Want to help us improve the #curl shell completion script(s)?
github.com/curl/curl/issues/16…
I did this I tried to reproduce the Arch Linux curl package by repeating the build in the documented build environment and noticed the zsh completions do not match: https://web.archive.org/web/2025...GitHub
curl features an alternative progress bar. When you invoke it with -# or the longer version --progress-bar, curl will show the transfer progress using a single "bar" on the screen instead of the default meter that shows a lot of data like amount of d…daniel.haxx.se
Problem When using automatic zstd decoding from libcurl, libcurl's custom allocators are not passed through to libzstd. Solution To configure libzstd's custom allocators, we must pass them ...GitHub
#curl from start to end (with an extensive Q&A in the end)
youtu.be/WmMa1GVPWZ0?si=SDAkbq…
First type the curl command into your shell and press enter. What exactly happens then? Daniel takes you through a step-by-step from the command line tool, i...YouTube
I'll do my #curl from start to end presentation live-streamed tomorrow:
daniel.haxx.se/blog/2025/01/16…
On Tuesday January 21st 2025, at 16:00 CET (15:00 UTC) I will do a presentation titled as per above. I have not done this one before.daniel.haxx.se
Prompted by a question asked in #curl on libera. This behavior seems to have been present since the very beginning of curl and is explained in a code comment, so I'm assuming it's deliberat...GitHub
As some people expressed interest, I used this wretched day for a blog about curl's tracing.
#curl
github.com/icing/blog/blob/mai…
Contribute to icing/blog development by creating an account on GitHub.GitHub
At this year's #FOSDEM my team at #wolfSSL got no booth space so my large volume #curl sticker distribution (LVCSD) has to be done using other means.
The LVCSD will most likely happen in the cafeteria area, but feel free to ping me if you can't get your fix as planned.
I will bring thousands of curl stickers and hundreds of coasters. There will be a few mugs and maybe some tshirts.
Buying myself friends, like a boss.
I've decided to do a little live-streamed #curl presentation on twitch next week (Jan 21):
"curl from start to end". For free of course, no signup. Just show up.
daniel.haxx.se/blog/2025/01/16…
On Tuesday January 21st 2025, at 16:00 CET (15:00 UTC) I will do a presentation titled as per above. I have not done this one before.daniel.haxx.se
The curl project has been accepted as a CVE Numbering Authority (CNA) for vulnerabilities in all products directly made or managed by the project. If I'm counting correctly, we are the 351st CNA.daniel.haxx.se
Secure Transport support in #curl is on its way out
daniel.haxx.se/blog/2025/01/14…
In May 2024 we finally decided that maybe the time has come for curl to drop support of older TLS libraries. Libraries that because they don't support the modern TLS version (1.3) for many users are maybe not suitable to build upon for the future.daniel.haxx.se
It is already *seven* years ago since Microsoft first announced they would start distributing #curl as part of Windows:
daniel.haxx.se/blog/2018/01/13…
On December 19 2017, Microsoft announced that since insider build 17063 of Windows 10, curl is now a default component.daniel.haxx.se
23 days to next #curl release:
github.com/curl/curl/discussio…
The feature window is closed. The pending 8.12.0 release is scheduled to happen on February 5. If things go well, we open the feature window again on February 15. The curl release cycle is explaine...GitHub
Attached: 1 image "Care Free Curl presents...A Curl For All Seasons" (Soft Sheen Products ad from Jet magazine 1981) . #HealthAndBeauty #HairCare #Advertisement #Retro #Vintage #CurlyHair #BlackMastodon #BlackFediWorldKey
I added "Time To First Byte" measurements to my blog from yesterday. Easier to see how sessions and TLS Early Data work in different HTTP versions.
github.com/icing/blog/blob/mai…
#curl
Contribute to icing/blog development by creating an account on GitHub.GitHub
I forgot to highlight the fact that @icing introduced #curl's **267th** command line option (experimental so far, but still): --ssl-sessions
github.com/icing/blog/blob/mai…
Contribute to icing/blog development by creating an account on GitHub.GitHub
See fish-shell/fish-shell#10539GitHub
#curl's cookie parser now caps the expiration date 400 days into the future.
github.com/curl/curl/pull/1593…
The pending cookie RFC update (currently known as 6265bis draft-19) says Let cookie-age-limit be the maximum age of the cookie (which name of Max-Age and an attribute-value of expiry-time. SHOULD ...GitHub
Mastering #curl has been viewed 56K times now. You better enjoy it, I'm not sure I will ever muster doing something like that again. 😁
The slides = https://www.slideshare.net/DanielStenberg7/mastering-the-curl-command-linepdf0:00 Mastering the curl command line0:16 Daniel Stenberg0:36 curl s...YouTube
Blog about the upcoming *experimental* feature in curl 8.12.0 that allows im-/export of TLS sessions.
Turns out that '--tls-earlydata' becomes really interesting to use together with this.
github.com/icing/blog/blob/mai…
#curl
Contribute to icing/blog development by creating an account on GitHub.GitHub
Seventeen years ago Coverity started offering #curl to use their static code analyzer to find defects. One of the better static analyzers we still use today.
daniel.haxx.se/blog/2008/01/09…
On scan.coverity.com, the nice guys at Coverity run scans on open source projects to check for flaws in their source code. Their list currently includes 265 projects, and curl is one of them.daniel.haxx.se
This discussion: openssl/openssl#23339 (comment) Specifically item number 2 (Send Blocking) was raised by the curl team, noting that SSL_want_write returning false was not a good indicator of when ...GitHub
remove #msh3 support from #curl in six months?
github.com/curl/curl/pull/1593…
The msh3 backed for QUIC and HTTP/3 was introduced in April 2022 but has never been made to work properly. It has seen no visible traction or developer activity from the msh3 main author (or anyone...GitHub
Since 2013, #curl has had more lines of code/data in git for doing tests than we have production code.
We are now at 1200 lines of test infrastructure per 1000 lines of production code. And we still could do a lot more and better testing really.
#curl used in Korean iOS apps. TMAP MOBILITY, Naver and KakaoTalk.
I have no idea what the apps do. I love them anyway.
daniel.haxx.se/blog/2016/10/03…
If you have more or better screenshots, please share! This shot is taken from the ending sequence of the PC version of the game Grand Theft Auto V. 44 minutes in! See the youtube version. Sky HD is a satellite TV box. This is a Philips TV.daniel.haxx.se
An old version of GCC (which is not updatable on the target system) moans about the constant being too big to fit in a long.GitHub
Problem with that is (besides occasional bugfixes), most people including myself would see #curl to be functionally complete and anything "nice to have" would be considered not worth the balooning in #complexity and #size.
In fact if #toybox didn't have a #wget implementation that I could use for OS/1337 I would've merely chosen tiny-curl -o as a global alias or if #tinycurl wasn't an option, curl -o instead.
tor support built-in will go and IDK make i.e. #[url=https://infosec.space/tags/neocurl]neocurl[/url] or sth. along those lines or build something like #[url=https://infosec.space/tags/ethcurl]ethcurl[/url] or #[url=https://infosec.space/tags/tor]tor[/url]curlor #[url=https://infosec.space/tags/ipfs]ipfs[/url]curl or whatever...That being said I am glad curl isn't solely maintained by you but has other contributors (give them a shoutout!) but I also am glad you maintain that vital software that most "#TechIlliterate #Normies" most likely never heard of but propably use on a daily basis as part of all the #tech they use to #consume media with...
curl is more than just a downloader and more intuitive than vim) with wget being "the #vi of downloaders" (tho wget is even simpler to use than vi)...Either way, curl is awesome...
#OS1337 #Enshittification #Bloat #Bloatware
I have certain paths, which are too long to type, so I need to wrap all those in one script as alias and source that script to my existing package code. These should set alias permanently over thatStack Overflow
We ended 2024 with fewer commit authors in the #curl project during the year than we had the last few years.
I think we should take this as a challenge to top 188 in 2025.
#curl with partial files
daniel.haxx.se/blog/2024/12/30…
Back in September 2023, we extended the curl command line tool with a new fairly advanced and flexible variable system.daniel.haxx.se
Issue Addressed: The documentation of curl_multi_waitfds indicates that users should be able to call curl_multi_waitfds with a NULL ufds. However, before this change, the function would return CUR...GitHub
Round two in our fun game: "slop or not?"
(In here, the report is a rewrite of our previous published CVE in a way that I strongly suspect was done by an AI.)
DISREGARD. Consider this an example template as I just joined. Respectfully, ScottHackerOne
How do you feel about restoring metalink support in #curl ?
github.com/curl/curl/discussio…
Greetings! This discussion thread is for the purpose to coordinate efforts to attempt to restore Metalink support. See #7176 metalink-dev/libmetalink#5GitHub
Eight years ago on this date, I had to publicly share this #curl security advisory as perhaps one of my lamest mistakes ever: curl.se/docs/CVE-2016-9594.htm…
We learn from our mistakes. Hopefully.