pkgsrc-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: pkgsrc/www/curl
Module Name: pkgsrc
Committed By: wiz
Date: Wed Nov 5 09:30:19 UTC 2025
Modified Files:
pkgsrc/www/curl: Makefile Makefile.common PLIST distinfo options.mk
Added Files:
pkgsrc/www/curl/patches: patch-configure
Removed Files:
pkgsrc/www/curl/patches: patch-lib_curl__threads.c
Log Message:
curl: update to 8.17.0.
This release includes the following changes:
o build: drop Heimdal support [267]
o build: drop the winbuild build system [81]
o krb5: drop support for Kerberos FTP [43]
o libssh2: up the minimum requirement to 1.9.0 [85]
o multi: add notifications API [250]
o progress: expand to use 6 characters per size [234]
o ssl: support Apple SecTrust configurations [240]
o tool_getparam: add --knownhosts [204]
o vssh: drop support for wolfSSH [58]
o wcurl: import v2025.11.04 [431]
o write-out: make %header{} able to output *all* occurrences of a header [25]
This release includes the following bugfixes:
o ares: fix leak in tracing [91]
o asyn-ares: remove wrong comment about the callback argument [306]
o asyn-ares: use the duped hostname pointer for all calls [158]
o asyn-thrdd resolver: clear timeout when done [97]
o asyn-thrdd: drop pthread_cancel [30]
o autotools: add support for libgsasl auto-detection via pkg-config [112]
o autotools: capitalize Rustls in the log output [106]
o autotools: drop detection of ancient OpenSSL libs RSAglue and rsaref [354]
o autotools: fix duplicate UNIX and BSD flags in buildinfo.txt [113]
o autotools: fix silly mistake in clang detection for buildinfo.txt [114]
o autotools: make --enable-code-coverage support llvm/clang [79]
o autotools: merge `if`s in GnuTLS/OpenSSL feature detection [385]
o aws-lc: re-enable large read-ahead with v1.61.0 again [16]
o base64: accept zero length argument to base64_encode [82]
o build: address some -Weverything warnings, update picky warnings [74]
o build: avoid overriding system open and stat symbols [141]
o build: avoid overriding system symbols for fopen functions [150]
o build: avoid overriding system symbols for socket functions [68]
o build: show llvm/clang in platform flags and buildinfo.txt [126]
o c-ares: when resolving failed, persist error [270]
o cf-h2-proxy: break loop on edge case [140]
o cf-ip-happy: mention unix domain path, not port number [161]
o cf-socket: always check Curl_cf_socket_peek() return code [198]
o cf-socket: check params and remove accept procondition [197]
o cf-socket: make set_local_ip void, and remove failf() [390]
o cf-socket: set FD_CLOEXEC on all sockets opened [273]
o cf-socket: tweak a memcpy() to read better [177]
o cf-socket: use the right byte order for ports in bindlocal [61]
o cfilter: unlink and discard [46]
o cfilters: check return code from Curl_pollset_set_out_only() [402]
o checksrc: allow disabling warnings on FIXME/TODO comments [324]
o checksrc: catch banned functions when preceded by ( [146]
o checksrc: fix possible endless loop when detecting BANNEDFUNC [149]
o checksrc: fix possible endless loops in the banned function logic [220]
o checksrc: fix to handle ) predecing a banned function [229]
o checksrc: reduce directory-specific exceptions [228]
o CI.md: refresh [280]
o cmake/FindGSS: dedupe pkg-config module strings [277]
o cmake/FindGSS: drop wrong header check for GNU GSS [278]
o cmake/FindGSS: fix pkg-config fallback logic for CMake <3.16 [189]
o cmake/FindGSS: simplify/de-dupe lib setup [253]
o cmake/FindGSS: whitespace/formatting [268]
o cmake: add and use local FindGnuTLS module [379]
o cmake: add CURL_CODE_COVERAGE option [78]
o cmake: build the "all" examples source list dynamically [245]
o cmake: clang detection tidy-ups [116]
o cmake: drop exclamation in comment looking like a name [160]
o cmake: fix `HAVE_GNUTLS_SRP` detection after adding local FindGnuTLS module [458]
o cmake: fix building docs when the base directory contains .3 [18]
o cmake: fix Linux pre-fill `HAVE_POSIX_STRERROR_R` (when `_CURL_PREFILL=ON`)
o cmake: fix Linux pre-fills for non-glibc (when `_CURL_PREFILL=ON`) [372]
o cmake: minor Heimdal flavour detection fix [269]
o cmake: pre-fill three more type sizes on Windows [244]
o cmake: say 'absolute path' in option descriptions and docs [378]
o cmake: support building some complicated examples, build them in CI [235]
o cmake: use modern alternatives for get_filename_component() [102]
o cmake: use more COMPILER_OPTIONS, LINK_OPTIONS / LINK_FLAGS [152]
o cmdline-docs: extended, clarified, refreshed [28]
o cmdline-opts/_PROGRESS.md: explain the suffixes [154]
o configure: add "-mt" for pthread support on HP-UX [52]
o conn: fix hostname move on connection reuse [272]
o conncache: prevent integer overflow in maxconnects calculation [438]
o connect: for CONNECT_ONLY, CURLOPT_TIMEOUT does not apply [404]
o connect: remove redundant condition in shutdown start [289]
o cookie: avoid saving a cookie file if no transfer was done [11]
o cookie: only count accepted cookies in Curl_cookie_add [364]
o cookie: remove the temporary file on (all) errors [356]
o cpool: make bundle->dest an array; fix UB [218]
o curl.h: remove incorrect comment about CURLOPT_PINNEDPUBLICKEY [320]
o curl_easy_getinfo: error code on NULL arg [2]
o curl_easy_setopt.md: add missing CURLOPT_POSTFIELDS [319]
o curl_mem_undef.h: limit to CURLDEBUG for non-memalloc overrides [19]
o curl_ngtcp2: fix `-Wunreachable-code` with H3 !verbose !unity clang [383]
o curl_osslq: error out properly if BIO_ADDR_rawmake() fails [184]
o curl_path: make sure just whitespace is illegal [351]
o Curl_resolv: fix comment. 'entry' argument is not optional [187]
o curl_slist_append.md: clarify that a NULL pointer is not acceptable [72]
o curl_threads: delete WinCE fallback branch [233]
o CURLINFO_FTP_ENTRY_PATH.md: this is for SFTP as well [8]
o CURLOPT_COOKIEFILE.md: clarify when the cookies are loaded [159]
o CURLOPT_COPYPOSTFIELDS.md: used with MQTT and RTSP as well [457]
o CURLOPT_HEADER/WRITEFUNCTION.md: drop '* size' since size is always 1 [63]
o CURLOPT_MAXLIFETIME_CONN: make default 24 hours [10]
o CURLOPT_POSTFIELDSIZE*: these also work for MQTT and RTSP [395]
o CURLOPT_SERVER_RESPONSE_TIMEOUT*: add default and see-also [397]
o CURLOPT_SSL_VERIFYHOST.md: add see-also to two other VERIFYHOST options [32]
o CURLOPT_TIMECONDITION.md: works for FILE and FTP as well [27]
o cw-out: fix EAGAIN handling on pause [452]
o cw-out: unify the error handling pattern in cw_out_do_write [414]
o digest_sspi: fix two memory leaks in error branches [77]
o dist: do not distribute CI.md [29]
o docs/cmdline-opts: drop double quotes from GLOBBING and URL examples [238]
o docs/libcurl: clarify some timeout option behavior [15]
o docs/libcurl: remove ancient version references [7]
o docs/libcurl: use lowercase must [5]
o docs: expand on quoting rules for file names in SFTP quote [300]
o docs: fix/tidy code fences [87]
o doh: cleanup resources on error paths [434]
o doswin: CloseHandle the thread on shutdown [307]
o easy_getinfo: check magic, Curl_close safety [3]
o ECH.md: make OpenSSL branch clone instructions work [430]
o examples/chkspeed: portable printing when outputting curl_off_t values [365]
o examples/http2-serverpush: fix file handle leaks [428]
o examples/sessioninfo: cast printf string mask length to int [232]
o examples/sessioninfo: do not disable security [255]
o examples/synctime: fix null termination assumptions [297]
o examples/synctime: make the sscanf not overflow the local buffer [252]
o examples/usercertinmem: avoid stripping const [247]
o examples/websocket: fix use of uninitialized rlen [346]
o examples: call curl_global_cleanup() where missing [323]
o examples: check more errors, fix cleanups, scope variables [318]
o examples: drop unused curl/mprintf.h includes [224]
o examples: fix build issues in 'complicated' examples [243]
o examples: fix more potential resource leaks, and more [426]
o examples: fix two build issues surfaced with WinCE [223]
o examples: fix two issues found by CodeQL [35]
o examples: fix two more cases of stat() TOCTOU [147]
o examples: improve global init, error checks and returning errors [321]
o examples: replace casts with `curl_off_t` printf masks [358]
o examples: return curl_easy_perform() results [322]
o firefox-db2pem.sh: add macOS support, tidy-ups [348]
o form.md: drop reference to MANUAL [178]
o ftp: add extra buffer length check [195]
o ftp: check errors on remote ip for data connection [423]
o ftp: fix ftp_do_more returning with *completep unset [122]
o ftp: fix port number range loop for PORT commands [66]
o ftp: fix the 213 scanner memchr buffer limit argument [196]
o ftp: improve fragile check for first digit > 3 [194]
o ftp: reduce size of some struct fields [418]
o ftp: remove 'newhost' and 'newport' from the ftp_conn struct [419]
o ftp: remove misleading comments [193]
o ftp: remove the retr_size_saved struct field [416]
o ftp: remove the state_saved struct field [417]
o ftp: replace strstr() in ;type= handling [313]
o ftp: simplify the 150/126 size scanner [288]
o gnutls: check conversion of peer cert chain [275]
o gnutls: fix re-handshake comments [422]
o gssapi: make channel binding conditional on GSS_C_CHANNEL_BOUND_FLAG [446]
o gtls: avoid potential use of uninitialized variable in trace output [83]
o gtls: check the return value of gnutls_pubkey_init() [456]
o header.md: see-also --proxy-header and vice versa [396]
o hmac: free memory properly on errors [377]
o hostip: don't store negative resolves due unrelated errors [256]
o hostip: fix infof() output for non-ipv6 builds using IPv6 address [338]
o hostip: remove leftover INT_MAX check in Curl_dnscache_prune [88]
o http2: check push header names by length first [261]
o http2: cleanup pushed newhandle on fail [260]
o http2: ingress handling edge cases [259]
o HTTP3: clarify the status for "old" OpenSSL, not current [394]
o http: check the return value of strdup [437]
o http: fix `-Wunreachable-code` in !websockets !unity builds [443]
o http: fix `-Wunused-variable` in !alt-svc !proxy !ws builds [442]
o http: handle user-defined connection headers [165]
o http: look for trailing 'type=' in ftp:// without strstr [315]
o http: make Content-Length parser more WHATWG [183]
o http: only accept ';' as a separator for custom headers [407]
o http: return error for a second Location: header [393]
o http_aws_sigv4: check the return value of curl_maprintf() [381]
o http_proxy: fix adding custom proxy headers [424]
o httpsrr: free old pointers when storing new [57]
o httpsrr: send HTTPS query to the right target [435]
o imap: fix custom FETCH commands to handle literal responses [441]
o imap: parse and use UIDVALIDITY as a number [420]
o imap: treat capabilities case insensitively [345]
o INSTALL-CMAKE.md: add manual configuration examples [360]
o INSTALL-CMAKE.md: document useful build targets [215]
o INSTALL-CMAKE.md: fix descriptions for LDAP dependency options [382]
o INSTALL: update the list of known operating systems [325]
o INTERNALS: drop Winsock 2.2 from the dependency list [162]
o ip-happy: do not set unnecessary timeout [95]
o ip-happy: prevent event-based stall on retry [155]
o kerberos: bump minimum to 1.3 (2003-07-08), drop legacy logic [279]
o kerberos: drop logic for MIT Kerberos <1.2.3 (pre-2002) versions [285]
o kerberos: stop including gssapi/gssapi_generic.h [282]
o krb5: fix output_token allocators in the GSS debug stub (Windows) [326]
o krb5: return appropriate error on send failures [22]
o krb5_gssapi: fix memory leak on error path [190]
o krb5_sspi: the chlg argument is NOT optional [200]
o ldap: avoid null ptr deref on failure [284]
o ldap: do not base64 encode zero length string [42]
o ldap: do not pass a \n to failf() [370]
o ldap: tidy-up types, fix error code confusion [191]
o lib1514: fix return code mixup [304]
o lib: delete unused crypto header includes [384]
o lib: drop unused include and duplicate guards [226]
o lib: fix build error with verbose strings disabled [173]
o lib: remove newlines from failf() calls [366]
o lib: remove personal names from comments [168]
o lib: SSL connection reuse [301]
o lib: stop NULL-checking conn->passwd and ->user [309]
o lib: upgrade/multiplex handling [136]
o libcurl-multi.md: added curl_multi_get_offt mention [53]
o libcurl-security.md: mention long-running connections [6]
o libssh/libssh2: reject quote command lines with too much data [299]
o libssh/sftp: fix resume corruption by avoiding O_APPEND with rresume [263]
o libssh2/sftp: fix resume corruption by avoiding O_APPEND with rresume [262]
o libssh2/sftp_realpath: change state consistently [185]
o libssh2: avoid risking using an uninitialized local struct field [209]
o libssh2: bail out on chgrp and chown number parsing errors [202]
o libssh2: clarify that sshp->path is always at least one byte [201]
o libssh2: drop two redundant null-terminations [26]
o libssh2: error check and null-terminate in ssh_state_sftp_readdir_link() [34]
o libssh2: fix EAGAIN return in ssh_state_auth_agent [290]
o libssh2: fix return code for EAGAIN [186]
o libssh2: use sockindex consistently [302]
o libssh: acknowledge SSH_AGAIN in the SFTP state machine [89]
o libssh: catch a resume point larger than the size [281]
o libssh: clarify myssh_block2waitfor [92]
o libssh: drop two unused assignments [104]
o libssh: error on bad chgrp number [71]
o libssh: error on bad chown number and store the value [64]
o libssh: fix range parsing error handling mistake [120]
o libssh: make atime and mtime cap the timestamp instead of wrap [283]
o libssh: react on errors from ssh_scp_read [24]
o libssh: return out of memory correctly if aprintf fails [60]
o libssh: return the proper error for readdir problems [355]
o Makefile.example: bump default example from FTP to HTTPS [389]
o Makefile.example: fix option order [231]
o Makefile.example: make default options more likely to work [388]
o Makefile.example: simplify and make it configurable [20]
o managen: ignore version mentions < 7.66.0 [55]
o managen: render better manpage references/links [54]
o managen: strict protocol check [109]
o managen: verify the options used in example lines [181]
o mbedtls: add support for 4.0.0 [344]
o mbedtls: check result of setting ALPN [127]
o mbedtls: fix building with <3.6.1 [400]
o mbedtls: fix building with sha-256 missing from PSA [391]
o mbedtls: handle WANT_WRITE from mbedtls_ssl_read() [145]
o md4: drop mbedtls implementation (not available in mbedtls v3+) [406]
o mdlinkcheck: reject URLs containing quotes [174]
o memdup0: handle edge case [241]
o mime: fix unpausing of readers [375]
o mime: fix use of fseek() [334]
o multi.h: add CURLMINFO_LASTENTRY [51]
o multi: check the return value of strdup() [436]
o multi_ev: remove unnecessary data check that confuses analysers [167]
o netrc: when the cached file is discarded, unmark it as loaded [409]
o nghttp3: return NGHTTP3_ERR_CALLBACK_FAILURE from recv_header [227]
o ngtcp2: add a comment explaining write result handling [340]
o ngtcp2: adopt ngtcp2_conn_get_stream_user_data if available [362]
o ngtcp2: check error code on connect failure [13]
o ngtcp2: close just-opened QUIC stream when submit_request fails [222]
o ngtcp2: compare idle timeout in ms to avoid overflow [248]
o ngtcp2: fix early return [131]
o ngtcp2: fix handling of blocked stream data [236]
o ngtcp2: fix returns when TLS verify failed [251]
o ngtcp2: overwrite rate-limits defaults [444]
o noproxy: fix the IPV6 network mask pattern match [166]
o NTLM: disable if DES support missing from OpenSSL or mbedTLS [399]
o ntlm: improved error path on bad incoming NTLM TYPE3 message [412]
o openldap/ldap; check for binary attribute case insensitively [445]
o openldap: avoid indexing the result at -1 for blank responses [44]
o openldap: check ber_sockbuf_add_io() return code [163]
o openldap: check ldap_get_option() return codes [119]
o openldap: do not pass newline to infof() [368]
o openldap: fix memory-leak in error path [287]
o openldap: fix memory-leak on oldap_do's exit path [286]
o openldap: limit max incoming size [347]
o openssl-quic: check results better [132]
o openssl-quic: handle error in SSL_get_stream_read_error_code [129]
o openssl-quic: ignore unexpected streams opened by server [176]
o openssl: better return code checks when logging cert data [342]
o openssl: call SSL_get_error() with proper error [207]
o openssl: check CURL_SSLVERSION_MAX_DEFAULT properly [447]
o openssl: clear retry flag on x509 error [130]
o openssl: combine all the x509-store flags [451]
o openssl: fail if more than MAX_ALLOWED_CERT_AMOUNT certs [339]
o openssl: fail the transfer if ossl_certchain() fails [23]
o openssl: fix build for v1.0.2 [225]
o openssl: fix peer certificate leak in channel binding [258]
o openssl: fix resource leak in provider error path [376]
o openssl: fix unable do typo in failf() calls [341]
o openssl: free UI_METHOD on exit path [373]
o openssl: make the asn1_object_dump name null terminated [56]
o openssl: only try engine/provider if a cert file/name is provided [415]
o openssl: set io_need always [99]
o openssl: skip session resumption when verifystatus is set [230]
o os400: document threads handling in code. [254]
o OS400: fix a use-after-free/double-free case [142]
o osslq: set idle timeout to 0 [237]
o pingpong: remove two old leftover debug infof() calls
o pop3: check for CAPA responses case insensitively [439]
o pop3: fix CAPA response termination detection [427]
o pop3: function could get the ->transfer field wrong [292]
o pytest: skip specific tests for no-verbose builds [171]
o quic: fix min TLS version handling [14]
o quic: ignore EMSGSIZE on receive [4]
o quic: improve UDP GRO receives [330]
o quic: remove data_idle handling [311]
o quiche: fix possible leaks on teardown [205]
o quiche: fix verbose message when ip quadruple cannot be obtained. [128]
o quiche: handle tls fail correctly [266]
o quiche: when ingress processing fails, return that error code [103]
o rtsp: use explicit postfieldsize if specified [401]
o runtests: tag tests that require curl verbose strings [172]
o rustls: exit on error [335]
o rustls: fix clang-tidy warning [107]
o rustls: fix comment describing cr_recv() [117]
o rustls: limit snprintf proper in cr_keylog_log_cb() [343]
o rustls: make read_file_into not reject good files [328]
o rustls: pass the correct result to rustls_failf [242]
o rustls: typecast variable for safer trace output [69]
o rustls: use %zu for size_t in failf() format string [121]
o sasl: clear canceled mechanism instead of toggling it [41]
o schannel: assign result before using it [62]
o schannel: fix memory leak [363]
o schannel: handle Curl_conn_cf_send() errors better [352]
o schannel: lower the maximum allowed time to block to 7 seconds [333]
o schannel: properly close the certfile on error [450]
o schannel_verify: do not call infof with an appended \n [371]
o schannel_verify: fix mem-leak in Curl_verify_host [208]
o schannel_verify: use more human friendly error messages [96]
o scp/sftp: fix disconnect [350]
o scripts: pass -- before passing xargs [349]
o setopt: accept *_SSL_VERIFYHOST set to 2L [31]
o setopt: allow CURLOPT_DNS_CACHE_TIMEOUT set to -1 [257]
o setopt: fix unused variable warning in minimal build [332]
o setopt: make CURLOPT_MAXREDIRS accept -1 (again) [1]
o singleuse.pl: fix string warning [392]
o smb: adjust buffer size checks [45]
o smb: transfer debugassert to real check [303]
o smtp: check EHLO responses case insensitively [50]
o smtp: fix EOB handling [410]
o smtp: return value ignored [357]
o socks: advance iobuf instead of reset [276]
o socks: avoid UAF risk in error path [359]
o socks: deny server basic-auth if not configured [264]
o socks: handle error in verbose trace gracefully [94]
o socks: handle premature close [246]
o socks: make Curl_blockread_all return CURLcode [67]
o socks: properly maintain the status of 'done' [405]
o socks: rewwork, cleaning up socks state handling [135]
o socks_gssapi: also reset buffer length after free [429]
o socks_gssapi: make the gss_context a local variable [144]
o socks_gssapi: reject too long tokens [90]
o socks_gssapi: remove superfluous releases of the gss_recv_token [139]
o socks_gssapi: remove the forced "no protection" [143]
o socks_gssapi: replace `gss_release_buffer()` with curl free [386]
o socks_sspi: bail out on too long fields [137]
o socks_sspi: fix memory cleanup calls [40]
o socks_sspi: remove the enforced mode clearing [291]
o socks_sspi: restore non-blocking socket on error paths [48]
o socks_sspi: use the correct free function [331]
o socksd: remove --bindonly mention, there is no such option [305]
o spelling: fix new finds by typos-cli 1.39.0 [454]
o src/var: remove dead code [369]
o ssl-session-cache: check use on config and availability [448]
o ssl-sessions.md: mark option experimental [12]
o strerror: drop workaround for SalfordC win32 header bug [214]
o sws: fix checking sscanf() return value [17]
o sws: pass in socket reference to allow function to close it [298]
o tcp-nodelay.md: expand the documentation [153]
o telnet: ignore empty suboptions [86]
o telnet: make bad_option() consider NULL a bad option too [192]
o telnet: make printsub require another byte input [21]
o telnet: print DISPlay LOCation in printsub without mutating buffer [216]
o telnet: refuse IAC codes in content [111]
o telnet: return error if WSAEventSelect fails [180]
o telnet: return error on crazy TTYPE or XDISPLOC lengths [123]
o telnet: send failure logged but not returned [175]
o telnet: use pointer[0] for "unknown" option instead of pointer[i] [217]
o test1100: fix missing `<protocol>` section [432]
o tests/libtest/cli*: fix init/deinit, leaks, and more [455]
o tests/server: drop pointless memory allocation overrides [219]
o tests/server: drop unsafe open() override in signal handler (Windows) [151]
o tftp: check and act on tftp_set_timeouts() returning error [38]
o tftp: check for trailing ";mode=" in URL without strstr [312]
o tftp: default timeout per block is now 15 seconds [156]
o tftp: error requests for blank filenames [296]
o tftp: handle tftp_multi_statemach() return code [65]
o tftp: pin the first used address [110]
o tftp: propagate expired timer from tftp_state_timeout() [39]
o tftp: return error if it hits an illegal state [138]
o tftp: return error when sendto() fails [59]
o thread: errno on thread creation [271]
o tidy-up: assortment of small fixes [115]
o tidy-up: avoid using the reserved macro namespace [76]
o tidy-up: fcntl.h includes [98]
o tidy-up: update MS links, allow long URLs via checksrc [73]
o tidy-up: URLs [101]
o time-cond.md: refer to the singular curl_getdate man page [148]
o TLS: IP address verification, extend test [398]
o TODO: fix a typo [93]
o TODO: remove already implemented or bad items [36]
o tool: fix exponential retry delay [47]
o tool_cb_hdr: fix fwrite check in header callback [49]
o tool_cb_hdr: size is always 1 [70]
o tool_cb_rea: use poll instead of select if available [329]
o tool_cfgable: remove superfluous free calls [403]
o tool_doswin: fix to use curl socket functions [108]
o tool_filetime: cap crazy file times instead of erroring [327]
o tool_filetime: replace cast with the fitting printf mask (Windows) [212]
o tool_formparse: rewrite the headers file parser [374]
o tool_getparam/set_rate: skip the multiplication on overflow [84]
o tool_getparam: always disable "lib-ids" for tracing [169]
o tool_getparam: make --fail and --fail-with-body override each other [293]
o tool_getparam: warn if provided header looks malformed [179]
o tool_ipfs: check the return value of curl_url_get for gwpath [453]
o tool_ipfs: simplify the ipfs gateway logic [337]
o tool_msgs: make errorf() show if --show-error [294]
o tool_operate: improve wording in retry message [37]
o tool_operate: keep failed partial download for retry auto-resume [210]
o tool_operate: keep the progress meter for --out-null [33]
o tool_operate: move the checks that skip ca cert detection [449]
o tool_operate: retry on HTTP response codes 522 and 524 [317]
o tool_operate: return error on strdup() failure [336]
o tool_paramhlp: remove outdated comment in str2tls_max() [367]
o tool_parsecfg: detect and error on recursive --config use [380]
o tool_progress: handle possible integer overflows [164]
o tool_progress: make max5data() use an algorithm [170]
o transfer: avoid busy loop with tiny speed limit [100]
o transfer: fix retry for empty downloads on reuse [411]
o transfer: reset retry count on each request [310]
o unit1323: sync time types and printf masks, drop casts [211]
o unit1664: drop casts, expand masks to full values [221]
o url: make Curl_init_userdefined return void [213]
o urldata: FILE is not a list-only protocol [9]
o urldata: make 'retrycount' a single byte [308]
o urldata: make redirect counter 16 bit [295]
o vauth/digest: improve the digest parser [203]
o version: add GSS backend name and version [353]
o vquic: fix idle-timeout checks (ms<-->ns), 64-bit log & honor 0=no-timeout [249]
o vquic: fix recvmsg loop for max_pkts [421]
o vquic: handling of io improvements [239]
o vquic: sending non-gso packets fix for EAGAIN [265]
o vtls: alpn setting, check proto parameter [134]
o vtls: check final cfilter node in find_ssl_filter [440]
o vtls: drop duplicate `CURL_SHA256_DIGEST_LENGTH` definition [387]
o vtls: properly handle SSL shutdown timeout [433]
o vtls: remove call to PKCS12_PBE_add() [408]
o vtls: unify the error handling in ssl_cf_connect(). [413]
o vtls_int.h: clarify data_pending [124]
o vtls_scache: fix race condition [157]
o wcurl: sync to +dev snapshot [425]
o windows: replace _beginthreadex() with CreateThread() [80]
o windows: stop passing unused, optional argument for Win9x compatibility [75]
o windows: use consistent format when showing error codes [199]
o windows: use native error code types more [206]
o wolfssl: check BIO read parameters [133]
o wolfssl: clear variable to avoid uninitialized use [361]
o wolfssl: fix error check in shutdown [105]
o wolfssl: fix resource leak in verify_pinned error paths [314]
o wolfssl: no double get_error() detail [188]
o ws: clarify an error message [125]
o ws: fix some edge cases [274]
o ws: fix type conversion check [316]
o ws: reject curl_ws_recv called with NULL buffer with a buflen [118]
To generate a diff of this commit:
cvs rdiff -u -r1.301 -r1.302 pkgsrc/www/curl/Makefile
cvs rdiff -u -r1.29 -r1.30 pkgsrc/www/curl/Makefile.common
cvs rdiff -u -r1.106 -r1.107 pkgsrc/www/curl/PLIST
cvs rdiff -u -r1.220 -r1.221 pkgsrc/www/curl/distinfo
cvs rdiff -u -r1.23 -r1.24 pkgsrc/www/curl/options.mk
cvs rdiff -u -r0 -r1.22 pkgsrc/www/curl/patches/patch-configure
cvs rdiff -u -r1.1 -r0 pkgsrc/www/curl/patches/patch-lib_curl__threads.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: pkgsrc/www/curl/Makefile
diff -u pkgsrc/www/curl/Makefile:1.301 pkgsrc/www/curl/Makefile:1.302
--- pkgsrc/www/curl/Makefile:1.301 Fri Oct 24 04:01:11 2025
+++ pkgsrc/www/curl/Makefile Wed Nov 5 09:30:18 2025
@@ -1,9 +1,7 @@
-# $NetBSD: Makefile,v 1.301 2025/10/24 04:01:11 riastradh Exp $
+# $NetBSD: Makefile,v 1.302 2025/11/05 09:30:18 wiz Exp $
.include "Makefile.common"
-PKGREVISION= 2
-
CONFIGURE_ARGS+= --with-ssl=${BUILDLINK_PREFIX.openssl}
SUBST_CLASSES+= rpath
@@ -16,4 +14,10 @@ SUPERSEDES+= wcurl-[0-9]*
.include "options.mk"
+# as of 8.17.0
+#TESTDONE: 1890 tests were considered during 498 seconds.
+#TESTDONE: 1622 tests out of 1623 reported OK: 99%
+#
+#FAIL 1510: 'HTTP GET connection cache limit (CURLOPT_MAXCONNECTS)' HTTP, verbose logs, flaky
+
.include "../../mk/bsd.pkg.mk"
Index: pkgsrc/www/curl/Makefile.common
diff -u pkgsrc/www/curl/Makefile.common:1.29 pkgsrc/www/curl/Makefile.common:1.30
--- pkgsrc/www/curl/Makefile.common:1.29 Fri Oct 24 03:59:51 2025
+++ pkgsrc/www/curl/Makefile.common Wed Nov 5 09:30:18 2025
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile.common,v 1.29 2025/10/24 03:59:51 riastradh Exp $
+# $NetBSD: Makefile.common,v 1.30 2025/11/05 09:30:18 wiz Exp $
# used by www/libcurl-gnutls/Makefile
-DISTNAME= curl-8.16.0
+DISTNAME= curl-8.17.0
CATEGORIES= www
MASTER_SITES= https://curl.se/download/
EXTRACT_SUFX= .tar.xz
Index: pkgsrc/www/curl/PLIST
diff -u pkgsrc/www/curl/PLIST:1.106 pkgsrc/www/curl/PLIST:1.107
--- pkgsrc/www/curl/PLIST:1.106 Fri Sep 12 07:32:12 2025
+++ pkgsrc/www/curl/PLIST Wed Nov 5 09:30:18 2025
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.106 2025/09/12 07:32:12 wiz Exp $
+@comment $NetBSD: PLIST,v 1.107 2025/11/05 09:30:18 wiz Exp $
bin/curl
bin/curl-config
bin/wcurl
@@ -109,6 +109,8 @@ man/man3/CURLMOPT_MAX_HOST_CONNECTIONS.3
man/man3/CURLMOPT_MAX_PIPELINE_LENGTH.3
man/man3/CURLMOPT_MAX_TOTAL_CONNECTIONS.3
man/man3/CURLMOPT_NETWORK_CHANGED.3
+man/man3/CURLMOPT_NOTIFYDATA.3
+man/man3/CURLMOPT_NOTIFYFUNCTION.3
man/man3/CURLMOPT_PIPELINING.3
man/man3/CURLMOPT_PIPELINING_SERVER_BL.3
man/man3/CURLMOPT_PIPELINING_SITE_BL.3
@@ -486,6 +488,8 @@ man/man3/curl_multi_get_handles.3
man/man3/curl_multi_get_offt.3
man/man3/curl_multi_info_read.3
man/man3/curl_multi_init.3
+man/man3/curl_multi_notify_disable.3
+man/man3/curl_multi_notify_enable.3
man/man3/curl_multi_perform.3
man/man3/curl_multi_poll.3
man/man3/curl_multi_remove_handle.3
Index: pkgsrc/www/curl/distinfo
diff -u pkgsrc/www/curl/distinfo:1.220 pkgsrc/www/curl/distinfo:1.221
--- pkgsrc/www/curl/distinfo:1.220 Fri Oct 24 04:01:11 2025
+++ pkgsrc/www/curl/distinfo Wed Nov 5 09:30:18 2025
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.220 2025/10/24 04:01:11 riastradh Exp $
+$NetBSD: distinfo,v 1.221 2025/11/05 09:30:18 wiz Exp $
-BLAKE2s (curl-8.16.0.tar.xz) = 3545a2b271d3b7d25be23f17ae61d947433e6d55c00136baae05eb787919d8a8
-SHA512 (curl-8.16.0.tar.xz) = 8262c3dc113cfd5744ef1b82dbccaa69448a9395ad5c094c22df5cf537a047a927d3332db2cb3be12a31a68a60d8d0fa8485b916e975eda36a4ebd860da4f621
-Size (curl-8.16.0.tar.xz) = 2788632 bytes
-SHA1 (patch-lib_curl__threads.c) = 248bd91dff74b64e6aaca98e9cfd5003aae697fe
+BLAKE2s (curl-8.17.0.tar.xz) = fb78e291beea349daadde355105911a0d015c36204bf9d6febcfebf021b3ce54
+SHA512 (curl-8.17.0.tar.xz) = fc6349def40c3c259de2a568631507df17dff83e78a2edbb93f069586dce594439fdc88bef7ce2bed7491f35800b8c0c181c8c88e6ef656cc3c18f9834681eca
+Size (curl-8.17.0.tar.xz) = 2797000 bytes
+SHA1 (patch-configure) = 366e1ae4f2faf5117c80851b5473cc9561a3bd8a
Index: pkgsrc/www/curl/options.mk
diff -u pkgsrc/www/curl/options.mk:1.23 pkgsrc/www/curl/options.mk:1.24
--- pkgsrc/www/curl/options.mk:1.23 Sun Oct 5 17:17:00 2025
+++ pkgsrc/www/curl/options.mk Wed Nov 5 09:30:19 2025
@@ -1,4 +1,4 @@
-# $NetBSD: options.mk,v 1.23 2025/10/05 17:17:00 js Exp $
+# $NetBSD: options.mk,v 1.24 2025/11/05 09:30:19 wiz Exp $
PKG_OPTIONS_VAR= PKG_OPTIONS.curl
PKG_SUPPORTED_OPTIONS= inet6 openssl libssh2 gssapi ldap rtmp idn http2
@@ -18,7 +18,7 @@ CONFIGURE_ARGS+= --disable-ipv6
.endif
.if !empty(PKG_OPTIONS:Mopenssl)
-.include "../../security/openssl/buildlink3.mk"
+.include "../../security/openssl/buildlink3.mk"
CONFIGURE_ARGS+= --enable-openssl
.else
CONFIGURE_ARGS+= --without-ssl
Added files:
Index: pkgsrc/www/curl/patches/patch-configure
diff -u /dev/null pkgsrc/www/curl/patches/patch-configure:1.22
--- /dev/null Wed Nov 5 09:30:19 2025
+++ pkgsrc/www/curl/patches/patch-configure Wed Nov 5 09:30:19 2025
@@ -0,0 +1,20 @@
+$NetBSD: patch-configure,v 1.22 2025/11/05 09:30:19 wiz Exp $
+
+Fix test(1) operator.
+https://github.com/curl/curl/pull/19371
+
+--- configure.orig 2025-11-05 09:11:06.215617475 +0000
++++ configure
+@@ -28073,10 +28073,10 @@ else $as_nop
+
+ fi
+ rm -f core conftest.err conftest.$ac_objext conftest.beam conftest.$ac_ext
+- if test "x$build_for_apple" == "xno"; then
++ if test "x$build_for_apple" = "xno"; then
+ as_fn_error $? "Apple SecTrust can only be enabled for Apple OS targets" "$LINENO" 5
+ fi
+- if test "x$OPENSSL_ENABLED" == "x1" -o "x$GNUTLS_ENABLED" == "x1"; then
++ if test "x$OPENSSL_ENABLED" = "x1" -o "x$GNUTLS_ENABLED" = "x1"; then
+ { printf "%s\n" "$as_me:${as_lineno-$LINENO}: result: yes" >&5
+ printf "%s\n" "yes" >&6; }
+
Home |
Main Index |
Thread Index |
Old Index