curl / Mailing Lists / curl-library / Single Mail

curl-library

[RELEASE] curl 7.53.0

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Wed, 22 Feb 2017 00:43:22 +0100 (CET)

Hi friends!

I'm thrilled to once again offer the world a brand new curl release. This time
with a slightly larger amount of bug fixes than usual, including a security
advisory (see separate mail following this.) - with contributions from no less
than 47 individuals.

As always, run over and get the source tarballs at https://curl.haxx.se/

Curl and libcurl 7.53.0

  Public curl releases: 163
  Command line options: 205
  curl_easy_setopt() options: 244
  Public functions in libcurl: 61
  Contributors: 1506

This release includes the following changes:

o unix_socket: added --abstract-unix-socket and CURLOPT_ABSTRACT_UNIX_SOCKET [25]
o CURLOPT_BUFFERSIZE: support enlarging receive buffer [29]

This release includes the following bugfixes:

  o CVE-2017-2629: make SSL_VERIFYSTATUS work again [64]
  o gnutls-random: check return code for failed random
  o openssl-random: check return code when asking for random
  o http: remove "Curl_http_done: called premature" message
  o cyassl: use time_t instead of long for timeout
  o build-wolfssl: Sync config with wolfSSL 3.10
  o ftp-gss: check for init before use
  o configure: accept --with-libidn2 instead [1]
  o ftp: failure to resolve proxy should return that error code
  o curl.1: add three more exit codes
  o docs/ciphers: link to our own new page about ciphers
  o vtls: s/SSLEAY/OPENSSL - fixes multi_socket timeouts with openssl [2]
  o darwinssl: fix iOS build [3]
  o darwinssl: fix CFArrayRef leak [4]
  o cmake: use crypt32.lib when building with OpenSSL on windows [5]
  o curl_formadd.3: CURLFORM_CONTENTSLENGTH not needed when chunked [6]
  o digest_sspi: copy terminating NUL as well [7]
  o curl: fix --remote-time incorrect times on Windows [8]
  o curl.1: several updates and corrections [11]
  o content_encoding: change return code on a failure
  o curl.h: CURLE_FUNCTION_NOT_FOUND is no longer in use
  o docs: TCP_KEEPALIVE start and interval default to 60 [9]
  o darwinssl: --insecure overrides --cacert if both settings are in use [10]
  o TheArtOfHttpScripting: grammar
  o CIPHERS.md: document GSKit ciphers
  o wolfssl: support setting cipher list
  o wolfssl: display negotiated SSL version and cipher
  o lib506: fix build for Open Watcom [12]
  o asiohiper: improved socket handling [13]
  o examples: make the C++ examples follow our code style too
  o tests/sws: retry send() on EWOULDBLOCK [14]
  o cmake: Fix passing _WINSOCKAPI_ macro to compiler [15]
  o smtp: Fix STARTTLS denied error message
  o imap/pop3: don't print response character in STARTTLS denied messages [16]
  o rand: make it work without TLS backing [17]
  o url: fix parsing for when 'file' is the default protocol [18]
  o url: allow file://X:/path URLs on windows again [19]
  o gnutls: check for alpn and ocsp in configure [20]
  o IDN: Use TR46 'non-transitional' for toASCII translations [21]
  o url: Fix NO_PROXY env var to work properly with --proxy option [22]
  o CURLOPT_PREQUOTE.3: takes a struct curl_slist*, not a char* [23]
  o docs: Add note about libcurl copying strings to CURLOPT_* manpages [24]
  o curl: reset the easy handle at --next
  o --next docs: --trace and --trace-ascii are also global
  o --write-out docs: 'time_total' is not always shown with ms precision
  o http: print correct HTTP string in verbose output when using HTTP/2
  o docs: improved language in README.md HISTORY.md CONTRIBUTE.md [26]
  o http2: disable server push if not requested [27]
  o nss: use the correct lock in nss_find_slot_by_name()
  o usercertinmem.c: improve the short description
  o CURLOPT_CONNECT_TO: Fix compile warnings
  o docs: non-blocking SSL handshake is now supported with NSS
  o *.rc: escape non-ASCII/non-UTF-8 character for clarity [28]
  o mbedTLS: fix multi interface non-blocking handshake [30]
  o PolarSSL: fix multi interface non-blocking handshake [31]
  o VC: remove the makefile.vc6 build infra [32]
  o telnet: fix windows compiler warnings [33]
  o cookies: do not assume a valid domain has a dot
  o polarssl: fix hangs
  o gnutls: disable TLS session tickets [34]
  o mbedtls: disable TLS session tickets [35]
  o mbedtls: implement CTR-DRBG and HAVEGE random generators [36]
  o openssl: Don't use certificate after transferring ownership [37]
  o cmake: Support curl --xattr when built with cmake [38]
  o OS400: Fix symbols [39]
  o docs: Add more HTTPS proxy documentation [40]
  o docs: use more HTTPS links [41]
  o cmdline-opts: Fixed build and test in out of source tree builds
  o CHANGES.0: removed
  o schannel: Remove incorrect SNI disabled message [42]
  o darwinssl: Avoid parsing certificates when not in verbose mode [43]
  o test552: Fix typos [44]
  o telnet: Fix typos [45]
  o transfer: only retry nobody-requests for HTTP [46]
  o http2: reset push header counter fixes crash [47]
  o nss: make FTPS work with --proxytunnel [48]
  o test1139: Added the --manual keyword since the manual is required
  o polarssl, mbedtls: Fix detection of pending data [49]
  o http_proxy: Fix tiny memory leak upon edge case connecting to proxy [50]
  o URL: only accept ";options" in SMTP/POP3/IMAP URL schemes [51]
  o curl.1: ftp.sunet.se is no longer an FTP mirror
  o tool_operate: Show HTTPS-Proxy options on CURLE_SSL_CACERT [52]
  o http2: fix memory-leak when denying push streams [53]
  o configure: Allow disabling pthreads, fall back on Win32 threads [54]
  o curl: fix typo in time condition warning message [55]
  o axtls: adapt to API changes [56]
  o tool_urlglob: Allow a glob range with the same start and stop [57]
  o winbuild: add note on auto-detection of MACHINE in Makefile.vc [58]
  o http: fix missing 'Content-Length: 0' while negotiating auth [59]
  o proxy: fix hostname resolution and IDN conversion [60]
  o docs: fix timeout handling in multi-uv example
  o digest_sspi: Fix nonce-count generation in HTTP digest [61]
  o sftp: improved checks for create dir failures [62]
  o smb: use getpid replacement for windows UWP builds [63]
  o digest_sspi: Handle 'stale=TRUE' directive in HTTP digest [65]

This release includes the following known bugs:

o see docs/KNOWN_BUGS (https://curl.haxx.se/docs/knownbugs.html)

This release would not have looked like this without help, code, reports and
advice from friends like these:

   Adam Langley, Alessandro Ghedini, Anatol Belski, Andreas Roth,
   Antoine Aubert, Cameron MacMinn, Chris Araman, Christian Weisgerber,
   Chungtsun Li, Dan Fandrich, Daniel Gustafsson, Daniel Romero,
   Daniel Stenberg, Dan Jacobson, Dominik H�lzl, Eramoto Masaya,
   Fahim Chandurwala, Frank Gevaerts, Gisle Vanem, Isaac Boukris,
   Jean Gressmann, Ji�� Mal�k, Joel Depooter, John Kohl, jonrumsey on github,
   Kamil Dudka, Kim Minjoong, Kyselgov E.N, Marcus Hoffmann, Markus Westerlind,
   Max Khon, Michael Kaufmann, Mingliang Zhu, Nick Draffen, Nick Zitzmann,
   Patrick Monnerat, Peter Wu, Praveen Pvs, Ray Satiro, R. Dennis Steed,
   Richy Kim, Sean Burford, Simon Warta, tarek112 on github, Tim R�hsen,
   Viktor Szak�ts, zelinchen on github,
   (47 contributors)

Thanks! (and sorry if I forgot to mention someone)

References to bug reports and discussions on issues:

-- 
  / daniel.haxx.se

-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
Received on 2017-02-22

This message: [ Message body ]
Next message: Daniel Stenberg: "[SECURITY ADVISORY]: curl SSL_VERIFYSTATUS ignored"
Previous message: Daniel Stenberg: "Re: How to send absolute URI?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]