| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
|
|
|
|
|
| |
* update to 8.7.1: https://curl.se/changes.html#8_7_1
* use the new --disable-docs flag for configure
* update 200-no_docs_tests.patch
* switch to APK-compatible revision
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#8_6_0
Signed-off-by: Konstantin Demin <rockdrilla@gmail.com>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#8_5_0
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
|
|
| |
* these changes along with 2 PRs below and using non-standard
openssl library allow for building curl with HTTP/3 support
* https://github.com/openwrt/packages/pull/22443
* https://github.com/openwrt/packages/pull/22444
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
|
| |
For detailed changes, see https://curl.se/changes.html#8_4_0
Switching to tar.bz2 for the time being as tar.xz is not yet available.
Fixes CVE-2023-38546 and CVE-2023-38545.
Signed-off-by: Michal Hrusecky <michal.hrusecky@turris.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Release notes:
https://curl.se/changes.html#8_3_0
Fixes:
CVE-2023-38039 [1]
[1] https://curl.se/docs/CVE-2023-38039.html
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#8_2_1
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#8_2_0
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#8_1_2
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#8_1_1
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#8_1_0
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
See commit da370098 "treewide: add support for "gc-sections" in
PKG_BUILD_FLAGS" on the main repository.
Note: This only touches packages which use all three parts
(-ffunction-sections, -fdata-sections and -Wl,--gc-sections) enabled by
this build flag. Some packages only use a subset, and these are left
unchanged for now.
Signed-off-by: Andre Heider <a.heider@gmail.com>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#8_0_1
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
- changed Config.in to enable unix sockets support by default
- release number bumped
Description:
socket support is very handy when communicating with
various REST APIs.
Size increases are very small, nearly unnoticiable.
Tested-by: Stan Grishin <stangri@melmac.ca>
Signed-off-by: Oskari Rauta <oskari.rauta@gmail.com>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#7_88_1
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
| |
* Reported-by: Chen Minqiang <ptpt52@gmail.com>
* details [here](https://github.com/openwrt/packages/commit/88009b2d5e394c1822ec55734b63b434981a2a9d#commitcomment-88604318)
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
| |
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
|
|
|
| |
* update to 7.86.0: https://curl.se/changes.html#7_86_0
* remove 300-curl-wolfssl.m4-error-out-if-wolfSSL-is-not-usable.patch as
it was fixed upstream: https://github.com/curl/curl/pull/9682
* update configure options for OpenSSL as --without-ssl is breaking build
* remove --without-libidn configure arg as it's no longer recognized
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
When we explicitly declare, that we would like to have curl built with
wolfSSL support using `--with-wolfssl` configure option, then we should
make sure, that we either endup with curl having that support, or it
shouldn't be available at all, otherwise we risk, that we end up with
regressions like following:
configure:25299: checking for wolfSSL_Init in -lwolfssl
configure:25321: x86_64-openwrt-linux-musl-gcc -o conftest [snip]
In file included from target-x86_64_musl/usr/include/wolfssl/wolfcrypt/dsa.h:33,
from target-x86_64_musl/usr/include/wolfssl/wolfcrypt/asn_public.h:35,
from target-x86_64_musl/usr/include/wolfssl/ssl.h:35,
from conftest.c:47:
target-x86_64_musl/usr/include/wolfssl/wolfcrypt/integer.h:37:14: fatal error: wolfssl/wolfcrypt/sp_int.h: No such file or directory
#include <wolfssl/wolfcrypt/sp_int.h>
^~~~~~~~~~~~~~~~~~~~~~~~~~~~
compilation terminated.
and in the end thus produce curl without https support:
curl: (1) Protocol "https" not supported or disabled in libcurl
So fix it, by making the working wolfSSL mandatory and error out in
configure step when that's not the case:
checking for wolfSSL_Init in -lwolfssl... no
configure: error: --with-wolfssl but wolfSSL was not found or doesn't work
References: #19005, #19547
Upstream-Status: Accepted [https://github.com/curl/curl/pull/9682]
Signed-off-by: Petr Štetiar <ynezz@true.cz>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
As wolfSSL is having hard time maintaining ABI compatibility between
releases, we need to manually force rebuild of packages depending on
libwolfssl and thus force their upgrade. Otherwise due to the ABI
handling we would endup with possibly two libwolfssl libraries in the
system, including the patched libwolfssl-5.5.1, but still have
vulnerable services running using the vulnerable libwolfssl-5.4.0.
So in order to propagate update of libwolfssl to latest stable release
done in commit ec8fb542ec3e4 ("wolfssl: fix TLSv1.3 RCE in uhttpd by
using 5.5.1-stable (CVE-2022-39173)") which fixes several remotely
exploitable vulnerabilities, we need to bump PKG_RELEASE of all packages
using wolfSSL library.
Same bump has been done in buildroot in commit f1b7e1434f66 ("treewide:
fix security issues by bumping all packages using libwolfssl").
Signed-off-by: Petr Štetiar <ynezz@true.cz>
|
| |
|
|
|
|
| |
* fixes https://github.com/openwrt/packages/issues/19456
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
| |
* https://curl.se/changes.html#7_85_0
* add GitHub to PKG_SOURCE_URL
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
| |
This reverts commit 312ab68be498f0d895d8d4dc5b2f0fc857e45eb9.
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#7_85_0
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
|
|
| |
The decision to switch the default to wolfSSL was taken because of
hostapd back from when curl was in base. Unfortunately, not only is
wolfSSL bigger but it has also been causing issues recently. There's
also no relation between hostapd and curl.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |
|
|
|
|
| |
options.h header is needed now.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |
|
|
|
|
| |
* https://curl.se/changes.html#7_83_1
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
| |
Fixes #18082
Signed-off-by: Chris Osgood <chris_github@functionalfuture.com>
|
| |
|
|
|
|
| |
* changelog: https://curl.se/changes.html#7_82_0
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
| |
* changes: https://curl.se/changes.html#7_81_0
Signed-off-by: Stan Grishin <stangri@melmac.ca>
|
| |
|
|
|
|
|
| |
* bump version to 7.80.0
* update maintainer email address
Signed-off-by: Stan Grishin <stangri@melmac.net>
|
| |
|
|
|
|
| |
* update to [7.79.1](https://curl.se/changes.html#7_79_1)
Signed-off-by: Stan Grishin <stangri@melmac.net>
|
| |
|
|
|
|
| |
* update to [7.79.0](https://curl.se/changes.html#7_79_0)
Signed-off-by: Stan Grishin <stangri@melmac.net>
|
| |
|
|
|
|
|
|
|
| |
* update to 7.78.0
* change maintainer
* remove obsolete mirror (curl.mirror.anstey.ca)
* update main curl URLs
Signed-off-by: Stan Grishin <stangri@melmac.net>
|
| |
|
|
|
|
|
|
|
|
| |
Description: Lack of support of HTTP/2 by default starts to hurt,
for example with https-dns-proxy package, some DoH resolvers (like mullvad)
no longer support HTTP/1 and are not usable.
This enables HTTP/2 support by default (which would bring ~68Kb libnghttp).
Signed-off-by: Stan Grishin <stangri@melmac.net>
|
| |
|
|
|
|
|
|
|
| |
Fixes:
CVE-2021-22897
CVE-2021-22898
CVE-2021-22901
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
|
| |
|
|
|
|
| |
Fixes CVE-2021-22876 and CVE-2021-22890
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
|
| |
|
|
|
|
| |
Switch to AUTORELEASE for simplicity.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |
|
|
|
|
|
|
| |
depending on it
Fixes ABI_VERSION handling issues
Signed-off-by: Felix Fietkau <nbd@nbd.name>
|
| |
|
|
|
|
|
|
|
| |
Fixes:
CVE-2020-8286
CVE-2020-8285
CVE-2020-8284
Signed-off-by: Jan Pavlinec <jan.pavlinec@nic.cz>
|
| |
|
|
|
|
|
|
| |
Fix the prefix instead.
Replace custom Compile section with PKG_INSTALL.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |
|
|
|
| |
Ref: https://curl.se/mail/lib-2020-10/0037.html
Signed-off-by: DENG Qingfang <dengqf6@mail2.sysu.edu.cn>
|
| |
|
|
|
|
|
|
| |
Remove upstream patch.
Refresh other one.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Package libcurl is missing dependencies for the following libraries:
libzstd.so.1
Previous patch by Hans Dedecker <dedeckeh@gmail.com> took the easy way
out :)
Suggested-by: Syrone Wong <wong.syrone@gmail.com>
Signed-off-by: Tony Butler <spudz76@gmail.com>
[fixed title]
Signed-off-by: Paul Spooren <mail@aparcar.org>
|
| |
|
|
|
|
|
|
| |
Instead of using mbedtls by default use wolfssl. We now integrate
wolfssl in the default build so use it also as default ssl library for
curl.
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
|
| |
|
|
|
|
|
|
|
| |
Backport a commit from upstream curl to fix a problem in configure with
wolfssl.
checking size of time_t... configure: error: cannot determine a size for time_t
Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
|
|
|
Move package over from openwrt.git based on the Hamburg 2019 decision
that non essential packages should be maintained in packages.git
Signed-off-by: Paul Spooren <mail@aparcar.org>
|