moparisthebest
/
wget
mirror of https://github.com/moparisthebest/wget
1
0
Fork 0
Code Issues Releases Wiki Activity
3,210 Commits 1 Branch 0 Tags 9.6 MiB
Commit Graph

1643 Commits

Author SHA1 Message Date
Tim Rühsen 897ef07712 Fix error handling for CRL loading in OpenSSL code 2014-11-12 15:38:21 +01:00
Witchakorn Kamolpornwijit 6e259b76b7 Fix range check in map_html_tags() 2014-11-12 15:22:15 +01:00
Tim Rühsen cf4991d602 Added OpenSSL support for --crl-file 2014-11-12 10:00:51 +01:00
Tim Rühsen 176c2b17fc Add 'Accept-Encoding: identity' to request header 
Fixes bug #40819
Reported-by: Noël Köthe <noel@debian.org>
 2014-11-11 20:05:21 +01:00
Tim Rühsen 9823dc1989 Fix missing _Noreturn declaration specifiers in src/main.c 
Reported-by: Gisle Vanem <gvanem@yahoo.no>
 2014-11-11 16:34:57 +01:00
Tim Rühsen 2457715e7d Fix OpenSSL compile-time check for TLSv1.1 and TLSv1.2 
Reported-by: Velemas Vosak <velemas@gmail.com>
 2014-11-11 15:09:41 +01:00
Tim Rühsen e4a8fe84e2 Added --crl-file to load a Certificate Revocation List (CRL) file 
Reported-by: Noël Köthe <noel@debian.org>
 2014-11-11 15:06:51 +01:00
Darshit Shah 170a469533 Honour Keep-Alive when range not satisfiable 2014-11-09 14:33:13 +05:30
Darshit Shah d81a8d5f56 Remove redundant condition eval 2014-11-09 14:20:22 +05:30
Tim Ruehsen 7259c30929 Fix segmentation fault on do_conversion() failure 
Having an unknown local encoding made Wget crash.
We also fix a wrong 'Conversion from ...' message and
changed two logging messages into debug messages.

Reported-by: Mikael Magnusson <mikachu@gmail.com>
 2014-11-05 21:57:18 +01:00
Matthew Atkinson e0f149d29d Always send Content-Length with POST, PUT, PATCH 2014-11-05 08:42:51 +01:00
Jakub Čajka 981c7456ff * iri.c (remote_to_utf8): Fixed assumption that char is signed. 
Fixes fellowing test case failures idn-cmd-utf8, idn-robots-utf8,
if char is unsigned.
 2014-11-03 15:43:55 +01:00
Tim Rühsen e52879514f * src/log.c: turn on automatic format check for log_vprintf_internal() 2014-11-03 09:22:47 +01:00
Darshit Shah 35bfcb34b0 Remove extra padding from the progress bar 2014-11-01 23:38:07 +05:30
Giuseppe Scrivano ea97693b54 http: Always check for "Connection: close" presence 2014-11-01 13:22:07 +01:00
Tim Rühsen fb8f81040a make _get_rfc2253_formatted static 2014-10-31 09:25:21 +01:00
Tim Rühsen 4ea40809cb fix implicit decl warning 2014-10-30 15:44:04 +01:00
Tim Rühsen c2bb6bc875 fix memory leak 2014-10-30 11:05:07 +01:00
Tim Rühsen a5c6ae8f28 use CLOSE_INVALIDATE instead of fd_close 2014-10-30 11:05:07 +01:00
Tim Rühsen 42333c4a5e always set fd invalid after close 2014-10-30 11:05:07 +01:00
Tim Rühsen a6c2ba73d9 fix memory leak in openssl.c 2014-10-30 11:04:52 +01:00
Peter Meiser c81e3df2bc Add guard for OpenSSL without SSLv3 2014-10-29 19:27:11 +01:00
Tim Rühsen 6092205538 fixing several memory leaks 2014-10-28 16:56:34 +01:00
Giuseppe Scrivano e5cb0f77e6 Revert "Replace @VAR@ in Makefile.am files with $VAR" 
This reverts commit d1ab00cab4.

Conflicts:
	tests/Makefile.am
 2014-10-28 10:42:50 +01:00
Darshit Shah 69c45cba43 Add checks for valid listing file in FTP 
When Wget retrieves a file through FTP, it first downloads a .listing
file and parses it for information about the files and other metadata.
Some servers may serve invalid .listing files. This patch checks for one
such known inconsistency wherein multiple lines in a listing file have
the same name. Such a filesystem is clearly not possible and hence we
eliminate duplicate entries here.

Signed-off-by: Darshit Shah <darnir@gmail.com>
 2014-10-27 09:18:13 +01:00
Darshit Shah 18b0979357 CVE-2014-4877: Arbitrary Symlink Access 
Wget was susceptible to a symlink attack which could create arbitrary
files, directories or symbolic links and set their permissions when
retrieving a directory recursively through FTP. This commit changes the
default settings in Wget such that Wget no longer creates local symbolic
links, but rather traverses them and retrieves the pointed-to file in
such a retrieval.

The old behaviour can be attained by passing the --retr-symlinks=no
option to the Wget invokation command.
 2014-10-27 09:18:13 +01:00
Giuseppe Scrivano c986ea790c Fix ChangeLog entry 2014-10-27 09:14:56 +01:00
Tim Ruehsen 3e3073ca7b add TLSv1_1 and TLSv1_2 to --secure-protocol 2014-10-23 21:16:37 +02:00
Ángel González 601b282cd8 css-url.c (get_uri_string): Fix regression from 8e6de1fb5 
Solves the issue discovered by Gabriel Somlo and reported in the ml thread
"Regression in git master branch (commit 8e6de1fb5f)"
 2014-10-22 20:26:28 +02:00
Tim Rühsen bc347cc36f fixed IRI misbehaviour(s) 2014-10-20 08:53:12 +02:00
Tim Ruehsen 6fc11e46ec do not use SSLv3 except explicitely requested 2014-10-19 21:57:06 +02:00
Tim Rühsen 8c2d9afd08 fixed memleak in retrieve_url() 2014-09-30 20:50:06 +05:30
Darshit Shah eab853b7e6 Plug memory leaks 2014-07-24 14:23:43 +05:30
Daniel Stenberg 3d7797c46e main.c: update the --method description 
The first line of a HTTP request is not a header, it is the start-line,
which for requests is called the request-line.

See http://tools.ietf.org/html/rfc7230#section-3.1
 2014-07-23 18:46:21 +05:30
Darshit Shah a44841cbe2 Fix potential memory leak and libpsl configure 2014-07-21 13:25:54 +05:30
Tomas Hozza e43ae39dff Fix checking of iconv_open return code. 
Based on libiconv documentation, the iconv_open function returns
(iconv_t)(-1).

Signed-off-by: Tomas Hozza <thozza@redhat.com>
 2014-07-08 17:01:17 +02:00
Darshit Shah c5f2c7fcef Convert domains to lowercase before libpsl checks 2014-07-05 16:21:40 +05:30
Darshit Shah 550cd6e9d2 Fix indentation and remove excess variable 2014-07-05 16:18:38 +05:30
Darshit Shah 97ce41b2d0 Remove unused error codes 2014-07-05 16:18:31 +05:30
Giuseppe Scrivano 416d0e892c convert: initialize variable before usage. 2014-06-30 11:35:46 +02:00
Giuseppe Scrivano e2c8436e17 warc: Avoid out-of-scope variable usage 2014-06-29 11:22:44 +02:00
Giuseppe Scrivano ebda24eb69 Remove tab-space indentation 2014-06-28 17:53:42 +02:00
Giuseppe Scrivano 601401da71 warc: Fix UUID generation on FreeBSD 2014-06-24 15:05:19 +02:00
Darshit Shah f3289f76ec Better align download percentage status 2014-06-22 14:53:24 +05:30
Giuseppe Scrivano 26787225c1 Fix build error on Windows 2014-06-21 18:41:49 +02:00
Nikita Vetrov 104fd20ac3 Add GOST94-GOST89-GOST89 and other ciphers support 
It is done via one-time call OPENSSL_config. It will fix this error
`OpenSSL: error:140920F8:SSL routines:SSL3_GET_SERVER_HELLO:unknown
cipher returned`. OpenSSL with GOST-support and rebuilding wget
required
 2014-06-21 18:33:41 +02:00
Giuseppe Scrivano ca402e2f81 windows: do not dinamically allocate info->lfilename. 2014-06-19 20:25:27 +02:00
Darshit Shah 8445279306 Fix failing make check 2014-06-16 20:50:30 +05:30
Giuseppe Scrivano bb025955c3 Fix a problem with ISA server proxy 2014-06-16 16:39:04 +02:00
Darshit Shah 08cedb953b Mark non returning functions 2014-06-16 18:25:44 +05:30