RELEASE-NOTES: synced

diff --git a/RELEASE-NOTES b/RELEASE-NOTES
index 38479b0eb90014af7f7902d8e8b4eeda54d2a013..c8ec5fd8b79fd414899bc68a7b854d4dc9389a6e 100644 (file)
--- a/RELEASE-NOTES
+++ b/RELEASE-NOTES
@@ -4,7 +4,7 @@ curl and libcurl 8.13.0
  Command line options:         267
  curl_easy_setopt() options:   306
  Public functions in libcurl:  96
- Contributors:                 3354
+ Contributors:                 3356
 
 This release includes the following changes:
 
@@ -25,23 +25,28 @@ This release includes the following bugfixes:
  o build: drop unused `getpart` tool [107]
  o build: enable -Wjump-misses-init for GCC 4.5+ [62]
  o build: fix compiler warnings in feature detections [39]
+ o build: set `-O3` and tune WinCE in CI, fix `getpart`, `vtls_scache` fallouts [137]
  o build: set `HAVE_WRITABLE_ARGV` for Apple cross-builds [8]
  o build: silence bogus `-Wconversion` warnings with gcc 5.1-5.4 [68]
+ o build: silence mingw32ce C99 format warnings, simplify CI [143]
  o c-ares: error out for unsupported versions, drop unused macros [85]
  o ca-native.md: sync with CURLSSLOPT_NATIVE_CA [72]
  o cf-socket: deduplicate Windows Vista detection [11]
  o client writer: handle pause before deocding [61]
  o cmake: `SHARE_LIB_OBJECT=ON` requires CMake 3.12 or newer [46]
  o cmake: add pre-fill for Unix, enable in GHA/macos, verify pre-fills [42]
+ o cmake: allow `CURL_STATIC_CRT` with shared libcurl and no curl exe [123]
  o cmake: allow empty `IMPORT_LIB_SUFFIX`, add suffix collision detection [41]
  o cmake: avoid `-Wnonnull` warning in `HAVE_FSETXATTR_5` detection [81]
  o cmake: disable HTTPS-proxy as a feature if proxy is disabled [77]
  o cmake: drop `CURL_DISABLE_TESTS` option [94]
+ o cmake: drop `HAVE_C_FLAG_Wno_long_double` logic for ancient Apple gcc [126]
  o cmake: drop `HAVE_IN_ADDR_T` from pre-fill too
  o cmake: drop two stray TLS feature checks for wolfSSL [9]
  o cmake: fix `HAVE_ATOMIC`/`HAVE_STDATOMIC` pre-fill for clang-cl [28]
  o cmake: fix ECH detection in custom-patched OpenSSL [32]
  o cmake: hide empty `MINGW64_VERSION` output for mingw32ce [114]
+ o cmake: improve httpd detection for pytest [127]
  o cmake: mention 'insecure' in the debug build warning [15]
  o cmake: misc tidy-ups [38]
  o cmake: pre-fill known type sizes for Windows OSes [100]
@@ -58,6 +63,7 @@ This release includes the following bugfixes:
  o cookie: minor parser simplification [58]
  o cookie: simplify invalid_octets() [24]
  o curl.h: change some enums to defines with L suffix [84]
+ o curl.h: stop defining non-curl `__has_declspec_attribute` [142]
  o curl_msh3: remove verify bypass from DEBUGBUILDs [43]
  o curl_trc: fix build with CURL_DISABLE_VERBOSE_STRINGS [109]
  o CURLMOPT_SOCKETFUNCTION.md: add advice for socket callback invocation[69]
@@ -66,8 +72,12 @@ This release includes the following bugfixes:
  o docs: add FD_ZERO to curl_multi_fdset example [19]
  o docs: bump `rustls` to 0.14.1 [111]
  o docs: correct argument names & URL redirection [4]
+ o docs: minor edits to please the new spellchecker regime
+ o docs: vulnerabilities in debug code are not eligible for a bounty [118]
  o eventfd: allow use on all CPUs [93]
+ o examples: prefer `return` over `exit()` (cont.) [110]
  o gnutls: fix connection state check on handshake [80]
+ o gnutls: fix use of pkcs11 urls for keys/certs [122]
  o hash: use single linked list for entries [57]
  o hostip: make CURLOPT_RESOLVE support replacing IPv6 addresses [47]
  o HTTP3.md: only speak about minimal versions [18]
@@ -95,6 +105,8 @@ This release includes the following bugfixes:
  o openssl: check return value of X509_get0_pubkey [105]
  o openssl: drop support for old OpenSSL/LibreSSL versions [95]
  o openssl: remove bad `goto`s into other scope [63]
+ o pytest: test negotiate with http proxy [83]
+ o runtests: accept `CURL_DIRSUFFIX` without ending slash [133]
  o runtests: drop recognizing 'winssl' as Schannel [102]
  o runtests: drop ref to unused external function
  o runtests: recognize AWS-LC as OpenSSL [103]
@@ -111,6 +123,8 @@ This release includes the following bugfixes:
  o strparse: make Curl_str_number() return error for no digits [14]
  o strparse: switch the API to work on 'const char *' [2]
  o strparse: switch to curl_off_t as base data type [7]
+ o test1167: catch #defines with extra whitespace [140]
+ o tests: fix comment in lib533 [121]
  o tests: fix enum/int confusion, fix autotools `CFLAGS` for `servers` [27]
  o tidy-up: align MSYS2/Cygwin codepaths, follow Cygwin `MAX_PID` bump [97]
  o tidy-up: delete, comment or scope C macros reported unused [16]
@@ -120,8 +134,11 @@ This release includes the following bugfixes:
  o timediff: remove unnecessary double typecast [53]
  o tool_getparam: clear sensitive arguments better [66]
  o tool_operate: fail SSH transfers without server auth [70]
+ o urlapi: fix redirect from file:// with query, and simplify [136]
  o urlapi: simplify junkscan [23]
+ o urldata: remove 'hostname' from struct Curl_async [131]
  o variable.md: clarify 'trim' example [12]
+ o winbuild: reduce command-line length by dropping whitespace [117]
  o windows: drop code and curl manifest targeting W2K and older [115]
  o wolfssh: retrieve the error using wolfSSH_get_error [5]
  o wolfssl: fix CA certificate multiple location import [34]
@@ -147,13 +164,14 @@ Planned upcoming removals include:
 This release would not have looked like this without help, code, reports and
 advice from friends like these:
 
-  Anthony Hu, Dan Fandrich, Daniel Stenberg, dependabot[bot], Derek Huang,
-  Dexter Gerig, Harry Sintonen, Jeremy Drake, John Bampton, Joseph Chen,
-  kayrus on github, kriztalz, Laurențiu Nicola, lf- on github, Marcel Raad,
-  Mark Phillips, qhill on github, Ray Satiro, renovate[bot], rmg-x on github,
-  RubisetCie on github, Sergey, Stefan Eissing, Tianyi Song, Timo Tijhof,
-  Viktor Szakats, Yedaya Katsman, Zenju on github
-  (28 contributors)
+  Anthony Hu, Carlos Henrique Lima Melara, Dan Fandrich, Daniel Stenberg,
+  dependabot[bot], Derek Huang, Dexter Gerig, Harry Sintonen, Jeremy Drake,
+  John Bampton, Joseph Chen, kayrus on github, kriztalz, Laurențiu Nicola,
+  lf- on github, Marcel Raad, Mark Phillips, qhill on github, Ray Satiro,
+  renovate[bot], rmg-x on github, RubisetCie on github, Sergey, Stefan Eissing,
+  stevenpackardblp on github, Tatsuhiro Tsujikawa, Tianyi Song, Timo Tijhof,
+  Viktor Szakats, Yedaya Katsman, Zenju on github, Zhaoming Luo
+  (32 contributors)
 
 References to bug reports and discussions on issues:
 
@@ -238,6 +256,7 @@ References to bug reports and discussions on issues:
  [80] = https://curl.se/bug/?i=16423
  [81] = https://curl.se/bug/?i=16427
  [82] = https://curl.se/bug/?i=16494
+ [83] = https://curl.se/bug/?i=14973
  [84] = https://curl.se/bug/?i=16482
  [85] = https://curl.se/bug/?i=16407
  [86] = https://curl.se/bug/?i=16377
@@ -264,10 +283,25 @@ References to bug reports and discussions on issues:
  [107] = https://curl.se/bug/?i=16460
  [108] = https://curl.se/bug/?i=16461
  [109] = https://curl.se/bug/?i=16462
+ [110] = https://curl.se/bug/?i=16524
  [111] = https://curl.se/bug/?i=16446
  [112] = https://curl.se/bug/?i=16457
  [113] = https://curl.se/bug/?i=16456
  [114] = https://curl.se/bug/?i=16455
  [115] = https://curl.se/bug/?i=16453
  [116] = https://curl.se/bug/?i=16452
+ [117] = https://curl.se/bug/?i=16508
+ [118] = https://curl.se/bug/?i=16527
  [119] = https://curl.se/bug/?i=16448
+ [121] = https://curl.se/bug/?i=16523
+ [122] = https://curl.se/bug/?i=16249
+ [123] = https://curl.se/bug/?i=16516
+ [126] = https://curl.se/bug/?i=16513
+ [127] = https://curl.se/bug/?i=16515
+ [131] = https://curl.se/bug/?i=16451
+ [133] = https://curl.se/bug/?i=16506
+ [136] = https://curl.se/bug/?i=16498
+ [137] = https://curl.se/bug/?i=16476
+ [140] = https://curl.se/bug/?i=16496
+ [142] = https://curl.se/bug/?i=16491
+ [143] = https://curl.se/bug/?i=16492