romenskiy2012/curl
1
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2026-06-13 18:35:36 +03:00
Code Issues Projects Releases Packages Wiki Activity
curl/lib/vauth
History
Daniel Stenberg a2b943b115
digest: escape control codes too 
Since the username is decoded when used and control codes are accepted
in HTTP usernames in general, the username encoding for the Digest auth
needs to percent encode such bytes.

Verified by test 3221

Reported-by: Trail of Bits
Closes #21915
2026-06-09 09:20:47 +02:00
..
cleartext.c creds: hold credentials 2026-05-12 16:05:15 +02:00
cram.c creds: hold credentials 2026-05-12 16:05:15 +02:00
digest.c digest: escape control codes too 2026-06-09 09:20:47 +02:00
digest.h lib: use lib source directory as base include path 2026-02-23 16:00:42 +01:00
digest_sspi.c tidy-up: apply clang-format fixes 2026-05-28 00:05:47 +02:00
gsasl.c gsasl: fix potential double free 2026-05-15 11:49:06 +02:00
krb5_gssapi.c creds: add sasl service name 2026-05-13 14:04:17 +02:00
krb5_sspi.c tidy-up: use curlx_safefree() 2026-05-21 01:31:03 +02:00
ntlm.c tidy-up: prefer "initialize" with a 'z' 2026-05-15 11:49:06 +02:00
ntlm_sspi.c tidy-up: use curlx_safefree() 2026-05-21 01:31:03 +02:00
oauth2.c creds: hold credentials 2026-05-12 16:05:15 +02:00
spnego_gssapi.c creds: add sasl service name 2026-05-13 14:04:17 +02:00
spnego_sspi.c tidy-up: use curlx_safefree() 2026-05-21 01:31:03 +02:00
vauth.c url: compare full origin when setting credentials 2026-05-16 01:14:29 +02:00
vauth.h tidy-up: apply clang-format fixes 2026-05-28 00:05:47 +02:00