From haxx.se
6 13
The ride is coming to an end. The experiment is done. We tried, but we admit defeat. Four years ago we started adding support for an alternative HTTP backend in curl. It would use a library written in rust, called hyper. The idea was to introduce an alternative implementation of HTTP internals...
on Sat, 12PM
From haxx.se
0 1
In January 2014, I start working for Mozilla I've worked in open source projects for some 20 years and I've maintained curl and libcurl for over 15 years. I'm an internet protocol geek at heart and Mozilla seems like a perfect place for me to continue to explore this interest of mine and combine...
on Fri, 1PM
From haxx.se
0 1
The Internet Museum translated to Swedish becomes "internetmuseum". It is a digital, online-only, museum that collects Internet- and Web related historical information, especially focused on the Swedish angle to all of this. It collects stories from people who did the things. The pioneers, the...
on Wed, 8AM
From haxx.se
0 8
tldr: the level of HTTP/3 support in servers is surprisingly high. The specs The specifications are all done. They're now waiting in queues to get their final edits and approvals before they will get assigned RFC numbers and get published as such - they will not change any further. That's a set...
on Mon, 1PM
From haxx.se
How randomly skipping tests made them better!
0 1
In the curl project we produce and ship a rock solid and reliable library for the masses, we must never exit, leak memory or do anything in an ungraceful manner. We must free all resources and error out nicely whatever problem we run into at whatever moment in the process. To help us stay true …...
on Mon, 9AM
From haxx.se
A twenty-five years old curl bug
0 1
I have talked about old curl bugs before, but now we have a new curl record. When we announced the security flaw CVE-2024-11053 on December 11, 2024 together with the release of curl 8.11.1 we fixed a security bug that was introduced in a curl release 9039 days ago. That is close to twenty-five...
on Dec 12
From haxx.se
0 0
Welcome to another curl release. This time we do a bugfix only release, five weeks since the previous version shipped. Release Presentation Today at 09:00 UTC I will do a live-streamed video presentation of curl 8.11.1 on Twitch. Numbers the 263rd release0 changes35 days (total: 9,763)79...
on Dec 11
From haxx.se
0 0
In the 2021 movie Silk Road, at around 19:23-19:26 into the film we can see Ross Ulbricht, the lead character, write a program on his laptop that uses curl. A few seconds we get a look at the screen as Ross types on the keyboard and explains to the female character who says I didn't … Continue...
on Dec 10
From haxx.se
No need to email me about Cisco AnyConnect
0 0
My name and email address can be found in the VPN client application made by Cisco called AnyConnect. They are present there as part of the curl license, because this product - like thousands of others - uses libcurl. My name appears in many products. Apparently, people often have problems...
on Dec 3
From haxx.se
0 0
(Recap: I founded the curl project, I am still the lead developer and maintainer) When asking curl to get a URL it'll send the output to stdout by default. You can of course easily change this behavior with options or just using your shell's redirect feature, but without any option it'll spew it...
on Nov 17
From haxx.se
The most popular curl download – by a malware
0 0
During October 2015 the curl web site sent out 1127 gigabytes of data. This was the first time we crossed the terabyte limit within a single month. Looking at the stats a little closer, I noticed that in July 2015 a particular single package started to get very popular. The exact URL was...
on Nov 16
From haxx.se
0 0
I've never considered myself very picky about the particular keyboard I use for my machines. Sure, I work full-time and spare time in front of the same computer and thus I easily spend 2500-3000 hours a year in front of it but I haven't thought much about it. I wish I had some actual stats …...
on Nov 16
From haxx.se
Workshop season six, episode three
0 0
One positive thing among many others at this version of the HTTP Workshop (day one, day two) is the fact that there have been several new faces showing up here. People who have not previously attended any HTTP Workshops. Getting fresh blood into the mix is great. A chance to maybe lower the...
on Nov 14
From haxx.se
0 0
The fun continues. See day one. In an office building close to the Waterloo station in London, around 40 persons again sat down at this giant table forming a big square that made it possible for us all to see each other. One by one there were brief presentations done with follow-up discussions....
on Nov 13
From haxx.se
0 0
Day one. For the sixth time, this informal group of HTTP implementers and related "interested parties" unite in a room over a couple of days doing a HTTP Workshop. Nine years since that first event in Münster, Germany. If you are someone like me, obsessed with networking and HTTP in particular...
on Nov 13
From haxx.se
0 0
Here's the complete timeline of events. From my first denial to travel to the US until I eventually received a tourist visa. And then I can't go anyway. December 5-11, 2016 I spent a week on Hawaii with Mozilla - my employer at the time. This was my 12th visit to the US over a … Continue reading...
on Nov 9
From haxx.se
Common mistakes when using libcurl
0 0
I've been traveling this road for a while. Here's my collection of 15 of the most common mistakes and issues people will run into when writing applications and services that use libcurl. I've also done recorded presentations on this topic that you can watch if you prefer that medium....
on Nov 8
From haxx.se
0 0
I'm the author of a brand new internet-draft that I submitted just the other day. The title is TCP Tuning for HTTP, and the intent is to gather a set of current best practices for HTTP implementers; to share and distribute knowledge we've gathered over the years. Clients, servers and...
on Nov 8
From haxx.se
0 0
I am thrilled to announce: Rock-Solid curl: long term supported curl releases Basics We make long term support releases of curl that we call Rock-solid curl. We support each release branch for at least five years. We only merge security fixes and important stability bugfixes into these branches...
on Nov 7
From haxx.se
0 0
The little men in your computer do this every time you open google.com https://www.youtube.com/watch?v=atcqMWqB3hw I found this video so hilarious and awesome that I simply had to also mention it here.
on Nov 6
From haxx.se
0 0
curl 8.11.0 is released, featuring one security fix, five changes and 265 bugfixes.
on Nov 6
From haxx.se
0 1
In every software project that has been around for a while there is of course newer code and older code. A question that often pops up at least in my mind is then: How much of the old code has actually survived over the years and is still being in use today? And how would … Continue reading curl...
on Oct 31
From haxx.se
Eighteen years of ABI stability
0 0
It has been eighteen years of libcurl ABI stability.
on Oct 30
From haxx.se
0 0
The other day we celebrated everything curl turning 5 years old, and not too long after that I got myself this printed copy of the Chinese translation in my hands! This version of the book is available for sale on Amazon and the translation was done by the publisher. The book's full contents are...
on Oct 29
From haxx.se
0 0
It is Friday after all, so I'll offer this little glimpse as an example from what I do at work... A while ago, I was working for a customer (who shall remain unnamed here, but let's call it Intel) doing system simulation software. I worked on this project for a year or so. I ran … Continue...
on Oct 28
From haxx.se
0 0
Everyone and anyone is of course entitled to fork a project that is released under an open source license. This goes for my projects as well and I don't mind it. Go ahead. I think it may be a bit shortsighted and a stupid decision, but open source allows this and it sometimes actually leads …...
on Oct 27
From haxx.se
0 0
(I wrote about this topic in my weekly email this week. This is the blog version, somewhat extended.) Easy to read Two contributing factors that make code hard to read are function length and function complexity. To keep source code easy to read, understand and debug we should strive towards...
on Oct 27
From haxx.se
0 0
Micah Cowan is the current maintainer of GNU Wget, and he recently posted a long mail to the wget mailing list titled "Thoughts on Wget 1.x, 2.0". Two fun quotes for the curious who don't feel like reading the whole post: 1. On the subject of making wget deal with multiple simultanous...
on Oct 26
From haxx.se
libcurl claimed to be dangerous
0 0
On October 24th, my twitter feed suddenly got more activity than usual when suddenly there's a mention of a newly(?) published paper: The most dangerous code in the world: validating SSL certificates in non-browser software Within the twelve page document they discuss flaws in various APIs and...
on Oct 25
From haxx.se
My job: full-time curl developer
0 0
Documentation and ramblings of Daniel Stenberg, founder and lead developer of curl.
on Oct 22
From haxx.se
0 0
During our embedded Linux hacking event in Stockholm on October 20th I ran a little contest for the ones who wanted to participate. I created it entirely by myself to allow as many people as possibly to participate with them knowing me or me knowing them etc limiting the fun. For your amusement...
on Oct 22
