curl: Update to 7.66.0 Changes: 7.66.0 ------ This release includes the following changes: o CURLINFO_RETRY_AFTER: parse the Retry-After header value o HTTP3: initial (experimental still not working) support o curl: --sasl-authzid added to support CURLOPT_SASL_AUTHZID from the tool o curl: support parallel transfers with -Z o curl_multi_poll: a sister to curl_multi_wait() that waits more o sasl: Implement SASL authorisation identity via CURLOPT_SASL_AUTHZID This release includes the following bugfixes: o CVE-2019-5481: FTP-KRB double-free o CVE-2019-5482: TFTP small blocksize heap buffer overflow o CI: remove duplicate configure flag for LGTM.com o CMake: remove needless newlines at end of gss variables o CMake: use platform dependent name for dlopen() library o CURLINFO docs: mention that in redirects times are added o CURLOPT_ALTSVC.3: use a "" file name to not load from a file o CURLOPT_ALTSVC_CTRL.3: remove CURLALTSVC_ALTUSED o CURLOPT_HEADERFUNCTION.3: clarify o CURLOPT_HTTP_VERSION: seting this to 3 forces HTTP/3 use directly o CURLOPT_READFUNCTION.3: provide inline example o CURLOPT_SSL_VERIFYHOST: treat the value 1 as 2 o Curl_addr2string: take an addrlen argument too o Curl_fillreadbuffer: avoid double-free trailer buf on error o HTTP: use chunked Transfer-Encoding for HTTP_POST if size unknown o alt-svc: add protocol version selection masking o alt-svc: fix removal of expired cache entry o alt-svc: make it use h3-22 with ngtcp2 as well o alt-svc: more liberal ALPN name parsing o alt-svc: send Alt-Used: in redirected requests o alt-svc: with quiche, use the quiche h3 alpn string o appveyor: pass on -k to make o asyn-thread: create a socketpair to wait on o build-openssl: fix build with Visual Studio 2019 o cleanup: move functions out of url.c and make them static o cleanup: remove the 'numsocks' argument used in many places o configure: avoid undefined check_for_ca_bundle o curl.h: add CURL_HTTP_VERSION_3 to the version enum o curl.h: fix outdated comment o curl: cap the maximum allowed values for retry time arguments o curl: handle a libcurl build without netrc support o curl: make use of CURLINFO_RETRY_AFTER when retrying o curl: remove outdated comment o curl: use .curlrc (with a dot) on Windows o curl: use CURLINFO_PROTOCOL to check for HTTP(s) o curl_global_init_mem.3: mention it was added in 7.12.0 o curl_version: bump string buffer size to 250 o curl_version_info.3: mentioned ALTSVC and HTTP3 o curl_version_info: offer quic (and h3) library info o curl_version_info: provide nghttp2 details o defines: avoid underscore-prefixed defines o docs/ALTSVC: remove what works and the experimental explanation o docs/EXPERIMENTAL: explain what it means and what's experimental now o docs/MANUAL.md: converted to markdown from plain text o docs/examples/curlx: fix errors o docs: s/curl_debug/curl_dbg_debug in comments and docs o easy: resize receive buffer on easy handle reset o examples: Avoid reserved names in hiperfifo examples o examples: add http3.c, altsvc.c and http3-present.c o getenv: support up to 4K environment variable contents on windows o http09: disable HTTP/0.9 by default in both tool and library o http2: when marked for closure and wanted to close == OK o http2_recv: trigger another read when the last data is returned o http: fix use of credentials from URL when using HTTP proxy o http_negotiate: improve handling of gss_init_sec_context() failures o md4: Use our own MD4 when no crypto libraries are available o multi: call detach_connection before Curl_disconnect o netrc: make the code try ".netrc" on Windows o nss: use TLSv1.3 as default if supported o openssl: build warning free with boringssl o openssl: use SSL_CTX_set__proto_version() when available o plan9: add support for running on Plan 9 o progress: reset download/uploaded counter between transfers o readwrite_data: repair setting the TIMER_STARTTRANSFER stamp o scp: fix directory name length used in memcpy o smb: init *msg to NULL in smb_send_and_recv() o smtp: check for and bail out on too short EHLO response o source: remove names from source comments o spnego_sspi: add typecast to fix build warning o src/makefile: fix uncompressed hugehelp.c generation o ssh-libssh: do not specify O_APPEND when not in append mode o ssh: move code into vssh for SSH backends o sspi: fix memory leaks o tests: Replace outdated test case numbering documentation o tftp: return error when packet is too small for options o timediff: make it 64 bit (if possible) even with 32 bit time_t o travis: reduce number of torture tests in 'coverage' o url: make use of new HTTP version if alt-svc has one o urlapi: verify the IPv6 numerical address o urldata: avoid 'generic', use dedicated pointers o vauth: Use CURLE_AUTH_ERROR for auth function errors 7.65.3 ------ This release includes the following bugfixes: o progress: make the progress meter appear again 7.65.2 ------ This release includes the following bugfixes: o CIPHERS.md: Explain Schannel error SEC_E_ALGORITHM_MISMATCH o CMake: Convert errant elseif() to else() o CMake: Fix finding Brotli on case-sensitive file systems o CURLMOPT_SOCKETFUNCTION.3: clarified o CURLMOPT_SOCKETFUNCTION.3: fix typo o CURLOPT_CAINFO.3: polished wording o CURLOPT_HEADEROPT.3: Fix example o CURLOPT_RANGE.3: Caution against using it for HTTP PUT o CURLOPT_SEEKDATA.3: fix variable name o DEPRECATE: fixup versions and spelling o bindlocal: detect and avoid IP version mismatches in bind() o build: fix Codacy warnings o buildconf.bat: fix header filename o c-ares: honor port numbers in CURLOPT_DNS_SERVERS o config-os400: add getpeername and getsockname defines o configure: --disable-progress-meter o configure: fix --disable-code-coverage o configure: fix typo '--disable-http-uath' o configure: more --disable switches to toggle off individual features o configure: remove CURL_DISABLE_TLS_SRP o conn_maxage: move the check to prune_dead_connections() o curl: skip CURLOPT_PROXY_CAPATH for disabled-proxy builds o curl_multi_wait.3: escape backslash in example o docs: Explain behavior change in --tlsv1. options since 7.54 o docs: Fix links to OpenSSL docs o docs: fix string suggesting HTTP/2 is not the default o examples/fopen: fix comparison o examples/htmltitle: use C++ casts between pointer types o headers: Remove no longer exported functions o http2: call done_sending on end of upload o http2: don't call stream-close on already closed streams o http2: remove CURL_DISABLE_TYPECHECK define o http: allow overriding timecond with custom header o http: clarify header buffer size calculation o krb5: fix compiler warning o lib: Use UTF-8 encoding in comments o libcurl-tutorial.3: Fix small typo (mutipart -> multipart) o libcurl: Restrict redirect schemes to HTTP, HTTPS, FTP and FTPS o multi: enable multiplexing by default (again) o multi: fix the transfer hashes in the socket hash entries o multi: make sure 'data' can present in several sockhash entries o netrc: Return the correct error code when out of memory o nss: don't set unused parameter o nss: inspect returnvalue of token check o nss: only cache valid CRL entries o nss: support using libnss on macOS o openssl: define HAVE_SSL_GET_SHUTDOWN based on version number o openssl: disable engine if OPENSSL_NO_UI_CONSOLE is defined o openssl: fix pubkey/signature algorithm detection in certinfo o openssl: remove outdated comment o os400: make vsetopt() non-static as Curl_vsetopt() for os400 support o quote.d: asterisk prefix works for SFTP as well o runtests: keep logfiles around by default o runtests: report single test time + total duration o smb: Use the correct error code for access denied on file open o sws: remove unused variables o system_win32: fix clang warning o system_win32: fix typo o test1165: verify that CURL_DISABLE_ symbols are in sync o test1521: adapt to SLISTPOINT o test1523: test CURLOPT_LOW_SPEED_LIMIT o test153: fix content-length to avoid occasional hang o test188/189: fix Content-Length o tests: have runtests figure out disabled features o tests: support non-localhost HOSTIP for dict/smb servers o tests: update fixed IP for hostip/clientip split o tool_cb_prg: Fix integer overflow in progress bar o travis: disable threaded resolver for coverage build o travis: enable alt-svc for coverage build o travis: enable brotli for all xenial jobs o travis: enable libssh2 for coverage build o travis: enable warnings-as-errors for coverage build o travis: update scan-build job to xenial o typecheck: CURLOPT_CONNECT_TO takes an slist too o typecheck: add 3 missing strings and a callback data pointer o unit1654: cleanup on memory failure o unpause: trigger a timeout for event-based transfers o url: Fix CURLOPT_MAXAGE_CONN time comparison o win32: make DLL loading a no-op for UWP o winbuild: Change Makefile to honor ENABLE_OPENSSL_AUTO_LOAD_CONFIG o winbuild: use WITH_PREFIX if given o wolfssl: refer to it as wolfSSL only Index: Makefile =================================================================== RCS file: /cvsroot/pkgsrc/www/curl/Makefile,v retrieving revision 1.210 retrieving revision 1.217 diff -u -p -r1.210 -r1.217 --- Makefile 5 Jun 2019 18:10:54 -0000 1.210 +++ Makefile 11 Sep 2019 08:32:03 -0000 1.217 @@ -1,6 +1,6 @@ -# $NetBSD: Makefile,v 1.210 2019/06/05 18:10:54 leot Exp $ +# $NetBSD: Makefile,v 1.217 2019/09/11 08:32:03 leot Exp $ -DISTNAME= curl-7.65.1 +DISTNAME= curl-7.66.0 CATEGORIES= www MASTER_SITES= https://curl.haxx.se/download/ EXTRACT_SUFX= .tar.xz Index: PLIST =================================================================== RCS file: /cvsroot/pkgsrc/www/curl/PLIST,v retrieving revision 1.75 retrieving revision 1.76 diff -u -p -r1.75 -r1.76 --- PLIST 22 May 2019 08:57:58 -0000 1.75 +++ PLIST 11 Sep 2019 08:32:03 -0000 1.76 @@ -1,4 +1,4 @@ -@comment $NetBSD: PLIST,v 1.75 2019/05/22 08:57:58 leot Exp $ +@comment $NetBSD: PLIST,v 1.76 2019/09/11 08:32:03 leot Exp $ bin/curl bin/curl-config include/curl/curl.h @@ -56,6 +56,7 @@ man/man3/CURLINFO_REDIRECT_TIME_T.3 man/man3/CURLINFO_REDIRECT_URL.3 man/man3/CURLINFO_REQUEST_SIZE.3 man/man3/CURLINFO_RESPONSE_CODE.3 +man/man3/CURLINFO_RETRY_AFTER.3 man/man3/CURLINFO_RTSP_CLIENT_CSEQ.3 man/man3/CURLINFO_RTSP_CSEQ_RECV.3 man/man3/CURLINFO_RTSP_SERVER_CSEQ.3 @@ -282,6 +283,7 @@ man/man3/CURLOPT_RTSP_SERVER_CSEQ.3 man/man3/CURLOPT_RTSP_SESSION_ID.3 man/man3/CURLOPT_RTSP_STREAM_URI.3 man/man3/CURLOPT_RTSP_TRANSPORT.3 +man/man3/CURLOPT_SASL_AUTHZID.3 man/man3/CURLOPT_SASL_IR.3 man/man3/CURLOPT_SEEKDATA.3 man/man3/CURLOPT_SEEKFUNCTION.3 @@ -406,6 +408,7 @@ man/man3/curl_multi_fdset.3 man/man3/curl_multi_info_read.3 man/man3/curl_multi_init.3 man/man3/curl_multi_perform.3 +man/man3/curl_multi_poll.3 man/man3/curl_multi_remove_handle.3 man/man3/curl_multi_setopt.3 man/man3/curl_multi_socket.3 Index: distinfo =================================================================== RCS file: /cvsroot/pkgsrc/www/curl/distinfo,v retrieving revision 1.154 retrieving revision 1.157 diff -u -p -r1.154 -r1.157 --- distinfo 5 Jun 2019 18:10:54 -0000 1.154 +++ distinfo 11 Sep 2019 08:32:03 -0000 1.157 @@ -1,8 +1,8 @@ -$NetBSD: distinfo,v 1.154 2019/06/05 18:10:54 leot Exp $ +$NetBSD: distinfo,v 1.157 2019/09/11 08:32:03 leot Exp $ -SHA1 (curl-7.65.1.tar.xz) = 26edd5197564178575c92c41e03acf2131b7643e -RMD160 (curl-7.65.1.tar.xz) = bbd3437e70b34bd577b6cb09020ca667d3723e18 -SHA512 (curl-7.65.1.tar.xz) = aba2d979a416d14a0f0852d595665e49fc4f7bff3bee31f3a52b90ba9dc5ffdb09c092777f124215470b72c47ebca7ddb47844cbf5c0e9142099272b6ac55df4 -Size (curl-7.65.1.tar.xz) = 2392672 bytes +SHA1 (curl-7.66.0.tar.xz) = c4b5137302c74839bfa2211da72d960d0d5fedba +RMD160 (curl-7.66.0.tar.xz) = 24b4a7432d117efcca0c1de95fb4797dcf186216 +SHA512 (curl-7.66.0.tar.xz) = 81170e7e4fa9d99ee2038d96d7f2ab10dcf52435331c818c7565c1a733891720f845a08029915e52ba532c6a344c346e1678474624aac1cc333aea6d1eacde35 +Size (curl-7.66.0.tar.xz) = 2414840 bytes SHA1 (patch-configure) = 9131ad23999f3987b7b67a59191aa6998bd370d0 SHA1 (patch-curl-config.in) = 363359665985cc14f36ddf47fc3480f1200e3533