This was the two hundred and nineteenth time I did a #curl release.
Search
Items tagged with: curl
Welcome Kev Jackson as #curl committer 1150: github.com/curl/curl/pull/1121…
remove trailing 'dnl' that causes this to break autoconf etc by foamdino · Pull Request #11212 · curl/curl
This trailing dnl causes the following error when used as an automake extension /usr/bin/m4:mk/m4ext/ax_libcurl.m4:275: Warning: end of file treated as newline autom4te: error: /usr/bin/m4 failed w...GitHub
It's Friday so I made a new #curl graph. It shows the % share of the vulnerabilities that are "C mistakes" since 2010 - per the date of the findings being reported. The share was 60% of the reported flaws back in 2010, it went down, up and is coming down again and is now at 41.4%
This graph will appear in the regular dashboard starting tomorrow.
May 2023 is ending up the best month for you who love #curl releases. We will do another one next week on May 30. curl 8.1.2 is coming! curl.se/mail/lib-2023-05/0042.…
#Todayilearned that #curl has a --resolve option. Helped me a lot when debugging ingress on a docker swarm cluster.
> curl example.com --resolve www.example.com:80:127.0.0.1
will call port 80 on localhost instead of the public IP of www.example.com
Welcome Christian Hesse as #curl committer 1149: github.com/curl/curl/pull/1118…
configure: quote the compiler command by eworm-de · Pull Request #11180 · curl/curl
Building for multilib failed, as the compiler command contains an extra argument. That needs quoting. Fixes #11179 Fixes b78ca50GitHub
Welcome correctmost as #curl committer 1148: github.com/curl/curl/pull/1117…
SECURITY-PROCESS.md: link security advisory doc and fix typo by correctmost · Pull Request #11177 · curl/curl
A command line tool and library for transferring data with URL syntax, supporting DICT, FILE, FTP, FTPS, GOPHER, GOPHERS, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, MQTT, POP3, POP3S, RTMP, RTMPS, RTSP, SCP, SFTP, SMB, SMBS, SMTP, SMTPS, TELNET, TFTP, WS…GitHub
#curl may be over 25 years old, but look at our amazing authors per month growth over the last 13 years...
A PR for adding gemini support to #curl has (again) been submitted: github.com/curl/curl/pull/1117…
New Protocol: Gemini by jecxjo · Pull Request #11170 · curl/curl
A command line tool and library for transferring data with URL syntax, supporting DICT, FILE, FTP, FTPS, GOPHER, GOPHERS, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, MQTT, POP3, POP3S, RTMP, RTMPS, RTSP, SCP, SFTP, SMB, SMBS, SMTP, SMTPS, TELNET, TFTP, WS…GitHub
If you and your company use #curl or libcurl, consider a support contract with me to get that smooth uninterrupted and optimized use of it.
Welcome Antoine Pitrou as #curl committer 1147: github.com/curl/curl/pull/1114…
select: avoid returning an error on EINTR from select() or poll() by pitrou · Pull Request #11143 · curl/curl
This was already done for the poll() and select() calls made directly from Curl_poll(), but was missed in Curl_wait_ms(), which is called when there are no fds to wait on. Fixes #11135GitHub
Welcome Emilio Cobos Álvarez as #curl committer 1146: github.com/curl/curl/pull/1113…
http2: Double http request parser max line length. by emilio · Pull Request #11139 · curl/curl
This works around #11138, by doubling the limit, and should be a relatively safe fix. Ideally the buffer would grow as needed and there would be no need for a limit? But that might be follow-up mat...GitHub
Welcome Deal(一线灵) as #curl committer 1145: github.com/curl/curl/pull/1113…
Fix cmake error cross compiling ios, android by halx99 · Pull Request #11130 · curl/curl
refer to: https://github.com/axmolengine/buildware/actions/runs/5005991548/jobs/8970680345#step:3:15358GitHub
Welcome Colin Cross as #curl committer 1144: github.com/curl/curl/pull/1114…
Move easy_lock.h above curl_memory.h by colincross · Pull Request #11140 · curl/curl
Similar to #9561, move easy_lock.h above curl_memory.h to fix building against musl libc.GitHub
The #curl graph we always get to debate over. Number of *C mistakes* vs *non-C mistakes* among the existing 145 reported vulnerabilities. Updated with the latest 4 reports, and the LOC graph added as a comparison.
Age of #curl vulnerabilities.
Q: How long did they exist in code until fixed?
A: more than 3,000 days on (all time) average
My apologies but there will be a #curl patch release coming on Tuesday due to a rather bad regression: curl.se/mail/lib-2023-05/0029.…
#curl 8.1.0 presented: youtu.be/fLP141KZ7l4
curl 8.1.0 with Daniel Stenberg
4 changes4 vulnerabilities fixed185 bugfixesDaniel walks through the main things to know and learn about this 217th curl release.YouTube
Join me at 10:00 CEST (UTC +2) for a live-stream presentation of the new #curl release over at
twitch.tv/curlhacker
twitch.tv/curlhacker
curlhacker - Twitch
I'm Daniel Stenberg, maintainer and lead developer in the curl project. I stream curl related stuff. Release presentations, curl development and related topics.Twitch
#curl 8.1.0 is released. 4 vulnerabilities are fixed, 4 changes are added, 185 bugs are fixed. Credited to 64 contributors.
daniel.haxx.se/blog/2023/05/17…
Welcome Thomas Taylor as #curl commit author 1142: github.com/curl/curl/pull/1111…
docs: --aws-sigv4 region identifier fix by thomasnotfound · Pull Request #11117 · curl/curl
Update --aws-sigv4 command line option example to include explicit us in region identifier aws:amz:east-2:es -> aws:amz:us-east-2:es List of supported regions: https://docs.aws.amazon.com/AWSEC2/l...GitHub
Welcome Daniel Silverstone as #curl committer 1141: github.com/curl/curl/pull/1096…
Configurable sftp timeout with libssh2 by danielsilverstone-ct · Pull Request #10965 · curl/curl
This set of changes provides support to configure the libssh2 read timeout, capability for which was introduced in libssh2/libssh2#892 and it is estimated will be released with libssh2 version 1.11...GitHub
Welcome Osama Albahrani as #curl committer 1140: github.com/curl/curl/pull/1111…
Add --with-openssl to GIT-INFO by osalbahr · Pull Request #11110 · curl/curl
When I ran ./configure I received the following error: configure: error: select TLS backend(s) or disable TLS with --without-ssl. Select from these: --with-amissl --with-bearssl --with-gnut...GitHub
Welcome Vítor Galvão as #curl committer 1139: github.com/curl/curl/pull/1110…
write-out.d: Use response_code in example by vitorgalvao · Pull Request #11107 · curl/curl
The documentation for response_code in the manual states (emphasis mine): The numerical response code that was found in the last transfer (formerly known as "http_code"). This suggests that respo...GitHub
Welcome Shohei Maeda as #curl committer 1138: github.com/curl/curl/pull/1110…
url: fix null dispname for --connect-to option by smaeda-ks · Pull Request #11106 · curl/curl
parseurlandfillconn() runs before parse_connect_to_slist() (which is where conn->bits.conn_to_host is set), so checking conn->bits.conn_to_host in parseurlandfillconn() would always be FALSE, and h...GitHub
Buckle up. Coming up on Wednesday: #curl 8.1.0. HTTP/2 over proxy support, four security advisories and 170+ bugfixes.
One year CURL sponsor
We are happy to sponsor the #CURL project for a year now. And maybe your company could also find and support an open source project?
In the #curl project, we have no official "mission" or "values". I don't see the need.
(but you can give feedback to OpenSSL's here: openssl.org/blog/blog/2023/05/…)
OpenSSL Extends Feedback on Draft Mission & Values Statement - OpenSSL Blog
OpenSSL would like to thank everyone who has provided feedback on our draft mission & values statement. The response has been great, and the …www.openssl.org