@@ -4,7 +4,7 @@ curl and libcurl 7.78.0
44 Command line options: 242
55 curl_easy_setopt() options: 290
66 Public functions in libcurl: 85
7- Contributors: 2454
7+ Contributors: 2459
88
99This release includes the following changes:
1010
@@ -34,11 +34,13 @@ This release includes the following bugfixes:
3434 o c-hyper: support CURLINFO_STARTTRANSFER_TIME [29]
3535 o c-hyper: support CURLOPT_HEADER [32]
3636 o ccsidcurl: fix the compile errors [27]
37+ o CI/cirrus: install impacket from PyPI instead of FreeBSD packages [166]
3738 o CI: add bearssl build [1]
3839 o CI: add Circle CI [92]
3940 o CI: add jobs using Zuul [86]
4041 o CI: delete --enable-hsts option (it is the default now) [2]
4142 o CI: remove travis details [144]
43+ o cleanup: spell DoH with a lowercase o [172]
4244 o cmake: add CURL_DISABLE_NTLM option [44]
4345 o cmake: avoid leaking absolute paths into exported config [3]
4446 o cmake: fix IoctlSocket FIONBIO check [156]
@@ -73,9 +75,11 @@ This release includes the following bugfixes:
7375 o docs: fix inconsistencies in EGDSOCKET documentation [159]
7476 o docs: fix incorrect argument name reference [161]
7577 o docs: Fix typos [146]
78+ o docs: make docs for --etag-save match the program behaviour [169]
7679 o docs: use --max-redirs instead of --max-redir [28]
7780 o doh: (void)-prefix call to curl_easy_setopt
7881 o doh: fix wrong DEBUGASSERT for doh private_data [62]
82+ o easy: during upkeep, attach Curl_easy to connections in the cache [171]
7983 o examples/multi-single: fix scan-build warning [150]
8084 o examples: length-limit two sscanf() uses of %s [96]
8185 o examples: safer and more proper read callback logic [127]
@@ -104,12 +108,14 @@ This release includes the following bugfixes:
104108 o idn: fix libidn2 with windows unicode builds [117]
105109 o infof: remove newline from format strings, always append it [149]
106110 o lib: don't compare fd to FD_SETSIZE when using poll [61]
111+ o lib: fix compiler warnings with CURL_DISABLE_NETRC [168]
107112 o lib: fix type of len passed to *printf's %*s [133]
108113 o lib: more %u for port and int for %*s fixes [132]
109114 o lib: use %u instead of %ld for port number printf [134]
110115 o libcurl-security.3: mention file descriptors and forks [108]
111116 o libssh2: limit time a disconnect can take to 1 second [111]
112117 o mbedtls: make mbedtls_strerror always work [6]
118+ o mbedtls: Remove unnecessary include [175]
113119 o mqtt: detect illegal and too large file size [43]
114120 o mqtt: extend the error message for no topic [136]
115121 o msnprintf: return number of printed characters excluding null byte [148]
@@ -134,11 +140,13 @@ This release includes the following bugfixes:
134140 o rustls: remove native_roots fallback [65]
135141 o schannel: set ALPN length correctly for HTTP/2 [24]
136142 o SChannel: Use '_tcsncmp()' instead [164]
143+ o sectransp: check for client certs by name first, then file [167]
137144 o setopt: fix incorrect comments [10]
138145 o socketpair: fix potential hangs [37]
139146 o socks4: scan for the IPv4 address in resolve results [124]
140147 o ssl: read pending close notify alert before closing the connection [9]
141148 o sws: malloc request struct instead of using stack [60]
149+ o telnet: fix option parser to not send uninitialized contents [170]
142150 o test1116: hyper doesn't pass through "surprise-trailers" [123]
143151 o test1147: hyper doesn't allow "crazy" request headers like built-in [114]
144152 o test1151: added missing CRLF to work with hyper [120]
@@ -175,11 +183,13 @@ This release includes the following bugfixes:
175183 o url: bad CURLOPT_CONNECT_TO syntax now returns error [31]
176184 o version: turn version number functions into returning void [135]
177185 o vtls: exit addsessionid if no cache is inited [7]
186+ o vtls: fix connection reuse checks for issuer cert and case sensitivity [165]
178187 o vtls: only store TIMER_APPCONNECT for non-proxy connect [93]
179188 o vtls: use free() not curl_free() [140]
180189 o warnless: simplify type size handling [30]
181190 o Win32: fix build with Watt-32
182191 o winbuild/README: VC should be set to 6 'or larger' [64]
192+ o winbuild: support alternate nghttp2 static lib name [174]
183193 o wolfssl: failing to set a session id is not reason to error out [151]
184194 o write-out.d: clarify urlnum is not unique for de-globbed URLs [145]
185195 o zuul: use the new rustls directory name [141]
@@ -199,16 +209,18 @@ advice from friends like these:
199209 Fawad Mirza, Francisco Munoz, Gabriel Simmer, Gealber Morales, Gergely Nagy,
200210 Gerrit Renker, Gisle Vanem, Gregor Jasny, Gregory Muchka, Harry Sintonen,
201211 Hugh Macdonald, Jacob Hoffman-Andrews, Jishan Shaikh, Joel Depooter,
202- Jonathan Wernberg, Jon Rumsey, Jun-ya Kato, Kevin Burke, Laurent Dufresne,
203- Li Xinwei, Marcel Raad, Marc Hörsken, Mark Swaanenburg, Martin Howarth,
212+ Jonathan Wernberg, Jon Rumsey, Josh Soref, Josie Huddleston, Jun-ya Kato,
213+ Kevin Burke, Laurent Dufresne, Li Xinwei, MAntoniak on github, Marcel Raad,
214+ Marc Hörsken, Mark Swaanenburg, Martin Howarth, Max Zettlmeißl,
204215 Michael Forney, Michael Kaufmann, Mohammed Naser, nian6324 on github,
205- Nikos Mavrogiannopoulos, Paul Groke, Peter Körner, Phil E. Taylor, Randolf J,
206- Ray Satiro, Red Hat Product Security, Richard Marion, Richard Whitehouse,
207- Sergey Markelov, Shikha Sharma, shithappens2016 on github, sylgal on github,
216+ Nikos Mavrogiannopoulos, Paul Groke, Peter Körner, Phil E. Taylor,
217+ Pierre Yager, Randolf J, Ray Satiro, Red Hat Product Security,
218+ Richard Marion, Richard Whitehouse, Sergey Markelov, Shikha Sharma,
219+ shithappens2016 on github, sylgal on github, Timur Artikov, Tobias Nyholm,
208220 Tommy Chiang, User Sg, Vadim Grinshpun, Valentín Gutiérrez, Viktor Szakats,
209221 William Desportes, Wyatt OʼDay, Xiang Xiao, Yongkang Huang, Younes El-karama,
210222 Zhang Xiuhua, Борис Верховский, Коваленко Анатолий Викторович,
211- (76 contributors)
223+ (83 contributors)
212224
213225References to bug reports and discussions on issues:
214226
@@ -375,3 +387,13 @@ References to bug reports and discussions on issues:
375387 [162] = https://curl.se/bug/?i=7378
376388 [163] = https://curl.se/bug/?i=7397
377389 [164] = https://curl.se/bug/?i=7398
390+ [165] = https://curl.se/docs/CVE-2021-22924.html
391+ [166] = https://curl.se/bug/?i=7418
392+ [167] = https://curl.se/docs/CVE-2021-22926.html
393+ [168] = https://curl.se/bug/?i=7423
394+ [169] = https://curl.se/bug/?i=7429
395+ [170] = https://curl.se/docs/CVE-2021-22925.html
396+ [171] = https://curl.se/bug/?i=7386
397+ [172] = https://curl.se/bug/?i=7413
398+ [174] = https://curl.se/bug/?i=7446
399+ [175] = https://curl.se/bug/?i=7419
0 commit comments