00
Ismail Dönmez
302b721dfa - update to 7.50.2
Bugfixes:
  * mbedtls: Added support for NTLM
  * SSH: fixed SFTP/SCP transfer problems
  * multi: make Curl_expire() work with 0 ms timeouts
  * mk-ca-bundle.pl: -m keeps ca cert meta data in output
  * TFTP: Fix upload problem with piped input
  * CURLOPT_TCP_NODELAY: now enabled by default
  * mbedtls: set verbose TLS debug when MBEDTLS_DEBUG is defined
  * http2: always wait for readable socket
  * cmake: Enable win32 large file support by default
  * cmake: Enable win32 threaded resolver by default
  * winbuild: Avoid setting redundant CFLAGS to compile commands
  * curl.h: make CURL_NO_OLDIES define CURL_STRICTER
  * docs: make more markdown files use .md extension
  * docs: CONTRIBUTE and LICENSE-MIXING were converted to markdown
  * winbuild: Allow changing C compiler via environment variable CC
  * rtsp: accept any RTSP session id
  * HTTP: retry failed HEAD requests on reused connections too
  * configure: add zlib search with pkg-config
  * openssl: accept subjectAltName iPAddress if no dNSName match
  * MANUAL: Remove invalid link to LDAP documentation
  * socks: improved connection procedure
  * proxy: reject attempts to use unsupported proxy schemes
  * proxy: bring back use of "Proxy-Connection:"
  * curl: allow "pkcs11:" prefix for client certificates
  * spnego_sspi: fix memory leak in case *outlen is zero
  * SOCKS: improve verbose output of SOCKS5 connection sequence
  * SOCKS: display the hostname returned by the SOCKS5 proxy server
  * http/sasl: Query authentication mechanism supported by SSPI before using

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=171
2016-09-08 08:54:43 +00:00
P. Janouch
a8f615150b - update to 7.50.1
Bugfixes:
  * TLS: switch off SSL session id when client cert is used
  * TLS: only reuse connections with the same client cert
  * curl_multi_cleanup: clear connection pointer for easy handles
  * include the CURLINFO_HTTP_VERSION man page into the release tarball
  * include the http2-server.pl script in the release tarball
  * test558: fix test by stripping file paths from FD lines
  * spnego: Corrected miss-placed * in Curl_auth_spnego_cleanup() declaration
  * tests: Fix for http/2 feature
  * cmake: Fix for schannel support
  * curl.h: make public types void * again
  * win32: fix a potential memory leak in Curl_load_library
  * travis: fix OSX build by re-installing libtool
  * mbedtls: Fix debug function name 
- removed 0001-tests-distribute-the-http2-server.pl-script-too.patch

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=169
2016-08-05 12:52:17 +00:00
e971992d56 Accepting request 412565 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 7.50.0
  Changes:
  * http: add CURLINFO_HTTP_VERSION and %{http_version}
  Bugfixes:
  * openssl: fix build with OPENSSL_NO_COMP
  * cmake: Added missing mbedTLS support
  * URL parser: allow URLs to use one, two or three slashes
  * curl: fix -q [regression]
  * openssl: Use correct buffer sizes for error messages
  * curl: fix SIGSEGV while parsing URL with too many globs
  * vtls: fix ssl session cache race condition
  * http: Fix HTTP/2 connection reuse [regression]
  * checksrc: Add LoadLibrary to the banned functions list
  * configure: occasional ignorance of --enable-symbol-hiding with GCC
  * http2: test17xx are the first real HTTP/2 tests
  * resolve: add support for IPv6 DNS64/NAT64 Networks on OS X + iOS
  * curl_multi_socket_action.3: rewording
  * CURLOPT_POSTFIELDS.3: Clarify what happens when set empty
  * cmake: Fix build with winldap
  * openssl: fix cert check with non-DNS name fields present
  * curl.1: mention the units for the progress meter
  * openssl: use more 'const' to fix build warnings with 1.1.0 branch
  * cmake: now using BUILD_TESTING=ON/OFF
  * vtls: Only call add/getsession if session id is enabled
  * headers: forward declare CURL, CURLM and CURLSH as structs
  * configure: improve detection of CA bundle path on FreeBSD
  * SFTP: set a generic error when no SFTP one exists
  * curl_global_init.3: expand on the SSL and WIN32 bits purpose
  * conn: don't free easy handle data in handler->disconnect
  * cookie.c: Fix misleading indentation

OBS-URL: https://build.opensuse.org/request/show/412565
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=168
2016-07-21 18:40:30 +00:00
P. Janouch
f0b8ef2d59 Accepting request 402804 from home:AndreasStieger:branches:devel:libraries:c_c++
curl 7.49.1

OBS-URL: https://build.opensuse.org/request/show/402804
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=166
2016-06-17 13:15:20 +00:00
Ismail Dönmez
197fcdad71 - Depend on libssh2 >= 1.6.0 since curl depends on the
libssh2_scp_recv2 symbol now. Fixes boo#983170

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=164
2016-06-06 10:22:45 +00:00
P. Janouch
e5356c8cdc Accepting request 394233 from home:alarrosa:branches:devel:libraries:c_c++
- Add 0001-Fix-invalid-Network-is-unreachable-errors.patch.
  Fixes "Network is unreachable" errors in valid situations when ipv6
  is not available but ipv4 is working fine. This also fixes the same
  error from happening in applications using libcurl4 (like zypper).
  (bsc#915846)

OBS-URL: https://build.opensuse.org/request/show/394233
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=162
2016-05-09 07:57:49 +00:00
Ismail Dönmez
15d9fc8ebf - Update to 7.48.0
* configure: --with-ca-fallback: use built-in TLS CA fallback
  * TFTP: add --tftp-no-options to expose CURLOPT_TFTP_NO_OPTIONS
  * getinfo: CURLINFO_TLS_SSL_PTR supersedes CURLINFO_TLS_SESSION
  * Lots of bugfixes, see https://curl.haxx.se/changes.html#7_48_0
- Drop curl-7.41.0-use-openssl-s-built-in-verify-path-as-fallback.diff,
  superseded by --with-ca-fallback configure option.

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=160
2016-03-31 17:36:23 +00:00
Ismail Dönmez
4284e84a5d Accepting request 374160 from home:AndreasStieger:branches:devel:libraries:c_c++
curl 7.47.1

OBS-URL: https://build.opensuse.org/request/show/374160
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=158
2016-03-17 11:16:46 +00:00
Ismail Dönmez
b8c9e9fdbe Accepting request 356754 from home:pluskalm:branches:devel:libraries:c_c++
- Enable PSL (Publix Suffix List)
- Make building more verbose

OBS-URL: https://build.opensuse.org/request/show/356754
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=156
2016-02-01 08:31:24 +00:00
Ismail Dönmez
980f5f360d -
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=155
2016-01-27 14:02:40 +00:00
Ismail Dönmez
2e307bfe03 Accepting request 356290 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 7.47.0
  * fixes CVE-2016-0755 (bsc#962983)
    (NTLM credentials not-checked for proxy connection re-use)
  * drop curl-fix-zsh-completion.patch (upstream)
  Changes:
  * version: Add flag CURL_VERSION_PSL for libpsl
  * http: added CURL_HTTP_VERSION_2TLS to do HTTP/2 for HTTPS only
  * curl: use 2TLS by default
  * curl --expect100-timeout: added
  * Add .dir-locals and set c-basic-offset to 2 (for emacs)

OBS-URL: https://build.opensuse.org/request/show/356290
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=154
2016-01-27 14:02:04 +00:00
Ismail Dönmez
8b97e80fe9 - Fix path to curl in zsh.pl to unbreak _curl completion
* curl-fix-zsh-completion.patch

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=152
2016-01-06 13:19:01 +00:00
Ismail Dönmez
4de4fd4bbd -
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=150
2015-12-02 13:30:58 +00:00
Ismail Dönmez
5ca4b2b127 -
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=149
2015-12-02 13:16:36 +00:00
Ismail Dönmez
6f4050fff1 - Update to 7.46.0
* Added CURLOPT_STREAM_DEPENDS
  * Added CURLOPT_STREAM_DEPENDS_E
  * Added CURLOPT_STREAM_WEIGHT
  * Added CURLFORM_CONTENTLEN
  * oauth2: Added support for OAUTHBEARER SASL mechanism to IMAP,
    POP3 and SNMP
* Many bugfixes, see http://curl.haxx.se/changes.html#7_46_0 for the
  complete list.

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=148
2015-12-02 12:46:01 +00:00
Ismail Dönmez
d36b376f47 Accepting request 339793 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- revert the curl-config change for bsc#900419 until we have a better
  fix, because it was breaking builds of other packages

OBS-URL: https://build.opensuse.org/request/show/339793
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=146
2015-10-19 09:39:40 +00:00
f6ed93560a Accepting request 339741 from home:elvigia:branches:devel:libraries:c_c++
- Enable HTTP/2 support, buildrequires pkgconfig(libnghttp2)

OBS-URL: https://build.opensuse.org/request/show/339741
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=145
2015-10-19 07:55:37 +00:00
Ismail Dönmez
fc8a64ea5a Accepting request 337556 from home:pluskalm:branches:devel:libraries:c_c++
- Update to 7.45.0
  * added CURLOPT_DEFAULT_PROTOCOL
  * added new tool option --proto-default
  * getinfo: added CURLINFO_ACTIVESOCKET
  * turned CURLINFO_* option docs as stand-alone man pages
  * curl: point out unnecessary uses of -X in verbose mode
- Drop curl-disable_failing_tests.patch as it is now part of 
  upstream

OBS-URL: https://build.opensuse.org/request/show/337556
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=144
2015-10-10 11:43:37 +00:00
Ismail Dönmez
9fc1eac3cb Accepting request 326699 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- drop a hack that made curl-config print only -lcurl (bsc#900419)
  * --as-needed is used by default now

OBS-URL: https://build.opensuse.org/request/show/326699
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=143
2015-08-26 08:19:18 +00:00
Ismail Dönmez
4746012054 Accepting request 323080 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 7.44.0
    http2: added CURLMOPT_PUSHFUNCTION and CURLMOPT_PUSHDATA
    examples: added http2-serverpush.c
    http2: added curl_pushheader_byname() and curl_pushheader_bynum()
    docs: added CODE_OF_CONDUCT.md
    curl: Add --ssl-no-revoke to disable certificate revocation checks
    libcurl: New value CURLSSLOPT_NO_REVOKE for CURLOPT_SSL_OPTIONS
    makefile: Added support for VC14
- dropped unexpire-test46.patch (upstream)

OBS-URL: https://build.opensuse.org/request/show/323080
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=141
2015-08-14 11:26:36 +00:00
Vítězslav Čížek
7519697cc4 Accepting request 321822 from home:Andreas_Schwab:Factory
- unexpire-test46.patch: Unexpire test 46

OBS-URL: https://build.opensuse.org/request/show/321822
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=139
2015-08-11 11:41:56 +00:00
Ismail Dönmez
956ec4b502 Accepting request 319721 from home:michel_mno:branches:devel:libraries:c_c++
- do not run flaky tests for any architecture (bnc#940009)
  at least test 1510 do fail for i586 and ppc64le

OBS-URL: https://build.opensuse.org/request/show/319721
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=138
2015-08-01 08:40:59 +00:00
Ismail Dönmez
ff61679396 Accepting request 314959 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- fix a typo in curl-secure-getenv.patch (bsc#936676)

OBS-URL: https://build.opensuse.org/request/show/314959
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=136
2015-07-03 09:34:44 +00:00
Ismail Dönmez
2cd7cc2321 Accepting request 312733 from home:pluskalm:branches:devel:libraries:c_c++
- Update to 7.43.0
  * Added CURLOPT_PROXY_SERVICE_NAME
  * Added CURLOPT_SERVICE_NAME
  * New curl option: --proxy-service-name
  * Mew curl option: --service-name
  * New curl option: --data-raw
  * Added CURLOPT_PIPEWAIT
  * Added support for multiplexing transfers using HTTP/2, enable 
    this with the new CURLPIPE_MULTIPLEX bit for 
    CURLMOPT_PIPELINING
  * HTTP/2: requires nghttp2 1.0.0 or later
  * scripts: add zsh.pl for generating zsh completion
  * curl.h: add CURL_HTTP_VERSION_2
  * CVE-2015-3236: lingering HTTP credentials in connection re-use
  * CVE-2015-3237: SMB send off unrelated memory contents 
- Disable HTTP/2 as it would create build cycle

OBS-URL: https://build.opensuse.org/request/show/312733
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=135
2015-06-19 13:41:49 +00:00
Ismail Dönmez
0cff5e983c Accepting request 308148 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- enable HTTP/2 support
- make the testsuite failure fatal
  * added curl-disable_failing_tests.patch
  * added groff to BuildRequires to enable builtin manual (test 1026)

OBS-URL: https://build.opensuse.org/request/show/308148
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=134
2015-05-21 14:02:13 +00:00
Ismail Dönmez
753a9895de Accepting request 304521 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 7.42.1
  * fixes CVE-2015-3153 (bnc#928533)
    - sensitive HTTP server headers also sent to proxies
- rename curl-devel to libcurl-devel in baselibs.conf

OBS-URL: https://build.opensuse.org/request/show/304521
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=132
2015-04-29 10:20:53 +00:00
Ismail Dönmez
b9b9e80a90 Accepting request 298500 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 7.42.0
  * refresh libcurl-ocloexec.patch
- fixes security vulnerabilities:
  * CVE-2015-3143 (bnc#927556)
    - Re-using authenticated connection when unauthenticated
  * CVE-2015-3144 (bnc#927608)
    - host name out of boundary memory access
  * CVE-2015-3145 (bnc#927607)
    - cookie parser out of boundary memory access
  * CVE-2015-3148 (bnc#927746)
    - Negotiate not treated as connection-oriented

OBS-URL: https://build.opensuse.org/request/show/298500
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=130
2015-04-22 08:44:51 +00:00
Ismail Dönmez
9a52965fbb Accepting request 293669 from home:lnussel:branches:devel:libraries:c_c++
mention patch in changes file

OBS-URL: https://build.opensuse.org/request/show/293669
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=128
2015-03-30 12:45:25 +00:00
Michal Vyskocil
b8410e85e6 Accepting request 292668 from home:lnussel:branches:devel:libraries:c_c++
- don't hardcode /etc/ssl/certs. Use openssl's default instead

OBS-URL: https://build.opensuse.org/request/show/292668
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=127
2015-03-24 20:46:39 +00:00
Ismail Dönmez
e93a5e2db2 Accepting request 287859 from home:XRevan86
OBS-URL: https://build.opensuse.org/request/show/287859
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=125
2015-02-26 10:52:00 +00:00
Cristian Rodríguez
d124d7009f Accepting request 286144 from home:pluskalm:branches:devel:libraries:c_c++
- Re-enable metalink supoort
- Use pkgconfig() style dependencies

OBS-URL: https://build.opensuse.org/request/show/286144
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=123
2015-02-15 17:07:47 +00:00
Michal Vyskocil
1ba1e0ce69 Accepting request 280328 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 7.40.0:
  * fixes CVE-2014-8150 (bnc#911363)
  * Changes:
    http_digest: Added support for Windows SSPI based authentication
    version info: Added Kerberos V5 to the supported features
    Makefile: Added VC targets for WinIDN
    config-win32: Introduce build targets for VS2012+
    SSL: Add PEM format support for public key pinning
    smtp: Added support for the conversion of Unix newlines during mail send
    smb: Added initial support for the SMB/CIFS protocol
    Added support for HTTP over unix domain sockets,
    via CURLOPT_UNIX_SOCKET_PATH and --unix-socket
    sasl: Added support for GSS-API based Kerberos V5 authentication

OBS-URL: https://build.opensuse.org/request/show/280328
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=121
2015-01-08 14:54:57 +00:00
Ismail Dönmez
ee641773aa Accepting request 267007 from home:msmeissn:branches:devel:libraries:c_c++
- build with PIE

OBS-URL: https://build.opensuse.org/request/show/267007
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=119
2015-01-02 15:18:12 +00:00
Cristian Rodríguez
641b55193f Accepting request 261640 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 7.39.0:
- changes:
    SSLv3 is disabled by default
    CURLOPT_COOKIELIST: Added "RELOAD" command
    build: Added WinIDN build configuration options to Visual Studio projects
    ssh: improve key file search
    SSL: public key pinning. Use CURLOPT_PINNEDPUBLICKEY and --pinnedpubkey
    vtls: remove QsoSSL support, use gskit!
    mk-ca-bundle: added SHA-384 signature algorithm
    docs: added many examples for libcurl opts and other doc improvements
    build: Added VC ssh2 target to main Makefile
    MinGW: Added support to build with nghttp2
    NetWare: Added support to build with nghttp2
    build: added Watcom support to build with WinSSL
    build: Added optional specific version generation of VC project files
    ... and a bunch of bugfixes
- refreshed libcurl-ocloexec.patch
- removed gpg-offline verification
- spec-cleaned curl.spec

OBS-URL: https://build.opensuse.org/request/show/261640
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=117
2014-11-15 16:38:21 +00:00
Vítězslav Čížek
5771489512 Accepting request 258127 from home:elvigia:branches:devel:libraries:c_c++
- Ensure the curl command line tool always require 
  the same libcurl it was used for build, even expert users
  got confused.

OBS-URL: https://build.opensuse.org/request/show/258127
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=115
2014-10-23 15:45:35 +00:00
Stephan Kulow
1d9cf0e872 Accepting request 248327 from home:vitezslav_cizek:branches:devel:libraries:c_c++
- update to 7.38.0
  * fixes CVE-2014-3613 (bnc#894575) and CVE-2014-3620 (bnc#895991)
  * cookie leaks with IP address as domain and TLDs respectively
  Changes:
    supports HTTP/2 draft-14
    CURLE_HTTP2 is a new error code
    CURLAUTH_NEGOTIATE is a new auth define
    CURL_VERSION_GSSAPI is a new capability bit
    no longer use fbopenssl for anything
    schannel: use CryptGenRandom for random numbers
    axtls: define curlssl_random using axTLS's PRNG
    cyassl: use RNG_GenerateBlock to generate a good random number
    findprotocol: show unsupported protocol within quotes
    version: detect and show LibreSSL
    version: detect and show BoringSSL
    imap/pop3/smtp: Kerberos (SASL GSSAPI) authentication via Windows SSPI
    http2: requires nghttp2 0.6.0 or later
  Bugfixes:
    SECURITY ADVISORY: cookie leak with IP address as domain
    SECURITY ADVISORY: cookie leak for TLDs
    And many other fixes

OBS-URL: https://build.opensuse.org/request/show/248327
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=113
2014-09-10 11:58:09 +00:00
Ismail Dönmez
4ceb9bf8b1 Accepting request 246963 from home:AndreasStieger:branches:devel:libraries:c_c++
curl 7.37.1

OBS-URL: https://build.opensuse.org/request/show/246963
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/curl?expand=0&rev=111
2014-08-31 07:47:25 +00:00